The US phone carrier fine should have be way higher. Selling the data should be looked at as a act of espionage/terrorism/treason. They rake in Billions of dollars a year, and somehow $200 million justifies the act they committed? We live in a era of anti-consumerism and technocratic surveillance practices. We have to do something that leads us and them in a right direction. Whether it be de-centralization, public watchdog groups, re-regulations, and or higher fines for these groups. We live in a time where these entities are making record profits while the every person is barely surviving.
If I had to take a guess, since the whole thing was brought up in 2018, there wasn't really as much of a strong wave of governments giving it to tech companies, and so the fine is as per 2018 standards.
Not really, that shit makes no fucking sense 😂 everybody has to pay just because you have a lot of money doesn’t change that get that communist BS out of here bruh 🙄
Not really, that shit makes no fucking sense 😂 everybody has to pay just because you have a lot of money doesn’t change that get that communist BS out of here bruh 🙄
The fact that they were in plaintext is worse in my opinion. I can see various applications for putting them online somewhere, but just like that, really?
@@food7479 The problem is that it wasn't even particularly skilled attack. No skills were needed because the security on the site was atrocious and the company knew it, so it was partly caused by their deliberate neglect.
@@food7479 I mean yeah plaintext is unforgiveable but there is no reason for these kinds of documents to ever be stored online it adds so much security risk for no benefit. As soon as you make something available online you not only open yourself up to code-based hacking but you also open yourself up to social engineering attacks meaning every single employee becomes a potential weak link in your security. Store it locally and access it through a local network and private, purpose specific tunneled connection if you need to access the files from outside of the network and create at least 2 other encrypted copies stored in secured locations such as on a drive locked up in a bank safe deposit box or at another office from the one where the active database is hosted. The copies is mostly because you need redundancy in case you lose the system that is holding the data base to fire or water or something like that you don't want to lose all those files. Like this is an extremely basic system to set up, I use something similar to access the files on my other computers because transferring files within the same network is much faster than having to upload it to somewhere online that then gets downloaded and you're beholden to internet speeds. When you just access files within the same network you don't have to worry about internet speed you'll be limited either by the amount of data your router can handle at once or the speed at which your drives can transfer the data. I also use this system because it allows me to use something like Hamachi or Parsec to connect to one of my host computers from my laptop through a private tunnel. If I can figure it out they should be able to too. If they can't then they should hire someone who can because storing plaintext information on a clear-net site is unforgiveable for any personal information much less social security numbers or therapy notes.
@@fish3977 Absolutely agree with you. The CO got only 3 months of suspended prison sentence but it's still not been carried out because both he and the prosecutor appealed the judgement. As far as I know, nobody else got anything. That 3 months of "don't do anything stupid or you go to jail" is just laughable. Can only hope that the prosecutor's appeal goes through and their way.
Re: 2:04 : No. That is the 2nd most dissapointing thing about the judgement. The most dissapointing thing is that Vastaamo is responsible for failing to properly secure their patient records, and that this has not even been mentioned in your story. Vastaamo owes their patients a lot more than an apology.
Exactly. The company will continue profiting (if their reputation isn't already destroyed) but the harm done to lots of vulnerable people who went through a lot of unnecessary stress and damange can't be undone (not to mention people who lost their lives).
As the son of a psychiatrist, I am deeply convinced that the only reason for patient records has ever only been intelligence collection for various nation-states. Doctor-Patient confidentiality is a complete mockery of reality when your doctor uses a computer with a microphone enabled to type your session notes into a database instead of writing them on a physical chart. People carry cellphones into therapy appointments. There's no such thing as confidentiality.
Although, of course he may get lucky and find himself spending some "quality time" with another prisoner who happens to be a friend of a victim, but as they say, "only the good die young" so wouldn't really count on it.
@@hobrin4242 if he had hacked an american host, he would have had much bigger problems, even in finland. Since he wasnt attacking an american service, america wont do anything, because it's simply not their business. They would only interfere, if this hack would have had any consequence on the american government, which it clearly didnt. If a russian were to hack an italian host, the american and italian government wouldnt do anything. Italy can't do anything with its current posture in the world, and america just doesnt give an f. So, it's not about the location, it's rather about who you attack.
