· ·
Pro Bono Work
Helping charities fighting off the bad guys.
Attackers are not picky. Schools, hospitals, charities - same phishing kits, same ransomware affiliates.
Charities hold donor and beneficiary data and often run on thin IT budgets. Save the Children and 140+ charities across Ireland and the UK are not edge cases.
I do a limited amount of pro bono security and privacy work for charities. Reach out with a question or a mess - I cannot take every case, but I will try to point you somewhere useful. Details: pro bono services.
What usually goes wrong
- Personal data theft - donor and volunteer records sold or used for follow-on scams
- Ransomware - ops freeze; fundraising and services stop
- Payment and phishing scams - staff and volunteers are soft targets for BEC-style fraud
Stakes: harm to people when health or finance data leaks, operations offline, reputation that kills donations, and board exposure under laws like the NZ Privacy Act.
What actually helps
Skip the fifty-control wishlist. Start here:
- Unique passwords + MFA on email, banking, and donor platforms
- Collect less personal data; delete what you no longer need
- Offline / offline-capable backups you have restored at least once
- One page: who to call on ransomware day (IT, lawyer, privacy regulator)
Then take the free workshops and pro bono offers from firms that know the sector. Security for charities is triage, not perfection.
Related
- Enable MFA everywhere for turning MFA on across accounts
- When do you need to think about security and privacy? for staging security help as you grow