Thursday, January 21, 18:28
Home security Blackbaud: Bank data and credentials were stolen in the ransomware attack in May

Blackbaud: Bank data and credentials were stolen in the ransomware attack in May

Blackbaud, a leading cloud software provider based in Charleston, South Carolina USA, which was ransomware attacked last May, confirmed that hackers behind it had acquired access in unencrypted banking data, in credentials, as well as in social security numbers. The company operates not only in the US but also in other countries, including the United Kingdom, Australia and Canada.

Blackbaud ransomware attack

The ransomware attack that took place last May in Blackbaud was revealed in a press release issued on July 16, when the company said that the intruders were blocked before fully encrypting the systems of. However, they managed to steal a copy of a subset of data from a private cloud. Blackbaud then paid for them ransom, since the hackers they assured her that they had destroyed the stolen goods data.

Blackbaud- ransomware attack-ransom

The ransomware attack by Blackbaud affected a large number of organizations around the world, including charities, non-profit organizations, but also universities in the USA, Canada, the United Kingdom and the Netherlands.

While Blackbaud had initially stated that the hackers behind the ransomware attack did not have access to credit card information, bank account details and social security numbers, a thorough investigation revealed that the hackers finally had access to unencrypted bank data, credentials and social security numbers. However, the company clarified that these new findings do not apply to all customers affected by the security incident.

Blackbaud- ransomware attack -bank data-credentials stolen

Blackbaud also said the investigation is still ongoing and the company will continue to keep customers, shareholders and other interested parties informed of any new developments.

Depending on the ransomware gang who stole Blackbaud data, its willingness to destroy it, but also what it intends to do with it if it did not destroy it as promised, the company's customers may face many security risks, given the sensitive nature of exposed information.

According to BleepingComputer, there are, as far as he knows, 22 ransomware companies that steal sensitive documents by servers of the victims, before encryption. In addition, the data that hackers steal in these attacks, use them later to threaten the victims to pay a ransom, otherwise the stolen data will be leaked gradually, until the ransom is paid. In some cases, the ransom may even increase until all the stolen data is leaked to data leak sites or hacking forums. His team Maze ransomware was the first to publish its stolen data Allied Universal, because the second refused to pay the ransom requested, in November 2019.


Please enter your comment!
Please enter your name here

Every accomplishment starts with the decision to try.


Mac: How to see which model you have and when it was released

When you need support for your Mac - or want to install some kind of upgrade - you usually need to know the exact ...

Bill Gates: Will he work with Biden on COVID-19 / climate change?

Microsoft co-founder Bill Gates said on Twitter that he is looking forward to working with the new US President, Joe Biden, and ...

What are the rumors circulating about the iPhone 13?

Apple iPhone 13 will have a redesigned Face ID system that will have a smaller notch at the top of the screen, ...

Biden: How was the political transition in the US captured on social media?

As Joe Biden was sworn in as President of the United States, this important political transition was captured on popular social media. On January 20, ...

CentOS ceases to be supported but RHEL is offered for free

Last month, Red Hat caused a great deal of concern in the Linux world when it announced the discontinuation of CentOS Linux.

Microsoft Office 365 employee passwords leaked online!

A new large-scale phishing campaign targeting global organizations has been found to bypass Microsoft Office 365 Advanced Threat Protection (ATP) and ...

COSMOTE and Microsoft provide new cloud solutions for businesses

COSMOTE and Microsoft expand their cooperation, offering even more advanced and high quality cloud solutions, in large and small ...

Cyber ​​attacks in Eastern Europe are on the rise!

The cyber-attacks that have taken place in many US government agencies and companies in recent months have caused concern in the developing countries of ...

Tesla reduces the prices of the Model 3 in Europe

Tesla has reduced the prices of the Model 3 in many European markets, which reductions could be partly linked ...

iOS, Android, XBox users in the crosshairs of a new malvertising campaign

Recently a new malvertising campaign was discovered that targets users of mobile and other connected devices and uses effective ...