2 min read

Vastamo Hacker Says He Doesn"t Care if Therapy Leaks Drive Patients to Suicide

Filip TRUȚĂ

October 26, 2020

Ad One product to protect all your devices, without slowing them down.
Free 90-day trial
Vastamo Hacker Says He Doesn"t Care if Therapy Leaks Drive Patients to Suicide

Finnish local media is reporting new developments in the ransomware incident involving the Vastamo psychotherapy center. The attacker has been regularly leaking sensitive information to coerce the practice into paying ransom as authorities continue to investigate the incident.

Earlier this month, the psychotherapy practice with offices across almost the entirety of Finland confirmed its systems had been hacked. The attackers had made off with patient data, threatening to publish it to eager fraudsters on the dark web. To avoid the conundrum, the medical practice would have to pay ransom.

Were you a victim of a data breach? Time to find out with Bitdefender”s Digital Identity Protection tool.

The story pretty much ended there. Local authorities told Vastamo to keep disclosure to a minimum as investigators sift through the data in an effort to catch the hackers. Those efforts are still ongoing, but new details are surfacing.

As reported by local news outlet Ilta-Sanomat, the breach itself occurred in the fall of 2018. Why the attackers did nothing with the stolen data is a mystery. For one reason or another, they made their ransom demands this month, and the amount is steep: 450,000 Euros in digital currency, according to the report.

Vastamo reportedly refused to negotiate with the aggressors. During this time, the perps tried to coerce the firm into paying by releasing chunks of the stolen patient data on the web – hundreds of records at a time, including “content of therapy sessions,” the report notes.

The site then reveals that a lone attacker was behind the hack, but that he is part of a larger hacking group whose victims extend beyond Finland and beyond the medical community (Google-translated):

“The blackmailer says the group he represents has also broken into four other organizations, none of which are Finnish. It is alleged that these have paid ransoms of similar size or larger. Others are not actors in the field of therapy, but they also contain sensitive personal information alongside trade secrets.”

During an exchange with the extortionist, the site insisted that these actions could push some patients to suicide. The extortionist reportedly said he didn”t care if that happens. In fact, he reportedly went as far as to contact individual victims with smaller ransom demands.

The extortionist has so far leaked 300 patient records on the dark web.

If the Ilta-Sanomat news story is accurate, Vastamo appears to have caved in and paid the hacker”s demands.

More details about the company”s efforts in the wake of the incident can be found on its official website.

tags


Author



Right now

Top posts

The Holiday Guide to Tech Support: Fixing the Family Computer

The Holiday Guide to Tech Support: Fixing the Family Computer

November 24, 2021

2 min read
Bitdefender Celebrates 20 Years of Cybersecurity Leadership

Bitdefender Celebrates 20 Years of Cybersecurity Leadership

November 04, 2021

3 min read
Bitdefender Study Reveals How Consumers Like (and Dislike) Managing Passwords

Bitdefender Study Reveals How Consumers Like (and Dislike) Managing Passwords

October 26, 2021

3 min read
What are drive-by download attacks and how do you prevent them?

What are drive-by download attacks and how do you prevent them?

October 25, 2021

2 min read
Criminals Can't Wait to Add Your IoT Device to Their DDoS Networks

Criminals Can't Wait to Add Your IoT Device to Their DDoS Networks

October 22, 2021

2 min read
Six in 10 Consumers Faced a Cyber Threat in 2021, New Bitdefender Study Reveals

Six in 10 Consumers Faced a Cyber Threat in 2021, New Bitdefender Study Reveals

October 20, 2021

3 min read

FOLLOW US ON

SOCIAL MEDIA


You might also like

Iranian Threat Actor Deployed Malicious PowerShell Script through Phishing, Then Stole Files and Credentials Iranian Threat Actor Deployed Malicious PowerShell Script through Phishing, Then Stole Files and Credentials
Silviu STAHIE

November 26, 2021

1 min read
Ukraine Arrests Five iPhone Hackers of the Phoenix International Hacking Group Ukraine Arrests Five iPhone Hackers of the Phoenix International Hacking Group
Filip TRUȚĂ

November 26, 2021

1 min read
Couple arrested for secretly installing cryptomining software on department store PCs Couple arrested for secretly installing cryptomining software on department store PCs
Graham CLULEY

November 26, 2021

1 min read