Julius Kivimäki, a 26-year-old Finnish hacker, has been sentenced to six years and three months in prison for attempting to blackmail 33,000 people whose confidential therapy notes he stole. Kivimäki, also known as Zeekill, obtained the notes after breaking into the databases of Finland's largest psychotherapy company, Vastaamo.
The hack, which occurred in 2020, was a devastating blow to the company and its patients. Kivimäki demanded a 400,000 Euro ransom from Vastaamo, but when the company refused to pay, he emailed thousands of patients, threatening to publish their notes and personal details on the darknet. He also asked for 200 Euros from each patient, causing widespread fear and anxiety among the victims.
One of the victims, Tiina Parikka, described the experience as "living hell." She had been seeking therapy to overcome mental health problems and had confided in her therapist about sensitive issues. When she received the email from Kivimäki, she felt her privacy had been violated, and she relapsed into her mental health problems.
The investigation into the hack was one of the largest and most complex in Finnish history. Kivimäki was arrested in Paris under a fake identity and was later found guilty of all counts, including aggravated blackmail and data breach. The judges described his actions as "ruthlessly taking advantage of another person's special weakness."
Kivimäki's trial was also notable for his disappearance during the proceedings. He went missing for over a week after refusing to be recalled back to prison by the court. Despite his attempts to evade justice, he was eventually found and brought back to court, where he was sentenced to prison.
The Vastaamo hack has had far-reaching consequences. The company, which was once a highly regarded and successful business in Finland, collapsed after the hack. The boss of Vastaamo, Ville Tapio, was also convicted of failing to protect his customers' sensitive data and was given a suspended three-month prison sentence.
The case has also raised questions about the security of sensitive data and the need for companies to protect their customers' privacy. The investigation found that Vastaamo's databases were vulnerable and open to the internet without proper protections, making it easy for Kivimäki to gain access.
The victims of the hack are still seeking justice and compensation. Civil court cases are likely to begin soon, and many are hoping to receive compensation for the harm they have suffered.
In conclusion, the Vastaamo hack and Kivimäki's subsequent trial have highlighted the importance of data security and privacy. The case has also shown that cybercriminals will stop at nothing to exploit vulnerabilities and cause harm. It is crucial for companies and individuals to take steps to protect their sensitive data and to hold those responsible accountable for their actions.
No comments:
Post a Comment