Blackbaud Hack

Hackers are getting smarter day by day. Every day we are hearing some news on breach or cyberattack on small scale or at a mass scale. Last month we have heard of the Twitter attack and this time it’s a ransomware attack on Blackbaud, US-based company – the largest provider of CRM.

Blackbaud is the largest provider of education, administration, fundraising, and financial management software platform.

Blackbaud was hacked in May 2020. Blackbaud released a statement that before locking cybercriminals out, the cybercriminals copied some of the data from their self- hosted environment.

As per the reports published by BBC, stolen data included phone numbers, donation history, and events attended. Payment details like credit cards do not appear to have been exposed. And also the data is not limited to former students who were financially supporting the institutions but also to its staff, existing students, and other supporters.

Which organisations are affected by Blackbaud hack?

As per BBC reports educational institutions which are affected are:

  • University of Birmingham, De Montfort University
  • University of Strathclyde
  • University of Exeter
  • University of York
  • Oxford Brookes University
  • Loughborough University
  • University of Leeds
  • University of London
  • University of Reading
  • University College, Oxford
  • Middlebury College, Vermont
  • West Virginia University
  • New College of Florida
  • Cheverus High School: Catholic High School Portland
  • The Bishop Strachan School, Canada
  • University of North Florida
  • Ambrose University, Alberta, Canada
  • Rhode Island School of Design, US

Non-Profit organisations such as charities which are affected:

  • Choir with No Name
  • Vermont Foodbank
  • Vermont Public Radio
  • Northwest Immigrant Rights Project
  • Human Rights Watch
  • Young Minds
  • National Trust
  • Wallich and Crisis
  • Sue Ryder

As per the BBC, UK’s ICO has informed that 125 organisations had reported to it for Blackbaud attack. May be many more charities or educational organisations may have been affected.

How Privacy Law is affected and its impact?

Under General Data Protection Regulation (GDPR), organisations must report a significant breach to a relevant supervisory authority within 72 hours of becoming aware of the breach or face potential fines. There will be 2 levels of fines based on the breach. The minimum fine is up to €10 million or 2% of the company’s company’s global turnover and the maximum fine is up to €20 million or 4 % of global turnover

If a breach has a significant impact then the organisation must notify the Information Commission Officer (ICO) within 24 hours. And also notify the users if they are likely to be affected.

Blackbaud has informed The UK’s ICO and Canadian data authorities about the data breach but at least 8 weeks after discovering the cyber-attack. This means a clear violation of the GDPR.

The GDPR applies in this case because UK students are among those affected, and they are still covered by all the regulations until the Brexit transition ends on 31st Dec 2020.

All the institutions are sending emails & letters apologising to those on the compromised breaches.

Actions are taken by Blackbaud:

As per the reports Blackbaud has paid undisclosed ransom demand to save the customer’s data. After this, they have released a statement that they have paid the hackers, and hackers have confirmed that the data they had has been destroyed.

Paying the ransomware money is not illegal in the US & UK but it is against the advice of numerous law enforcement agencies such as FBI, NCA, and Europol.

Blackbaud also said that it is working with law enforcement agencies and 3rd party investigators to check whether the data is on the dark web.

But questions persist about ransomware attack and can you trust a cybercriminal?

Conclusion

Ransomware gangs are now focussing on corporate networks, where they get an initial foothold and steal the victim’s data before encrypting the local files. Victims are then forced to pay a ransom demand- either for unlocking or decrypting the files or for preventing their stolen data from being published on the internet.

Ransomware attacks are on the rise, especially as the Covid-19 pandemic continues. As part of due diligence before working with any provider, you should check that the provider must have adequate technical and organisational measures in place to defend against a ransomware attack.

How Teceze can help you?

Teceze have architectured cyber security practice with a dedicated team of professionals. We follow industry-standard best practices, evaluate ongoing risk assessments, regularly test the security of our solutions. We make sure to provide the Managed IT services  from a secured 24*7 Security operations center. Our expert cybersecurity team successfully defends against cyber threats while continuously learning the landscape to stay ahead.

The only way to protect what you’ve worked hard to build is to be vigilant when it comes to cybersecurity. If you’d like to know more about how your business can benefit from managed services, just give us a call, we are here to help.

+44 0208 050 5014

Or

BOOK a FREE Consulting
Linkedin
Facebook
Twitter