Professional Documents
Culture Documents
Experiment 1
Experiment 1
Roll no : A115
EXPERIMENT 1
BLACKBAUD RANSOMWARE ATTACK (2020)
Mo va on of A acks
The mo va on behind the ransomware a ack on Blackbaud appears to be financial gain. The
a ackers employed ransomware to encrypt and exfiltrate customer data, and their primary
goal was to extort money from Blackbaud in exchange for not publicly disclosing or misusing
the stolen data. This type of a ack is commonly driven by the desire to receive a ransom
payment from the targeted organiza on.
The a ackers likely believed that by compromising and encryp ng valuable data, they could
force Blackbaud to pay a ransom to regain control of the informa on and prevent its public
release. The fact that Blackbaud decided to pay the ransom, as men oned in the sources,
suggests that the a ackers achieved their financial objec ve.
It's worth no ng that mo va ons for ransomware a acks can vary, but financial gain is a
common factor. The a ackers exploit vulnerabili es in the target's cybersecurity defenses,
encrypt sensi ve data, and demand payment in exchange for the decryp on key or the
promise not to misuse or disclose the stolen informa on.
Impact
The ransomware a ack on Blackbaud in 2020 had several notable impacts on the company
and its stakeholders:
1. Data Breach and Exfiltra on: The a ackers managed to exfiltrate and encrypt
customer data. Blackbaud reported that a copy of a subset of data was taken from its
environment before the cybercriminals were expelled from the system.
2. Ransom Payment: Blackbaud decided to pay the ransom, although the specific amount
was not disclosed. The company men oned that it paid the ransom with the
confirma on that the copy of the data removed by the cybercriminals had been
destroyed.
3. Delayed Data Breach No fica on: Blackbaud faced cri cism for not promptly no fying
regulators, data controllers, and affected customers about the data breach. The delay
in repor ng triggered concerns regarding compliance with the General Data Protec on
Regula on (GDPR) requirements.
4. Class Ac on Lawsuit: In December 2020, a class ac on lawsuit was filed against
Blackbaud. The lawsuit alleged that Blackbaud failed to implement adequate and
reasonable cybersecurity measures to protect the personal and sensi ve informa on
of its customers. The complaint highlighted various shortcomings in Blackbaud's
security prac ces.
5. Reputa onal Damage: Data breaches and ransomware a acks can lead to significant
reputa onal damage for the affected company. The incident raised concerns among
Blackbaud's customers and stakeholders about the security of their data and the
company's ability to safeguard sensi ve informa on.
6. Increased Scru ny on Cybersecurity Prac ces: The incident drew a en on to the
importance of cybersecurity prac ces, especially for companies handling sensi ve
customer data. The scru ny extended beyond the immediate impacts of the
ransomware a ack, emphasizing the need for organiza ons to priori ze and invest in
robust cybersecurity measures.
In the Blackbaud ransomware a ack, the primary CIA (Confiden ality, Integrity, and
Availability) component that was compromised was Confiden ality.