College Mentors for Kids was recently notified by Blackbaud, our third-party service provider for our donor database, of a security incident. At this time, we understand they discovered and stopped a ransomware attack. After discovering the attack, Blackbaud’s Cyber Security team—together with independent forensics experts and law enforcement— successfully prevented the cybercriminal from blocking their system access and fully encrypting files; and ultimately expelled them from their system. Prior to locking the cybercriminal out, the cybercriminal removed a copy of our backup file containing some of your information. This occurred at some point beginning on February 7, 2020 and could have been in there intermittently until May 20, 2020.
What Information Was Involved
It’s important to note that the cybercriminal did NOT access any credit card information or bank account information. These files are encrypted, and the cybercriminal was unable to access that information. However, we have determined that the file removed may have contained the names of our stakeholders along with addresses, email addresses, phone numbers, giving history, and/or associated business information.
Because protecting customers’ data is their top priority, Blackbaud paid the cybercriminal’s demand with confirmation that the copy they removed had been destroyed. Based on the nature of the incident, their research, and third party (including law enforcement) investigation, we have no reason to believe that any data went beyond the cybercriminal, was or will be misused, or will be disseminated or otherwise made available publicly.
What We Are Doing
College Mentors for Kids takes the protection and proper use of your information very seriously; we are posting this notification out of an abundance of caution and in order to remain transparent with our constituents. We do not have reason to believe you are at risk of identity theft due to this breach because we do not keep personal information such as social security numbers in our records and your financial information was encrypted. We do understand this can be unsettling and wanted to notify you as valued stakeholders.
As part of their ongoing efforts to help prevent something like this from happening in the future, Blackbaud has already implemented several changes that will protect your data from any subsequent incidents. First, the provider’s teams were able to quickly identify the vulnerability associated with this incident, including the tactics used by the cybercriminal, and took swift action to fix it. They have confirmed through testing by multiple third parties, including the appropriate platform vendors, that the fix withstands all known attack tactics. Additionally, they are accelerating efforts to further harden their environment through enhancements to access management, network segmentation, deployment of additional endpoint and network-based platforms.
For More Information
We sincerely apologize for this incident and regret any inconvenience it may cause you. Should you have any further questions or concerns regarding this matter and/or the protections available to you, please do not hesitate to contact Erin Cosler at (317) 921-1798 or firstname.lastname@example.org