Demographic and donation information for some individuals associated with the George W. Bush Presidential Center was stolen in a May ransomware attack and purportedly later destroyed, the center said Thursday.
July 31, 2020
The donor data was stolen during an attack suffered by Blackbaud, a third-party data management service used by the Bush Center, but has supposedly since been destroyed.
“Blackbaud informed us that it paid a ransom to the attackers in order to obtain confirmation that the compromised unencrypted information has been destroyed,” the Bush Center said in a statement.
“To date, there is no indication that any of the compromised unencrypted information is subject to further disclosure or misuse, and given the intent of the criminals to obtain the payment of the ransom, the Bush Center does not believe there is a high risk that the unencrypted information would be used for other purposes,” the statement said.
Blackbaud told the center that it “paid a ransom to the attackers in order to obtain confirmation that the compromised unencrypted information has been destroyed.”
“Based on the nature of the incident, our research, and third party (including law enforcement) investigation, we have no reason to believe that any data went beyond the cybercriminal, was or will be misused; or will be disseminated or otherwise made available publicly,” Blackbaud said in a separate statement. “We apologize that this happened and will continue to do our very best to supply help and support as we and our customers jointly navigate this cybercrime incident.
July 31, 2020
The donor data was stolen during an attack suffered by Blackbaud, a third-party data management service used by the Bush Center, but has supposedly since been destroyed.
“Blackbaud informed us that it paid a ransom to the attackers in order to obtain confirmation that the compromised unencrypted information has been destroyed,” the Bush Center said in a statement.
“To date, there is no indication that any of the compromised unencrypted information is subject to further disclosure or misuse, and given the intent of the criminals to obtain the payment of the ransom, the Bush Center does not believe there is a high risk that the unencrypted information would be used for other purposes,” the statement said.
Blackbaud told the center that it “paid a ransom to the attackers in order to obtain confirmation that the compromised unencrypted information has been destroyed.”
“Based on the nature of the incident, our research, and third party (including law enforcement) investigation, we have no reason to believe that any data went beyond the cybercriminal, was or will be misused; or will be disseminated or otherwise made available publicly,” Blackbaud said in a separate statement. “We apologize that this happened and will continue to do our very best to supply help and support as we and our customers jointly navigate this cybercrime incident.