Pennsylvania’s attorney general has announced a settlement with a software company about flawed security practices.
Michelle Henry joined with 49 other Attorneys General in settling with data management company Blackbaud regarding a 2020 ransomware hack that impacted 13,000 nonprofits, healthcare, and educational organizations along with millions of customers of those institutions.
The settlement was for nearly $50 million with Pennsylvania’s share nearly $1.4 million.
The company also agreed to strengthen breach notification practices such as prohibiting the misrepresentation of the status of personal information, implementing response plans for security incidents, and a promise to provide appropriate assistance to customers in the event of a breach in the future.
