YMCA in Twin Cities reveals data breach, says software vendor paid ransom to hacker
Google Street View
The YMCA of the North, the new name of the Twin Cities-based arm of the organization, says some of its members' personal information may have been compromised in a breach.
The YMCA wrote to members saying that one of its software application vendors, Blackbaud Inc., was targeted in a ransomware hack that targeted the data it hosts for various organizations, colleges, universities and nonprofits across the globe.
Blackbaud determined that backup files were removed from its platform sometime between February and May this year, with the YMCA of the North notified on July 16.
The YMCA says it doesn't yet know the "complete picture" of the data contained in its backup files, though it does know it included members' names, physical address, email address and gift history.
Notes will be sent to those affected by the breach once it has completed its investigation.
The YMCA says Blackbaud paid the ransom amount to the hacker and received "confirmation and assurances that the data removed from Blackbaud’s applications has been destroyed."
It also worked with law enforcement and third-party experts that say the hackers' "assurances are credible."
"Blackbaud has hired outside experts to continue to monitor the Internet, including the 'Dark Web,' and they have found no evidence that any information was ever released by the threat actor," YMCA Senior VP Bob Elfstrand said. "Furthermore, Blackbaud plans to continue such monitoring activities for the foreseeable future."
Members have been asked to wait for further communication from the YMCA that will detail whether their information was compromised.
Sign up for our BREAKING NEWS newsletters
