Late on Thursday 16th July our supporter database hosting company, Blackbaud, notified us that they had been victims of a criminal attack. Blackbaud also provide CRM services to many other charities and organisations, many of whom have also been affected.
Blackbaud have assured us that NO FINANCIAL DATA was accessed or compromised at any time. The data involved appears to be names, addresses, email addresses and some donation information but NO account or banking details were involved in any way. We are continuing to work with Blackbaud to review the situation and will notify if any of this information changes.
Blackbaud have informed us that, to the best of their knowledge, all the data that was accessed has now been destroyed. They have also reassured us that new safeguards have been put in place to prevent this happening again and their ongoing monitoring has shown no sign of any of the information being used fraudulently. We are continuing to monitor the situation.
We have decided, after our own risk assessments and taking advice from our legal team and in line with other affected organisations, to report this incident to the ICO to ensure that they are fully aware, which we have now done.
Blackbaud assure us that no Malaria No More UK supporters need be concerned, but we do continue to advise all our contacts, as always, to be vigilant and wary of unexpected communication and use caution on any suspicious emails and letters.