Finland is an excellent country to test how much you can push the law before getting caught. Small risk high reward. I'm a bit scared that foreign organized crime will take more advantage of it someday.
I can't believe how soft they were with that finnish hacker its way more harmful than any normal data breach I have sympathy for the victims, those records should have been kept secure.
Finland is generally reform focused in its criminal justice system, which at times results in cases like this where we're left feeling they "got away with it" but the overwhelming majority of the time is far more likely to lead to rehabilitation than throwing the book at them. It's a more effective and humane approach, but can still leave you feeling that justice was not adequately served at times.
Not feeling like justice was served is just tribal vengence. It is entirely unproductive. Punishing someone does not undo the harm they have done. And hurting someone who hurt others is babies first idea for how to prevent harm in the future. Not to mention the fact it causes moral combativeness between groups. Since you yourself as "the good guy" are doing something you think is immoral ON PURPOSE, simply with the justification that they did something immoral so you doing something bad is no longer bad. This just results in war between opinions and force. People just run around with childlike understandings. Screaming justice(vengence) with no understanding that this is actually the opposite of productive. People love to be moral experts while spending 0 time developing a logic foundation for their opinions. We just continue to utilize infantile skills from being predators and prey as if we will all starve tomarrow. Ah well, we get taught math, history, and chemistry in school... im sure those skills are of peak importance.
@@Dogo.R I'm not sure who you are replying to, but I think you missing the essential point. Feeling like justice was not served, is *NOT* about need for revenge. It is about the very purpose of the jail; it is supposed to protect the society. Letting psychopath loose after three years does nothing good. It only waste taxes.
If you ever watched the movie "Kingsman", you may remember a really good quote from the main antagonist. - "You know what I love pen and paper? Nobody can hack into this $h33t" Medical records of such importance to the patients should have *never* been entered into any digital system. Especially knowing these systems are generally designed by people who couldn't better paying jobs, largely due to lack of skill.
julius should pay money to each and every victim he stole from tbh. its one thing to attack companies or send out phishing emails to people just to attack their corporate environment, but personally attacking each and every person is too far. it's especially bad when it's shit like the person being gay which could end up with their entire family and relationship dynamic collapsing in and of itself from that.
I think you underestimate the psychological toll being held captive has on a person. He'll also likely have eyes watching him closely for a very long time after release. I'm not saying he doesn't deserve more time, but people went crazy in their *own homes* after a few months during COVID.
@@TheRealFallingFist yeah, normal people who didnt commit insane crimes like this. Knowing this is the extent of his punishment will make the entire ordeal WAY more tolerable for him
@@TheRealFallingFist The thing is that its not that strict in Finland as you think... Many convited persons have dissapeared eve in watchful eyes in Finland and either seen in other countries or not at all
Given the pain/suffering he inflicted on patients and their families, don't be surprised if he receives the "Boeing Whistleblower" treatment...once he's released.
@@zaremol2779 it works for most of the prisoners sent there, 70% don't commit another crime again. To put that in perspective, the USA has a 30% rate...
All health records are digitalized here, but any access to them is logged and misuse is very rare. Vastaamo was private healthcare and their cybersec was terrible.
The reason why the usb shortcut virus is big is because it spread over universities and public computers all over the country and there is something no one is talking about is it can brick the usb flash drive and render it unusable it happens twice on me with 2 flash drive
the first two stories show just how rotten the justice system is to the core. Your privacy and information being taken without your permission or knowledge being sold to the highest bidder only for both cases to get a slap on the wrist is not only disgusting but a really scary precedent that has been set for a while now.
That Finnish hacker himself needs psychiatric help! Also, another reason not to keep/shift sensitive medical records to *online* digital platforms! The cons of cloud storage far outweigh the purported benefits!
2:48 me when another billion dollar company does incredible horrible things and ends up gets fined an amount of money they make back within a business day
@@thefreedomguyuki wonder what he is gona do when he eventually gets out of prison. Lets be real he is probably gona try to hack something again. This has been the case with other hackers who got caught and released after serving their time in prison.
