LDS Church data stolen in major cyberattack

The Church of Jesus Christ of Latter-day Saints confirmed Thursday that it experienced a major cyberattack in March that affected the Church’s database containing private information of church members, staff, and employees.

The Church reassures that the data breach did not include donation history or any banking information associated with online transactions.

Since that time, the Church has been working with U.S. federal law enforcement authorities and third-party cybersecurity experts to establish the origin, nature, and scope of this incident and to mitigate possible impacts. Law enforcement authorities believe the risk that the information will be used to harm individuals is low, and our monitoring efforts have not identified any attempts of harmful use.

The Church did not share the information regarding the incident at the request of law enforcement authorities since it may affect the ongoing investigation. The Church has notified members who have been affected by the cyberattack, although this step is not required by law.

The breached systems contain personal data, including basic contact information, of members of the Church of Jesus Christ of Latter-day Saints. The data accessed may include if you provided it, your username, membership record number, full name, gender, email address(es), birthdate, mailing address, phone number(s), and preferred language.