
Boys & Girls Clubs of King County was informed in late July 2020 of a data security incident that may have involved the personal information of our donors.
What Happened
Boys & Girls Clubs of King County has been informed about a security incident involving a data breach at Blackbaud, our donor database provider. The company was a target of a ransomware attack, which was discovered and stopped in May 2020, by Blackbaud’s cybersecurity team. The attack compromised a backup copy of our donor database.
Blackbaud worked with the appropriate authorities, including law enforcement (FBI), and has received proof that the information obtained through the hacking, including Boys & Girls Clubs of King County’s donor database, was destroyed.
What Information Was Involved
It is important to note that the cybercriminal did not access any credit card information, bank account information, or social security numbers.
The donor backup database may have included contact information, including telephone number, email address, and/or mailing address; a history of the donor’s relationship with Boys & Girls Clubs of King County to that point, such as donation dates and amount; and in some cases, birthdays or dates of birth.
Next Steps
We work with Blackbaud because of their track record of protecting data and engineering their products to keep ahead of the constant threats to data security. To prevent something like this from happening in the future, Blackbaud has implemented several changes that will protect all data from subsequent incidents. Blackbaud has also released an official statement.
What You Can Do
Though Blackbaud has received assurances that the data has been destroyed, best security practices recommend remaining vigilant and promptly reporting any suspicious account activity or suspected identity theft to credit reporting agencies and/or to the proper law enforcement authorities.
We regret any inconvenience that this may cause. Contact us with additional questions.
