Nonprofit organizations, IT and security teams, donors, and stakeholders.
Key IT and cybersecurity trends shaping the nonprofit sector in 2025:
Cloud Adoption – Reducing costs and improving collaboration.
Who: Community Health Center (CHC), a Connecticut-based nonprofit healthcare provider serving over 100,000 residents.
What: A skilled hacker accessed CHC’s network, stealing sensitive data of over 1 million patients, including addresses, phone numbers, diagnoses, treatment details, test results, Social Security numbers, and health insurance information. The breach occurred on October 14, 2024, but was detected on January 2, 2025.
Impact: While no data was deleted or encrypted, and operations remain unaffected, the exposure of highly sensitive medical and personal information poses serious risks to affected patients. No cybercriminal group has claimed responsibility yet.
Read the full article HERE
Who: Notorious hacking groups LockBit and Karakurt targeted religious institutions, marking a shift from their usual focus on corporations and government entities.
What:
LockBit attacked Relentless Church (SC), claiming to have stolen employee data, including passports and financial documents.
Karakurt breached Our Sunday Visitor, a Catholic publishing company, stealing 130GB of sensitive data, including financial records, HR files, and marketing information.
Impact: Religious institutions are now a new target for cybercriminals. While historically overlooked, these attacks signal an expanding threat landscape. Experts warn that ransomware gangs selectively follow ethical "rules," often ignoring them when financially motivated.
