Calvary Hospital Notification of Recent Blackbaud Data Breach
More information about the incident is available on Blackbaud’s website at www.blackbaud.com/securityincident.
Please be assured that the data breach does not involve any social security numbers or financial information, including bank account, credit card or debit card information.
Blackbaud has committed to continuing to monitor the web for any signs of the stolen data.
Updated September 29, 2020
The Cybercrime industry represents an over trillion-dollar industry that is ever-changing and growing all the time—a threat to all companies around the world. Like many in our industry, Blackbaud encounters millions of attacks each month, and our expert Cyber Security team successfully defends against those attacks while constantly studying the landscape to stay ahead of this sophisticated criminal industry. We wanted to notify our customers and other stakeholders about a particular security incident that recently occurred.
Dear Calvary Friend,
I am writing to inform you of a data security incident involving Blackbaud, a third-party vendor and provider of the fundraising software used by The Calvary Fund.
Please be assured that the data breach does not involve any social security numbers or financial information, including bank account, credit card or debit card information.
We do not believe there is a need for you to take any action at this time.
Blackbaud is one of the world’s largest providers of customer relationship management software.
Hundreds of nonprofits and higher education institutions worldwide were impacted, including many here in New York and, presumably, Calvary.
Immediately upon learning of the breach in August, we partnered with Blackbaud’s experts and our own IT staff to investigate the situation. We believe that the file in question may have contained limited nonfinancial information, such as your contact information and a history of your relationship with Calvary.
We have been assured by Blackbaud that based on the nature of the incident, their research, and law enforcement’s investigation, the stolen data has been destroyed, and there is no reason to believe any data went beyond the cybercriminals, was or will be misused, or will be disseminated or otherwise made available publicly.
In the coming days, we will provide a written or email notification to individuals whose information was affected by this incident. As a best practice, we recommend that you remain vigilant and promptly report any suspicious activity or suspected identity theft to the proper authorities.
The Calvary Fund is continuing to followup with Blackbaud to determine what additional security measures they are implementing in response to this incident and to assess the best path forward. We are taking time to learn from this third-party incident and to review our own security practices and system configurations to better protect your information.
We sincerely regret any concern this incident may cause you as a member of our donor community. We take information security very seriously and will continue to take all appropriate action with respect to this situation. We value your relationship with Calvary and the faith you put in us.
We appreciate your partnership, understanding and support.
Timothy P. Barr
Executive Vice President
The Calvary Fund