Jump directly to the content
HACK ATTACK

Warning Microsoft hackers demanded $11,000 in Bitcoin from kids’ charity and owners say ‘ANYONE is at risk’

A NON-PROFIT was attacked by cyber hackers, who demanded $11,000 in bitcoin. Now the non-profit is warning people to protect themselves.

First Steps of Spartanburg, a non-profit that works with children, was targeted by hackers. Executive Director Barbara Manoski called the incident “heartbreaking.”

A Microsoft vulnerability resulted in non-profit, First Steps of Spartanburg receiving emails demanding $11,000 in Bitcoin
2
A Microsoft vulnerability resulted in non-profit, First Steps of Spartanburg receiving emails demanding $11,000 in BitcoinCredit: Getty

“You know, our work is so directed toward good, toward making the lives of young children and their families better. To building a stronger more healthy and prosperous community,”  she said.

“Why in the world would someone want to do this to us?”

A few weeks ago, Manoski and IT Directors Eddie Burkholder got a call from the South Carolina Law Enforcement Division, who warned about a ransomware attack.

Suspicious were being sent to people claiming to be from the non-profit. The hackers also sent a message to First Steps, telling them their files were “encrypted” and locked down by an extension called “Chernobyl.”

The criminals had asked for “$11,000 in bitcoin” to release the files.

Manoski called the incident “a nightmare.”

Burkholder and SLED held an investigation, revealing that the hackers got in through a Microsoft vulnerability in their email server.

“What they typically do is they will access your network, set that bomb in there somewhere and then at some specific time they go back, and they just activate it and boom, you’re done,” Burkholder said.

According to authorities, the non-profit was the sixth charity to be hit in South Carolina with the scam.

The Federal Trade Commission said there are four main ways that hackers can seek access into your computer or network.

The most common way is with scam emails with corrupt links. They also use infected websites that download malware, online ads with malicious codes and server vulnerabilities. 

HOW TO PROTECT YOURSELF

In order to protect yourself from cybercriminals, be sure to back up your computer or network. Trusted backups such as Google Drive, iCloud and Carbonite are useful tools.

Be sure that your web browsers such as Chrome and Safari are up to date. You can also install anti-virus protection on your device.

First Steps had some of those systems in place and didn’t have to pay the ransom.

“Cause a lot of times, you send that money, and they don’t unencrypt your files and you still have to rebuild,” said Burkholder.

Manoski warned anyone who uses a computer that they can also go through the same situation.

READ MORE SUN STORIES

“You’re not exempt from his. I mean, if they’ll go after a non-profit, they’ll go after anybody won’t they,” she said.

The Sun has reached out to Microsoft for comment.

Executive Director Barbara Manoski warned that anyone could become victim to similar scams
2
Executive Director Barbara Manoski warned that anyone could become victim to similar scamsCredit: Facebook/Spartanburg County First Steps
Topics