Wyman was recently notified by one of our third-party providers, Blackbaud, of a security incident that took place earlier this year. Blackbaud is a software company that provides cloud-based fundraising software and databases to nonprofit organizations and educational institutions around the world.
At this time, we understand they discovered and stopped a ransomware attack. After discovering the attack, Blackbaud’s Cyber Security team – together with independent forensics experts and law enforcement – successfully prevented the cybercriminal from blocking their system access and fully encrypting files; and ultimately expelled them from their system. Prior to locking the cybercriminal out, the cybercriminal removed a copy of our backup file containing your personal information. This occurred at some point between February 7, 2020 and May 20, 2020.
It is important to note that the cybercriminal did not access your credit card information, bank account information, or social security number. Wyman does not store this information. However, they may have accessed certain data related to our supporters, including contact information, relationship history with Wyman, and demographics. For a complete summary of the incident, please see https://www.blackbaud.com/securityincident.
We do not believe there is a need for you to take action at this time. As a best practice, we recommend you remain vigilant and promptly report any suspicious activity or suspected identity theft to the proper law enforcement authorities and your financial institutions.
We sincerely apologize for this incident and regret any inconvenience it may have caused you. If you have any questions, please contact us at firstname.lastname@example.org or call Kristine Raterman, Sr. VP of Advancement, at 636.549.1235.