Housing Group Struck by Sodinokibi Data Thieves

  • A housing association in East Anglia has suffered a ransomware attack, foremost to the compromise of an unknown volume of employee and shopper details.

    Norwich-headquartered Flagship Team place out a statement last week that it was pressured to take most of its IT programs offline after the Sodinokibi strain entered the organization by using a phishing attack.

    While these endeavours were explained as “successful,” the association admitted that “there has been some data encryption, and some particular consumer and staff knowledge has been compromised.

    “Having finished the containment phase of our remediation procedure, in depth forensic evaluation is entirely underway, and we are now working in the direction of restoration of all our devices,” the assertion continued. “We have been ready to restore several inside methods and are now doing the job in direction of resuming usual operations as promptly as attainable.”

    The law enforcement and regulator the Information and facts Commissioner’s Place of work (ICO) have been notified.

    It continues to be unclear how a lot of people today have been afflicted by the data theft, although Flagship Group claims to be a landlord for above 30,000 residences in the east of England.

    Sodinokibi (REvil) is just one of the additional prolific strains out there, noticed in assaults concentrating on hospital VPNs before this yr. It was the range a person variant in Q1 2020, accounting for 27% of assaults analyzed by Coveware.

    This latest victim may not be as higher profile as numerous more than latest months, but it is significantly widespread for SMBs to be struck by ransomware, the security seller said previous 7 days. In truth, it revealed that organizations with up to 100 workforce accounted for 32% of attacks in Q3, even though individuals with up to 1000 workers accounted for 73%.

    “Over the earlier couple of days, the incident has prompted substantial disruption to our team and shopper providers and we are concentrating on emergency circumstances, to ensure our clients are safe,” said Flagship Group’s CEO, David McQuade.

    “Our groups are functioning tirelessly about the clock to bring our techniques back on the net, and we apologize for any inconvenience this might have prompted.”