A number of colleges in our system that use Raiser's Edge received a notification this morning about a ransomware attack at Blackbaud back in May. It appears that Blackbaud paid the hackers for a subset of stolen RE, NetCommunity, and ResearchPoint data but it is not clear to me whether this data is still "out there."
I'm working with our Central security folks on next steps but curious how others who've been impacted are approaching this situation.
Associate Vice Chancellor for Advancement Operations
205 East 42nd Street, Suite 953, New York, NY 10017
Tel (646) 664-3002 | Fax (646) 664-2965
Exactly. That's what I'm wondering-how "assured" are we as a community?
Agreed with all points below. We are working with our technical security leads and will be attending the webinar tomorrow. We've also been reading all the info and trying to make our assessment of next steps. Definitely having a hard time trusting the idea that hackers are good on their word.
Which call? I received the email and toolkit. Our Information Security is assessing this now.
. I registered for the call tomorrow to hopefully get more details like you are asking for. The two on the call will be the Chief Information Security Officer and Director of Privacy
If you go to the Resources Page, there's a tab for webinars:
Thanks so much! However, I am struggling to find this. Their site can be challenging. Can you point me there? I am sure I am missing this.
You have to go to the incident response page and click on the Webinars link at the top:
On this page you'll see the links to the Webinars they're holding on various dates.
Thanks, again. I was lost in the sea of BB's website. With a little help, I found it.
I am wondering how many organizations were affected by this.
Yes, they are not asking specific questions. I asked a few.
Senior Director of Advancement Services and
Development Information Systems----------------------------------------------------------
Teachers College | Columbia University
525 West 120th Street, Box 306
New York, NY 10027
P: 212.678.4031 | F: 212.678.3723E: firstname.lastname@example.org
Does anyone know if the keys were compromised. I asked the question on behalf of my IT department but I haven't heard yet.
UC Davis got a notification regarding DonorCentrics data as well. The lack of transparency is troubling.
Assistant Vice Chancellor - Advancement Services
202 Cousteau Drive Suite 185
Davis, CA 95618
Heather Post Breerwood, MBA '16
Director, Advancement Information ServicesUniversity AdvancementLoyola University New Orleans7214 St. Charles AvenueGreenville Hall, Box 909New Orleans, LA 70118-3538PH: 504-861-5856
C: 770-262-6423FAX: 504-861-5793
This was question was asked several times during the webinar I attended on Friday. Regardless of product impacted, BB said they would not be able to provide a list of specific fields because everyone uses their products differently. However they confirmed that-with the exception of SSN and credit card fields-all fields in your production database were impacted.
I don't believe it was all hosted organizations. We are hosted (only have NXT and do not use the online credit card processing yet) and did not receive any notifications.
Karen Warr, MPA, GPC Director of Development Operations
I worry that not everyone that should have received the notification. They said it went out to the org admin or if you didn't have one the main invoice contact. Yet ours went to one of my team who is neither of those and actually has very little interaction with Blackbaud. She in fact almost deleted the email thinking it was a phishing email.
Luckily she decided to forward it to me just in case!
April Snow, bCRE-Pro | Director, Donor Systems & Support | she/her/hers
YMCA of Greater Seattle
909 Fourth Avenue
Seattle, WA 98104
email@example.com | (206) 382-4925
The Y: We're for youth development, healthy living and social responsibility.
I checked with our Account Executive at Blackbaud this morning. If you go to this link and it says the page requires additional permissions, then your organization was not affected.
Barbara SineDirector of Advancement ServicesNewark Academy91 South Orange AvenueLivingston, NJ 07039
(973) 992-7000 x362www.newarka.edu