On July 16, 2020, the LEC Foundation, which receives donations on behalf of Life Enriching Communities, Twin Towers and Twin Lakes, was notified by a third-party vendor and Business Associate – Blackbaud, Inc. – that it had been the victim of a ransomware attack. Blackbaud provides technology, including software, donor databases, and hosting services for many non-profit organizations, including the LEC Foundation. In May 2020, Blackbaud’s cybersecurity team discovered the ransomware attack and, together with independent forensics experts and law enforcement, ultimately expelled the attacker from their system. Prior to locking out the cybercriminal, however, the attacker was able to obtain backup files of many Blackbaud clients, including that of the Foundation. Blackbaud indicated that they paid the cybercriminal’s ransom demand and received confirmation that the copy removed by the cybercriminal had been destroyed. For specific information from Blackbaud regarding this security incident, please visit www.blackbaud.com/securityincident .
While no credit card numbers, bank account information, social security numbers or similar high-risk data was obtained by the cybercriminal, the data backup that was removed could have contained the name, address, phone number, email address, date of birth and/or date of death, spousal information, level of care, contributions and potential gift capacity, and notes about some of our residents. Out of an abundance of caution and because we take the privacy of our residents very seriously, we sent letters to all impacted residents and former residents on September 14, 2020. A copy of the letter can be read by clicking here. We did have some out-of-date or inaccurate contact information for some impacted former residents. If you did not receive a letter and want to confirm whether your information was involved in this incident, please contact the LEC Foundation at 513-247-1357.