Hackers have done the unthinkable by making off with a charity’s funds right before the start of the 2017 Christmas season.
The Utah Association for Intellectual Disabilities (UAID) first noticed something was wrong when it had not received any new email applications for help since 22 October. Typically, the charity gets numerous applications in preparation for the Christmas season. It’s when UAID buys and distributes gifts for between 1,200 and 1,400 adults who are intellectually disabled, who often don’t have family, and who live in assisted living facilities.
Suspicious of the lack of activity, UAID decided to look into the matter. Laura Henderson, who serves as vice president of the charity, says she realized the full extent of the hack shortly thereafter. As she told Good4Utah:
“As we investigating the email issue, I opened the bank statements and started seeing things that just weren’t right.”
According to their bank records, unauthorized individuals had used multiple apps and services to transfer or steal $5,000 from the charity. They also took over its PayPal account, opened new accounts, and seized control of its website and email. Even when Henderson and her staff attempted to reset the passwords for those compromised services, the hackers regained control in no time.
UAID co-founder Katherine Scott can’t believe someone would take from a charity that provides for individuals who mostly don’t receive anything else at Christmas. In her mind, the worst part is the seizure of the charity’s email. Without access, she can’t determine who needs assistance this year:
“That’s one of the things that’s making us real sad this year is we don’t know who needs help.”
It’s unclear how the hackers first struck UAID or what security measures the charity had in place at the time of attack.
Overall, charities can (Read more...)
This is a Security Bloggers Network syndicated blog post authored by David Bisson. Read the original post at: The State of Security