Faith-Based Daily Awareness Post 9 May 2025

These updates are shared to help raise the situational awareness of Faith-Based organizations to best defend against and mitigate the impacts from all-hazards threats including physical security, cybersecurity, and natural disasters. 

Hack Exposed Data in Catholic Church Sex-Abuse Cases

A recent cyberattack on the financial advisory firm Berkeley Research Group (BRG) has compromised sensitive data related to multiple Catholic Church bankruptcy cases across the United States, including information on sexual abuse victims. The breach, detected in early March 2025, involved a hacker posing as an internal IT worker on Microsoft Teams to access a BRG employee’s laptop. Once inside the attacker deployed a variant of Chaos ransomware and demanded payment in exchange for deleting the stolen data. BRG paid the ransom and received assurances from the hacker that the data had been deleted though the firm has not detected any evidence of the data being distributed.

The compromised data pertains to bankruptcy filings from dioceses in cities including New Orleans, Baltimore, San Francisco, and San Diego. These filings often contain detailed information about sexual abuse claims, including victims’ names and the nature of their allegations. The U.S. Department of Justice’s Office of the U.S. Trustee has expressed deep concern over the potential exposure of such sensitive information and has criticized BRG for the delay between detecting the breach and notifying the public. The agency is also questioning whether BRG’s continued involvement in these bankruptcy proceedings presents a conflict of interest given the firm’s role in managing confidential data.

In response to the breach BRG has taken several steps to enhance its cybersecurity measures. The firm has taken its systems offline, reset passwords, and deployed advanced threat detection software. Additionally, BRG has enlisted the assistance of cybersecurity experts from Booz Allen Hamilton and has notified the Federal Bureau of Investigation. The incident underscores the critical importance of robust data protection protocols, especially when handling information related to sensitive legal matters such as sexual abuse cases.

Analyst Comments: The WSJ article on the Berkeley Research Group data breach is a clear and troubling example of the risks posed by third-party data handlers in sensitive legal matters. Despite BRG’s role as a trusted financial adviser in high-profile Catholic Church bankruptcy cases the breach highlights a significant lapse in cybersecurity preparedness specifically in vetting and managing internal security protocols.

This incident reinforces a critical lesson for organizations across all sectors: entrusting sensitive information to third parties without rigorous vetting and oversight creates a substantial risk exposure. BRG was responsible for safeguarding deeply personal and legally protected data, yet single social engineering tactic impersonating IT personnel led to ransomware deployment and a mass data compromise. Organizations will want to consider utilizing a third party risk management questionnaire (like this example from SecurityScorecard) to help evaluate potential vendors.

Also see:

Data Breach Notification: Roman Catholic Bishop of San Diego

500th Catholic church attack since 2020: Man detonates explosive on perpetual adoration chapel altar 

On May 6, 2025, a man detonated a quarter-stick of dynamite on the altar of the perpetual adoration chapel at St. Teresa of Calcutta Church in Mahanoy City, Pennsylvania. The explosion damaged the monstrance, broke glass candle holders, and shattered irreplaceable stained-glass windows. The suspect, 32-year-old Kyle Kuczynski, was arrested and charged with ethnic intimidation, arson, reckless endangerment, and risking catastrophe. Security footage revealed he had entered the chapel multiple times in the week prior, suggesting premeditation.

This incident marks the 500th documented attack on a Catholic church in the U.S. since 2020, according to CatholicVote’s tracker. The organization has criticized federal authorities for inadequate responses to such acts and is urging the Department of Justice to investigate and prosecute these attacks as federal crimes.

Analyst Comments: The attack using an explosive device in a sacred space represents a serious escalation in the type of vandalism and violence Catholic churches in the U.S. have experienced since 2020. The choice of the Perpetual Adoration Chapel, a space meant for continuous prayer and Eucharistic devotion, amplifies the symbolic weight of the attack. This being the 500th documented attack suggests a sustained pattern, not isolated incidents. There will be growing pressure on agencies like the DOJ to treat these as hate crimes or acts of domestic terrorism when warranted.

Leader of FEMA Is Dismissed as Trump Administration Takes Aim at the Agency

Cameron Hamilton, a former Navy SEAL and business executive, served as the acting Administrator of FEMA from January 22 to May 8, 2025. Appointed by President Donald Trump, Hamilton’s tenure was marked by a departure from the traditional appointment of disaster management professionals to lead FEMA. Prior to this role, he held positions in emergency management at the Department of State and the Department of Homeland Security.

On May 7, 2025, Hamilton testified before a U.S. House Appropriations subcommittee on Homeland Security, advocating for the agency’s continued operation. He stated, “I do not believe it is in the best interest of the American people to eliminate the Federal Emergency Management Agency.” The following day, he was dismissed from his position and replaced by David Richardson as acting administrator.

Analyst Comments: The rapid turnover in FEMA leadership Hamilton serving less than four months raises concerns about continuity in emergency preparedness. Emergency management agencies rely on stable leadership to coordinate across federal, state, and local partners, particularly during planning phases outside of active disaster seasons. Public trust in FEMA depends on the agency’s ability to deliver timely and coordinated responses to disasters. Leadership changes, if perceived as disruptive or frequent, can undermine public confidence, especially during high-stakes events like hurricanes, wildfires, or pandemics. Members are encouraged to review yesterday’s Weekly Report of Hurricane Preparedness ahead of the upcoming hurricane season.