{"id":71390,"date":"2020-07-21T16:16:19","date_gmt":"2020-07-21T23:16:19","guid":{"rendered":"https:\/\/www.worldvision.org\/?page_id=71390"},"modified":"2022-07-25T08:51:19","modified_gmt":"2022-07-25T15:51:19","slug":"security-incident-faq","status":"publish","type":"page","link":"https:\/\/www.worldvision.org\/lp\/security-incident-faq","title":{"rendered":"Kaye-Smith Security Incident FAQ"},"content":{"rendered":"<!DOCTYPE html PUBLIC \"-\/\/W3C\/\/DTD HTML 4.0 Transitional\/\/EN\" \"http:\/\/www.w3.org\/TR\/REC-html40\/loose.dtd\">\n<html><body><div class=\"wpb-content-wrapper\"><p>[vc_row][vc_column]<\/p><div id=\"gambit-hero-box-1\" class=\"hero-box hero-box-effect-bubba\" style=\"background-color: #000000; border-color:#000000; height: 400px;\"><figure class=\"hero-box-wrapper\"><div class=\"hero-box-img\" style=\"background-image: url(https:\/\/wvusstatic.com\/www\/uploads\/2020\/06\/safari-bg.jpg);\"><\/div><figcaption><div class=\"hero-box-text\"><h3 class=\"hero-box-title\" style=\"font-size: 40px;\">Kaye-Smith Security Incident FAQ<\/h3><\/div><\/figcaption><\/figure><\/div>[\/vc_column][\/vc_row][vc_row][vc_column offset=&rdquo;vc_col-sm-offset-0 vc_col-xs-12&Prime;][vc_row_inner][vc_column_inner][vc_column_text]\n<h2 style=\"text-align: left\" data-pm-slice=\"1 1 []\">Kaye-Smith &ndash; a leader in the execution and management of business-critical communications in the Pacific Northwest and a service provider to World Vision, informed us on June 13<sup>th<\/sup>, 2022 that your personal data was potentially involved in a cyberattack. The following FAQs are here for your reference.<\/h2>\n<p>[\/vc_column_text][\/vc_column_inner][\/vc_row_inner][\/vc_column][\/vc_row][vc_row el_class=&rdquo;faq&rdquo;][vc_column offset=&rdquo;vc_col-sm-offset-0 vc_col-xs-12&Prime;][vc_row_inner][vc_column_inner width=&rdquo;2\/3&Prime; offset=&rdquo;vc_col-sm-offset-2 vc_col-xs-12&Prime;][vc_toggle title=&rdquo;What happened? When did this happen?&rdquo; style=&rdquo;simple&rdquo; size=&rdquo;lg&rdquo; css_animation=&rdquo;none&rdquo;]<\/p>\n<ul>\n<li><u>June 2nd, 2022<\/u>: Kaye-Smith is the subject of a ransomware attack that locks certain Kaye-Smith systems. Kaye-Smith&rsquo;s cybersecurity team and forensics experts go into action to contain the attack, eradicate the attacker, and restore secure operations.<\/li>\n<li><u>June 13th, 2022<\/u>: Kaye-Smith informs World Vision that they have seen file names indicating that World Vision&rsquo;s data could be amongst files accessed by the attacker.<\/li>\n<\/ul>\n<p>[\/vc_toggle][vc_toggle title=&rdquo;What is Kaye-Smith, and how are they connected to World Vision?&rdquo; style=&rdquo;simple&rdquo; size=&rdquo;lg&rdquo;]<\/p>\n<ul>\n<li>Kaye-Smith is a leader in the execution and management of business-critical communications in the Pacific Northwest and a service provider to World Vision. They handle the printing and mailing of receipts, monthly statements, service-related communications, and order fulfillment mailings.<\/li>\n<\/ul>\n<p>[\/vc_toggle][vc_toggle title=&rdquo;Do you know if my information was accessed?&rdquo; style=&rdquo;simple&rdquo; size=&rdquo;lg&rdquo;]<\/p>\n<ul>\n<li>Kaye-Smith has not completed its investigation to positively confirm which donors were impacted by the data breach. We have chosen to send out a notification now because we believe there is a high likelihood that your name was part of the data breach and wanted you to be aware of this. Please see #5 &ldquo;What information was exposed?&rdquo; and #11 &ldquo;What should I do to protect myself&rdquo;.<\/li>\n<li>Kaye-Smith used several measures to protect your data. Kaye-Smith has seen no evidence, and has no reason to believe, that any data was or will be made available publicly. As a precautionary measure, Kaye-Smith has hired outside experts to monitor the web and they have found no evidence that your data was released or misused.<\/li>\n<li>No World Vision donor credit card information, no bank account information, and no Social Security numbers were involved in the data breach.<\/li>\n<\/ul>\n<p>[\/vc_toggle][vc_toggle title=&rdquo;Will you notify me after the Kaye-Smith investigation is complete?