Out of an abundance of caution, we are writing to inform you of a cybersecurity incident involving a third-party company, Blackbaud, which the University of Missouri uses for alumni and donor cloud data services. The incident did not involve your credit card information, bank account information or social security number as the University does not store such information.
The University of Missouri is proud of the trust and support that our alumni and friends show the university. We are committed to transparency and the protection of the personal data that we maintain. We want you to be aware of the incident, but no additional action is needed.
Blackbaud is a leading software and service provider for non-profit organizations, foundations, institutes of higher education, and faith communities. In late July 2020, the University of Missouri received notice from Blackbaud that it was involved in a data security incident in May 2020. The University is one of many higher education institutions and other organizations impacted by this security incident.
Upon learning of this incident, we immediately began an investigation to determine the extent of the incident related to our university. To keep you informed, we want you to know what happened and how we are addressing it.
What happened
A cybercriminal acquired data as part of a data security incident with Blackbaud. The MU data acquired during this incident could have included public information such as your name, date of birth, contact information, degree information and MU giving history. Blackbaud reported that it conducted an investigation, determined that backup files containing information from its clients had been taken from its network, and an attempt was made to encrypt files to convince Blackbaud to pay a ransom. Blackbaud paid a ransom and obtained confirmation that the files had been removed and destroyed. Blackbaud reported that it has been working with law enforcement. For additional information and Blackbaud’s response, please visit Blackbaud’s website.
What we are doing
The University of Missouri takes the protection and proper use of donors’ information very seriously. We are in detailed conversations with Blackbaud about this serious matter and their handling of data. Blackbaud has informed us that they identified and fixed the vulnerability associated with this incident, implemented several changes that will better protect your data from any subsequent incidents, and are undertaking additional efforts to harden their environment through enhancements to access management, network segmentation, and deployment of additional endpoint and network-based platforms.
What you can do
The university is notifying you out of an abundance of caution. This message does not require any additional action from you.
If you think you are the victim of a scam or identity theft, please report it to the appropriate local law enforcement authorities.
We apologize for any inconvenience this incident may have caused. If you have further questions, please contact us: donorrelations@missouri.edu or 877-738-4546.
Sincerely,
Jackie Lewis
Vice Chancellor for Advancement
The University of Missouri is proud of the trust and support that our alumni and friends show the university. We are committed to transparency and the protection of the personal data that we maintain. We want you to be aware of the incident, but no additional action is needed.
Blackbaud is a leading software and service provider for non-profit organizations, foundations, institutes of higher education, and faith communities. In late July 2020, the University of Missouri received notice from Blackbaud that it was involved in a data security incident in May 2020. The University is one of many higher education institutions and other organizations impacted by this security incident.
Upon learning of this incident, we immediately began an investigation to determine the extent of the incident related to our university. To keep you informed, we want you to know what happened and how we are addressing it.
What happened
A cybercriminal acquired data as part of a data security incident with Blackbaud. The MU data acquired during this incident could have included public information such as your name, date of birth, contact information, degree information and MU giving history. Blackbaud reported that it conducted an investigation, determined that backup files containing information from its clients had been taken from its network, and an attempt was made to encrypt files to convince Blackbaud to pay a ransom. Blackbaud paid a ransom and obtained confirmation that the files had been removed and destroyed. Blackbaud reported that it has been working with law enforcement. For additional information and Blackbaud’s response, please visit Blackbaud’s website.
What we are doing
The University of Missouri takes the protection and proper use of donors’ information very seriously. We are in detailed conversations with Blackbaud about this serious matter and their handling of data. Blackbaud has informed us that they identified and fixed the vulnerability associated with this incident, implemented several changes that will better protect your data from any subsequent incidents, and are undertaking additional efforts to harden their environment through enhancements to access management, network segmentation, and deployment of additional endpoint and network-based platforms.
What you can do
The university is notifying you out of an abundance of caution. This message does not require any additional action from you.
If you think you are the victim of a scam or identity theft, please report it to the appropriate local law enforcement authorities.
We apologize for any inconvenience this incident may have caused. If you have further questions, please contact us: donorrelations@missouri.edu or 877-738-4546.
Sincerely,
Jackie Lewis
Vice Chancellor for Advancement
