Important Information on Blackbaud Cyber-attack
July 31, 2020
The DGH Foundation recently learned that one of our third-party service providers, Blackbaud, experienced a ransomware attack that affected a growing list of non-profit organizations around the world, including the DGH Foundation. We use Blackbaud products to manage our donor information and to communicate with members of our community.
We were advised by our supplier Blackbaud that the ransom was paid, copies obtained by the cybercriminals were destroyed, and that their internal and law enforcement investigations have found no evidence that any information was disclosed by the cybercriminals. Based on this information, our preliminary assessment is that there is a very low risk of harm to any individual materializing from this cyberattack.
There is a small risk that this incident at Blackbaud may have resulted in a risk of some personal information of our constituents in a back-up file, including name, contact information, date of birth, and giving history. Please note that we were advised that financial data such as banking and credit card information were not impacted by this incident. All such information is encrypted and was not accessible to the cybercriminals. The DGH Foundation does not have access to anyone’s medical or health records or social insurance numbers.
The DGH Foundation takes privacy and security very seriously. We are working closely with Blackbaud to understand the incident and that an appropriate and immediate response is taken to minimize risk and ensure that it does not happen again.
If you wish, please read more about the incident and Blackbaud’s response here.
Blackbaud advises that there is no immediate action required by donors, other than to continue to stay vigilant with updating passwords and monitoring accounts.
We are very sorry for any inconvenience and concern regarding this Blackbaud issue.
Please contact us at 902-460-4149 if you have any questions on this issue.
Stephen Harding, President & CEO