&rdquo; style=&rdquo;simple&rdquo; size=&rdquo;lg&rdquo;]<\/p>\n<ul>\n<li>We do not plan on sending out further notification, unless the investigation uncovers new information that is substantially different than what we know today. We will reassess whether a further notification is needed at that point, but we believe that is highly unlikely.<\/li>\n<\/ul>\n<p>[\/vc_toggle][vc_toggle title=&rdquo;What information was exposed?&rdquo; style=&rdquo;simple&rdquo; size=&rdquo;lg&rdquo;]<\/p>\n<ul>\n<li>Donor account number, first and last name, mailing address(es), how long you&rsquo;ve been a World Vision donor, and current year and prior year giving amounts were potentially involved in the breach.<\/li>\n<\/ul>\n<p>[\/vc_toggle][vc_toggle title=&rdquo;Does this mean I am a victim of identity theft?&rdquo; style=&rdquo;simple&rdquo; size=&rdquo;lg&rdquo;]<\/p>\n<ul>\n<li>No. But please be extra careful if you receive any unsolicited communications, particularly if they claim to be from World Vision or Kaye-Smith. Please note that World Vision will never contact you unprompted to ask for your account details or security information, and they will never ask you to disclose your passwords. It&rsquo;s always a good idea to contact World Vision directly if you have any reservations about an unprompted communication.<\/li>\n<\/ul>\n<p>[\/vc_toggle][vc_toggle title=&rdquo;Have the police\/local authorities been notified?&rdquo; style=&rdquo;simple&rdquo; size=&rdquo;lg&rdquo;]<\/p>\n<ul>\n<li>Yes, Kaye-Smith has conducted a thorough investigation, which involved partnering with law enforcement and independent forensics experts to investigate this matter.<\/li>\n<\/ul>\n<p>[\/vc_toggle][vc_toggle title=&rdquo;Is my information still accessible?&rdquo; style=&rdquo;simple&rdquo; size=&rdquo;lg&rdquo;]<\/p>\n<ul>\n<li>Kaye-Smith has obtained deletion of the World Vision data impacted by this attack. Appropriate security measures have been taken to protect the data while the Kaye-Smith team analyzes it for breach notification purposes. The Kaye-Smith forensics team is monitoring for any signs of customer data being transferred or sold and has so far found no evidence of this.<\/li>\n<\/ul>\n<p>[\/vc_toggle][vc_toggle title=&rdquo;What are you doing to prevent this from happening again?&rdquo; style=&rdquo;simple&rdquo; size=&rdquo;lg&rdquo;]<\/p>\n<ul>\n<li><u>Kaye-Smith<\/u>: Kaye-Smith teams have identified and implemented several security improvements to limit a similar attack in the future.<\/li>\n<li><u>World Vision<\/u>: World Vision&rsquo;s security team has reviewed Kaye-Smith&rsquo;s technical response and believe that they have responded appropriately.<\/li>\n<\/ul>\n<p>[\/vc_toggle][vc_toggle title=&rdquo;Was this a cyber-attack?&rdquo; style=&rdquo;simple&rdquo; size=&rdquo;lg&rdquo;]<\/p>\n<ul>\n<li>Yes, Kaye-Smith experienced a ransomware attack. Ransomware is a type of cyber-attack through which a cybercriminal prevents users from accessing their system or personal files. Cybercriminals often steal data before preventing system access as a second way of leveraging ransom payment from their victims.<\/li>\n<\/ul>\n<p>[\/vc_toggle][vc_toggle title=&rdquo;What should I do to protect myself?&rdquo; style=&rdquo;simple&rdquo; size=&rdquo;lg&rdquo;]<\/p>\n<ul>\n<li>Please be extra careful if you receive any unsolicited communications, particularly if they claim to be from World Vision or Kaye-Smith. Please note that World Vision will never contact you unprompted to ask for your account details or security information, and they will never ask you to disclose your passwords. It&rsquo;s always a good idea to contact World Vision directly if you have any reservations about an unprompted communication.<\/li>\n<\/ul>\n<p>[\/vc_toggle][vc_toggle title=&rdquo;Have the responsible parties been arrested?&rdquo; style=&rdquo;simple&rdquo; size=&rdquo;lg&rdquo;]<\/p>\n<ul>\n<li>Not to our knowledge.<\/li>\n<\/ul>\n<p>[\/vc_toggle][vc_toggle title=&rdquo;I want to speak with someone directly&rdquo; style=&rdquo;simple&rdquo; size=&rdquo;lg&rdquo;]<\/p>\n<ul>\n<li>Call 1-800-655-7969 between 6 a.m. and 6 p.m. PT Monday through Friday.