• Home
  • cyber
  • Boys and Girls Club of the Northern Plains: Boys & Girls Club of the Northern Plains lays out next steps after cyber attack
cyber Cyber Attack

Boys and Girls Club of the Northern Plains: Boys & Girls Club of the Northern Plains lays out next steps after cyber attack

May 14, 2026 2 min read
Boys and Girls Club of the Northern Plains: Boys & Girls Club of the Northern Plains lays out next steps after cyber attack

AI-Powered Deepfake Fraud Targets Boys and Girls Club of the Northern Plains, Stealing $200,000

The Boys and Girls Club of the Northern Plains fell victim to a sophisticated cyberattack, losing $200,000 from a reserve account tied to its Yankton, South Dakota, location. The incident, described as a "deepfake fraud" by CEO Jodi Hernandez, involved threat actors using AI-voice cloning and spoofed phone numbers to gain unauthorized access to the organization’s funds.

Hernandez confirmed that no personal data was compromised and that the stolen money did not come from recent donations. The funds were part of a reserve account designated for building maintenance, and the organization does not expect the loss to disrupt its programs or services.

In response, the Boys and Girls Club is overhauling its cybersecurity measures, including updating internal policies, enhancing staff training, and partnering with an external IT firm to prevent future attacks. Board member Reece Kurtenbach emphasized the organization’s commitment to learning from the incident and strengthening its defenses with expert guidance.

Law enforcement, including the Yankton Police Department, is investigating the attack. Police Chief Jason Foote praised the organization for publicly sharing details of the incident, noting that such transparency helps raise awareness about the growing threat of AI-driven fraud. He warned that these attacks are difficult to detect, urging individuals and organizations to verify communications before responding to requests involving financial transactions.

The Boys and Girls Club holds cybersecurity insurance, though it remains unclear how much of the stolen funds will be recovered. The case highlights the increasing sophistication of cybercriminals leveraging AI to bypass traditional security measures.

Source: https://www.dakotanewsnow.com/2026/05/14/boys-girls-club-northern-plains-lays-out-next-steps-after-cyber-attack/

Boys and Girls Club of the Northern Plains TPRM report: https://www.rankiteo.com/company/boys-girls-clubs-of-the-northland

"id": "boy1778804634",
"linkid": "boys-girls-clubs-of-the-northland",
"type": "Cyber Attack",
"date": "5/2026",
"severity": "60",
"impact": "2",
"explanation": "Attack limited on finance or reputation"
{'affected_entities': [{'industry': 'Youth services',
                        'location': 'Yankton, South Dakota, USA',
                        'name': 'Boys and Girls Club of the Northern Plains',
                        'type': 'Non-profit organization'}],
 'attack_vector': 'AI-voice cloning, spoofed phone numbers',
 'data_breach': {'personally_identifiable_information': 'None'},
 'description': 'The Boys and Girls Club of the Northern Plains fell victim to '
                'a sophisticated cyberattack, losing $200,000 from a reserve '
                'account tied to its Yankton, South Dakota, location. The '
                'incident involved threat actors using AI-voice cloning and '
                'spoofed phone numbers to gain unauthorized access to the '
                'organization’s funds.',
 'impact': {'data_compromised': 'None',
            'financial_loss': '$200,000',
            'operational_impact': 'No disruption to programs or services '
                                  'expected'},
 'investigation_status': 'Ongoing',
 'lessons_learned': 'The incident highlights the growing threat of AI-driven '
                    'fraud and the need for enhanced verification processes '
                    'for financial transactions.',
 'motivation': 'Financial gain',
 'post_incident_analysis': {'corrective_actions': 'Updating internal policies, '
                                                  'enhancing staff training, '
                                                  'partnering with an external '
                                                  'IT firm',
                            'root_causes': 'AI-voice cloning and spoofed phone '
                                           'numbers used to bypass '
                                           'verification processes'},
 'recommendations': 'Verify communications before responding to requests '
                    'involving financial transactions, enhance staff training '
                    'on cybersecurity, and partner with external IT firms for '
                    'improved security measures.',
 'references': [{'source': 'Boys and Girls Club of the Northern Plains'}],
 'response': {'communication_strategy': 'Public disclosure of incident details',
              'law_enforcement_notified': 'Yankton Police Department',
              'remediation_measures': 'Overhauling cybersecurity measures, '
                                      'updating internal policies, enhancing '
                                      'staff training',
              'third_party_assistance': 'External IT firm'},
 'stakeholder_advisories': 'Commitment to strengthening defenses with expert '
                           'guidance.',
 'title': 'AI-Powered Deepfake Fraud Targets Boys and Girls Club of the '
          'Northern Plains, Stealing $200,000',
 'type': 'Fraud',
 'vulnerability_exploited': 'Social engineering, lack of verification for '
                            'financial transactions'}
Published by
Jeremy C
Jeremy C
You might also like
Great! Next, complete checkout for full access to Rankiteo Blog.
Welcome back! You've successfully signed in.
You've successfully subscribed to Rankiteo Blog.
Success! Your account is fully activated, you now have access to all content.
Success! Your billing info has been updated.
Your billing was not updated.