|Dear Friend of Grace Cathedral,We deeply value our relationship with you and respect the privacy of your information. We are writing to let you know about a recent data security incident at a third-party service provider that may have involved some of your personal information; provided, however that we have been assured that your credit card, social security and bank information were not accessed. |
Grace Cathedral has been notified by its third-party service provider Blackbaud about a data security incident at Blackbaud involving certain personal information relating to our donors and friends. According to Blackbaud, the incident involved a ransomware attack that Blackbaud discovered and stopped in May 2020. According to Blackbaud, after discovering the attempted attack, Blackbaud’s Cyber Security team—together with independent forensics experts and law enforcement—successfully expelled them from the system. Further details regarding the incident are available at: https://www.blackbaud.com/securityincident.
Blackbaud has stated that based on the nature of the incident, Blackbaud’s research, and third party (including law enforcement) investigation, there is no reason to believe that any data went beyond the cybercriminal, was or will be misused, or will be disseminated or otherwise made available publicly. However, out of an abundance of caution, we are notifying you of this incident.
What Information Might Have Been Involved
Blackbaud reports that the cybercriminal did not access credit card information, bank account information or social security numbers. However, we have been informed by Blackbaud that the information accessed may have included certain information in your donor records, such as your contact information, demographic details and donation history.
What We Are Doing
We value your privacy and deeply regret that this incident occurred. We will continue to monitor and review reports from Blackbaud and will notify you if there are any significant developments. Our understanding is that this cyberattack was not targeted at Grace Cathedral, but rather, affected a wide range of Blackbaud customers globally. Blackbaud has teamed up with forensic experts and law enforcement teams to continue monitoring the internet and investigate the situation further.
If you notice that your information has been compromised, please contact Grace Cathedral at firstname.lastname@example.org or (415) 749-6345 and we will help direct you to the proper authorities to take action.
Thank you for being a friend and a supporter to Grace Cathedral in every season.
Chief Financial & Operating Officer and Canon for Finance Katherine Thompson
Chief Communications & Development Officer and Canon for Development