<\/li>\n<\/ul>\n<p>[\/vc_toggle][\/vc_column_inner][\/vc_row_inner][\/vc_column][\/vc_row]<\/p>\n<\/div><\/body><\/html>\n","protected":false},"excerpt":{"rendered":"<p> Kaye-Smith &ndash; a leader in the execution and management of business-critical communications in the Pacific Northwest and a service provider to World Vision, informed us on June 13th, 2022 that your personal data was potentially involved in a cyberattack. The following<a class=\"excerpt-read-more\" href=\"https:\/\/www.worldvision.org\/lp\/security-incident-faq\" title=\"ReadKaye-Smith Security Incident FAQ\">&#8230;<\/a><\/p>\n","protected":false},"author":410,"featured_media":0,"parent":754,"menu_order":0,"comment_status":"closed","ping_status":"closed","template":"","meta":{"_acf_changed":false,"_kad_blocks_custom_css":"","_kad_blocks_head_custom_js":"","_kad_blocks_body_custom_js":"","_kad_blocks_footer_custom_js":"","footnotes":""},"class_list":["post-71390","page","type-page","status-publish","hentry"],"yoast_head":"<!-- This site is optimized with the Yoast SEO Premium plugin v27.2 (Yoast SEO v27.3) - https:\/\/yoast.com\/product\/yoast-seo-premium-wordpress\/ -->\n<title>Kaye-Smith Security Incident FAQ | World Vision<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.worldvision.org\/lp\/security-incident-faq\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Kaye-Smith Security Incident FAQ\" \/>\n<meta property=\"og:description\" content=\"Kaye-Smith &ndash; a leader in the execution and management of business-critical communications in the Pacific Northwest and a service provider to World Vision, informed us on June 13th, 2022 that your personal data was potentially involved in a cyberattack. The following...\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.worldvision.org\/lp\/security-incident-faq\" \/>\n<meta property=\"og:site_name\" content=\"World Vision\" \/>\n<meta property=\"article:publisher\" content=\"https:\/\/www.facebook.com\/worldvision\" \/>\n<meta property=\"article:modified_time\" content=\"2022-07-25T15:51:19+00:00\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:site\" content=\"@worldvisionusa\" \/>\n<meta name=\"twitter:label1\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data1\" content=\"5 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/www.worldvision.org\\\/lp\\\/security-incident-faq\",\"url\":\"https:\\\/\\\/www.worldvision.org\\\/lp\\\/security-incident-faq\",\"name\":\"Kaye-Smith Security Incident FAQ | World Vision\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.worldvision.org\\\/#website\"},\"datePublished\":\"2020-07-21T23:16:19+00:00\",\"dateModified\":\"2022-07-25T15:51:19+00:00\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/www.worldvision.org\\\/lp\\\/security-incident-faq#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/www.worldvision.org\\\/lp\\\/security-incident-faq\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/www.worldvision.org\\\/lp\\\/security-incident-faq#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/www.worldvision.org\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"LP Main Landing Page\",\"item\":\"https:\\\/\\\/www.worldvision.org\\\/lp\"},{\"@type\":\"ListItem\",\"position\":3,\"name\":\"Kaye-Smith Security Incident FAQ\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/www.worldvision.org\\\/#website\",\"url\":\"https:\\\/\\\/www.worldvision.org\\\/\",\"name\":\"World Vision\",\"description\":\"Building a better world for children\",\"publisher\":{\"@id\":\"https:\\\/\\\/www.worldvision.org\\\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/www.worldvision.org\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/www.worldvision.org\\\/#organization\",\"name\":\"World Vision\",\"url\":\"https:\\\/\\\/www.worldvision.org\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.worldvision.org\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"https:\\\/\\\/www.worldvision.org\\\/wp-content\\\/uploads\\\/2018\\\/04\\\/world_vision_logo.png\",\"contentUrl\":\"https:\\\/\\\/www.worldvision.org\\\/wp-content\\\/uploads\\\/2018\\\/04\\\/world_vision_logo.png\",\"width\":1920,\"height\":396,\"caption\":\"World Vision\"},\"image\":{\"@id\":\"https:\\\/\\\/www.worldvision.org\\\/#\\\/schema\\\/logo\\\/image\\\/\"},\"sameAs\":[\"https:\\\/\\\/www.facebook.com\\\/worldvision\",\"https:\\\/\\\/x.com\\\/worldvisionusa\",\"https:\\\/\\\/www.instagram.com\\\/worldvisionusa\",\"https:\\\/\\\/www.youtube.com\\\/user\\\/WorldVisionUSA\",\"https:\\\/\\\/www.tiktok.com\\\/@worldvisionusa\"]}]}<\/script>\n<!