P2020-ND-201

Pacific Oaks College

In May 2020, the Organization?s third party vendor, Blackbaud, advised the Organization that it had experienced a ransomware attack on its systems, including its Raiser?s Edge software product used by the Organization to manage alumni and donor information. Blackbaud reported that it discovered and stopped a ransomware attack. Blackbaud successfully prevented the cybercriminal from blocking its system access and fully encrypting files, and ultimately expelled them from its system. However, the cybercriminal removed a copy of a subset of data from its self-hosted (private cloud) environment. Blackbaud paid the cybercriminal?s demand with confirmation that the data had been destroyed. Blackbaud said it has no reason to believe that any data went beyond the cybercriminal, was or will be misused, or will be disseminated or otherwise made available publicly.

File Type: pdf
Categories: 2020
Tags: Unauthorized disclosure