Supply chain
⛓ Supply Chain
Phipps Conservatory Third-Party Breach (September 2020)
Primary Source ↗Incident Details
Phipps Conservancy says members safe despite data breach that disclosed some info. Phipps Conservatory and Botanical Gardens in Pittsburgh’s Oakland section contacted its members this week to report a data breach from one of its contractors. For nearly two decades, Phipps has used , Blackbaud, Inc.’s donor data management software, said Joe Reed, Phipps director of marketing. Blackbaud, of Charleston, S.C. calls. Phipps Conservatory and Botanical Gardens in Pittsburgh’s Oakland section contacted its members this week to report a data breach from one of its contractors. For nearly two decades, Phipps has used , Blackbaud, Inc.’s donor data management software, said Joe Reed, Phipps director of marketing. Blackbaud, of Charleston, S.C. calls itself as the world’s leading cloud software company. Third-party company: BlackBaud.
Technical Details
- Initial Attack Vector
- Compromise of third-party service provider / vendor relationship
- Vendor / Product
- BlackBaud
- Supply Chain Attack
- ✅ Confirmed third-party / vendor compromise
Timeline
- 2020-09-01 Breach occurred
- 2020-09-03 Publicly disclosed