-- \/ Yoast SEO Premium plugin. -->","yoast_head_json":{"title":"Kaye-Smith Security Incident FAQ | World Vision","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.worldvision.org\/lp\/security-incident-faq","og_locale":"en_US","og_type":"article","og_title":"Kaye-Smith Security Incident FAQ","og_description":"Kaye-Smith &ndash; a leader in the execution and management of business-critical communications in the Pacific Northwest and a service provider to World Vision, informed us on June 13th, 2022 that your personal data was potentially involved in a cyberattack. The following...","og_url":"https:\/\/www.worldvision.org\/lp\/security-incident-faq","og_site_name":"World Vision","article_publisher":"https:\/\/www.facebook.com\/worldvision","article_modified_time":"2022-07-25T15:51:19+00:00","twitter_card":"summary_large_image","twitter_site":"@worldvisionusa","twitter_misc":{"Est. reading time":"5 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/www.worldvision.org\/lp\/security-incident-faq","url":"https:\/\/www.worldvision.org\/lp\/security-incident-faq","name":"Kaye-Smith Security Incident FAQ | World Vision","isPartOf":{"@id":"https:\/\/www.worldvision.org\/#website"},"datePublished":"2020-07-21T23:16:19+00:00","dateModified":"2022-07-25T15:51:19+00:00","breadcrumb":{"@id":"https:\/\/www.worldvision.org\/lp\/security-incident-faq#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.worldvision.org\/lp\/security-incident-faq"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/www.worldvision.org\/lp\/security-incident-faq#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.worldvision.org\/"},{"@type":"ListItem","position":2,"name":"LP Main Landing Page","item":"https:\/\/www.worldvision.org\/lp"},{"@type":"ListItem","position":3,"name":"Kaye-Smith Security Incident FAQ"}]},{"@type":"WebSite","@id":"https:\/\/www.worldvision.org\/#website","url":"https:\/\/www.worldvision.org\/","name":"World Vision","description":"Building a better world for children","publisher":{"@id":"https:\/\/www.worldvision.org\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.worldvision.org\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.worldvision.org\/#organization","name":"World Vision","url":"https:\/\/www.worldvision.org\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.worldvision.org\/#\/schema\/logo\/image\/","url":"https:\/\/www.worldvision.org\/wp-content\/uploads\/2018\/04\/world_vision_logo.png","contentUrl":"https:\/\/www.worldvision.org\/wp-content\/uploads\/2018\/04\/world_vision_logo.png","width":1920,"height":396,"caption":"World Vision"},"image":{"@id":"https:\/\/www.worldvision.org\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/www.facebook.com\/worldvision","https:\/\/x.com\/worldvisionusa","https:\/\/www.instagram.com\/worldvisionusa","https:\/\/www.youtube.com\/user\/WorldVisionUSA","https:\/\/www.tiktok.com\/@worldvisionusa"]}]}},"acf":[],"taxonomy_info":[],"featured_image_src_large":false,"author_info":{"display_name":"World Vision Writer","author_link":"https:\/\/www.worldvision.org\/author\/mhiebert"},"comment_info":0,"_links":{"self":[{"href":"https:\/\/www.worldvision.org\/api\/wp\/v2\/pages\/71390","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.worldvision.org\/api\/wp\/v2\/pages"}],"about":[{"href":"https:\/\/www.worldvision.org\/api\/wp\/v2\/types\/page"}],"author":[{"embeddable":true,"href":"https:\/\/www.worldvision.org\/api\/wp\/v2\/users\/410"}],"replies":[{"embeddable":true,"href":"https:\/\/www.worldvision.org\/api\/wp\/v2\/comments?post=71390"}],"version-history":[{"count":27,"href":"https:\/\/www.worldvision.org\/api\/wp\/v2\/pages\/71390\/revisions"}],"predecessor-version":[{"id":84960,"href":"https:\/\/www.worldvision.org\/api\/wp\/v2\/pages\/71390\/revisions\/84960"}],"up":[{"embeddable":true,"href":"https:\/\/www.worldvision.org\/api\/wp\/v2\/pages\/754"}],"wp:attachment":[{"href":"https:\/\/www.worldvision.org\/api\/wp\/v2\/media?parent=71390"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}