The EvergreenHealth Foundation and EvergreenHealth Monroe Foundations were notified that one of our database vendors, Blackbaud, was the victim of a cybersecurity breach. Based on information released by Blackbaud, we want to make you aware of the following information about the attack, and how donor and prospective donor information of the EvergreenHealth Foundation and EvergreenHealth Monroe Foundation may have been affected:
• From what we know, the attackers downloaded certain data from Blackbaud. It is our understanding, based on information provided by Blackbaud, that the affected data of Foundation donors may include name; address on file; date of birth; email address; phone number; gender; information about your relationship with EvergreenHealth; and a history of gifts and pledges to the Foundation. For prospective donors, the exposed information may include your name; date of birth; address on file; physician; medical service line; date of service; and in some cases, the name of your medical insurance carrier.
• The data the attackers accessed did not include any Social Security numbers, credit card, or banking information.
• Blackbaud has informed us that to protect the identifiable information that was downloaded, it paid a ransom and obtained assurances that the downloaded information was destroyed, therefore mitigating the risk of misuse.
• Blackbaud will also continue to monitor the web to verify that none of the data is misused.
• We have launched our own investigation and are notifying affected donors and prospective donors so they are aware of the situation and can remain vigilant.
• We are working with Blackbaud to understand what additional steps it is taking to increase its security. Blackbaud has stated that it has already implemented changes to prevent this specific issue from happening again.
• While the Foundations’ computers did not contribute to this breach, the EvergreenHealth Foundation and EvergreenHealth Monroe Foundation are maintaining continuous attention to computer security.
While Blackbaud has assured us that no Social Security numbers, passwords, banking or credit card information was disclosed, you can still help ensure that any risk from this breach is mitigated.
• Always review your bank account and credit card statements carefully when you receive them.
• If you receive any unsolicited requests for donations from us or other nonprofits, please call the nonprofit at the number on the nonprofit’s webpage to confirm the request is legitimate.
• You can obtain a free copy of your credit report from each of the three credit reporting agencies, by calling 877.322.8228 or visiting www.annualcreditreport.com. Until April 2021, you may receive a free credit report every week online.
• If you detect any suspicious activity, report it to the financial institution that holds the account, law enforcement, or the Federal Trade Commission (FTC) at www.ftc.gov/idtheft.
We are committed to protecting your information, and we sincerely apologize for any inconvenience this vendor data breach may cause. If you have any questions or concerns, we welcome your call and are available at 425.899.1188.