Vastaamo Hacker Sentenced


Issue #14

Vastaamo Hacker Sentenced

Ahoy there, fellow Netizens!

Before getting to this week’s story, I have a quick announcement. Going forward, I’ll be sending this newsletter out once every two weeks instead of once every week. I hope you’ll continue to enjoy the newsletters, even though they’ll be a little less frequent!

Now, let’s talk about Julius Kivimäki, a 26-year-old Finnish hacker who was sentenced to prison earlier this week for his attack on Finnish psychotherapy provider Vastaamo.

Kivimäki breached Vastaamo in 2018 and stole sensitive patient data, including notes about patient therapy sessions. In 2020, he demanded a payment of 40 Bitcoin from Vastaamo in exchange for him not publishing patient files on the dark web. When Vastaamo refused, Kivimäki contacted individual patients and threatened to release their therapy notes unless they paid a ransom.

Despite some patients paying the ransom, all the files were ultimately released on the dark web. The attacker also accidentally included a copy of his home folder, which helped identify Kivimäki as the perpetrator of the attack.

Given the sensitive nature of the therapy notes, it is not surprising that a number of suicides have been linked to the Vastaamo hack. Kivimäki, however, reportedly claimed while extorting patients that he did not care if they were driven to suicide.

Kivimäki was sentenced to six years and three months in prison, which was just shy of the seven-year maximum prosecutors were aiming for. Several months were knocked off of the maximum sentence since he was willing to pay compensation to the victims.

However, Kivimäki has denied the charges and will probably appeal the ruling.

Until next time, stay safe out there!

113 Cherry St #92768, Seattle, WA 98104-2205
Unsubscribe · Preferences

Safe Not Scammed

Subscribe to my weekly newsletter to keep up with the latest hacks, scams and privacy violations, plus what you can do to protect yourself!

Read more from Safe Not Scammed

Issue #18 Why You Can’t Trust Caller ID Image made using Canva Ahoy there, fellow Netizens! This will be the last Safe Not Scammed newsletter for a while, as I’ll be going on hiatus over the summer (and potentially beyond) due to family obligations. Thank you so much for being a subscriber! I hope you’ve found the newsletters useful! Now, let’s talk about why you should never trust Caller ID… What happened to Mark Cuban? Last weekend, Mark Cuban, the Shark Tank star and co-founder of Cost...

Issue #17 This Authenticator App Did What? Image made using Canva Ahoy there, fellow Netizens! This week, let’s talk about what happened with Raivo, a popular authenticator app for iOS. Raivo’s nasty surprise Raivo users had a nasty surprise at the end of May. After updating the authenticator app, they found their 2FA codes had been deleted, locking them out of their online accounts. Mobime, the company who owns Raivo, announced they found a way for users to restore their codes if they had...

Issue #16 Is Recall Worth the Risk? Image made using Canva Ahoy there, fellow Netizens! This week, let’s talk about Microsoft’s latest controversial feature: Recall. Recall is currently available on Microsoft’s AI powered Copilot+ PCs. It allows you to retrace what you were doing on your computer up to three months ago. It does this by taking screenshots every five seconds and storing them locally on your machine, allowing you to explore them later in a timeline format or via search. While...