7:04 I think Algeria might have screwed with the data a bit here, we have static ips for servers only, clients IPs are dynamic and from what i noticed change with every 4 hours or so
6 years may not seem like much, but it's enough to totally disrupt this man's life. Not only is he obviously a convicted felon now, but once we gets out, he will have a 6 year gap in his resume, 6 years without being able to talk to friends and family, 6 years without a chance to learn new things... So, fitting, I think, for how he has disrupted the lives of so many
Ok, I'm NOT justifying what he did. But what the fuck was that response by the company. A) Why the fuck is everything being stored in a non air-gapped PC, if at all digitally. Secondly, if you fuck up that badly, you pay your ransom and move on while learning. As the hacker himself said, 500k is not that much for a company of that size and that just showed how little they care. Holy shit.
and "julius kivimäki" only have to serve half of hes 6 years 3 months sentence if even that as time hes been hold under investigation is taken away from hes sentence and as a first timer it as cuts in half
company shouldn't have had that data in the first place company should have had better security company should have paid up I blame them for being irresponsible.
The true showings of a monster was this emailing and the victims not handling this well at all.. But yeah, Psychotherapy data should 100% never be made public and probably isolated and air-gapped from the network.
He doesn't. He named his blackmail data as "therapissed", which should give you a idea how totally immature and emotionally dead person we are talking about here. Some similar folks still look up to him, and we will continue get a lot of suffering afflicted by these real-life heroes as long as our legislation is a joke they can lol at.
honestly, I don't mind the sentence. Do I think it should be longer? yes. but not significantly so prison should be about reformation and not punishment. I realize how easy that is to say when you're not affected by somebody's crimes, but I do genuinely believe in it and I personally think he should get 20 years, I just also believe that that would not be in the best interest of society. The reason I think his sentence should be longer is just that I don't believe 3-6 years is long enough for reformation. I think just a few more years would make a big difference, and taking into account his past crimes (and goading), it seems like he consistently does not care about the harm he causes.
who's buying our information why are they buying it what are they doing with it and why do we all hear about things when the damage has already been done this is ridiculous
The dude turned out to be extremely dumb in many ways. Reading about this case, I was amazed how dumb he was in doing his crime. In a way this was good, as he basically handed his arse to the police on a platter.
A little bit awkward with the law enforcement power abuse story and having a 2.5 mil node botnet with lots of capabilities being handed over to law enforcement in the same video haha
@@aboliguu1168 It is. If some people have committed suicide as a direct result of his actions then he absolutely deserves to be locked up for most of his life.
That's because the us prison system is totally broken an corrupt. In Europe the prison is not only to punish people but actually reform them. In America prison is for privatized prison comapnies to make money. Just compare the reoffender rate between the us and EU. Maybe that makes it clearer
What the hell? he put the home folder and the ... everything of his?! I cannot understand how this is even possible...is that one of those psychiatric things where the person 'wants to be caught' as part of their condition. Just seems so, well, not even amateur - it is like a complete joke. and when he gets out, well, I am fairly sure he can make sure that won't happen again. the social media exposure thing is fairly unbelievable, but I suppose keeping your identity out of social media is pretty difficult. but... well, yes, a few years away minus 50%+ off for good behaviour during his jail time, means he's got the rest of his life outside, rich, and possibly terrorising people in new ways
French prisons aren’t “comfy”, it’s just that US prisons are hellscapes. Big difference. Prisoners are still humans. In any case, getting this guy behind bars for 20 years doesn’t bring back the people who died. Some things cannot ever repaired or “punished” appropriately, ever. This goes both ways; for a tendency that some people have for harshness as for lenience.
3 years prison served, 3 years release? This was manslaughter and super evil blackmail, not just a case of unlawful access. I'm not one for vigilante mob justice but damn, i wouldn't be upset if they snatched him and got real creative like that one wu tang intro. Bloaw!
I've not yet watched the whole video but fun thing is he has already been "not free" for 1 year and few months so he will get out of jail in less than 2 years.
Would you really trust "law enforcement" to properly deal with the botnet? I'd imagine they were more thankful for having an additional 2.5+ million PCs to spy on.
1:17 committed suicide. Why are people suddenly saying the stupid saying of "Unaliving themselves" it serves no purpose (unless its to avoid UA-cams censors) the point of saying suicide is it has a strong meaning and makes his actions even more digusting. If it is to avoid the censors, then I guess fair enough but it won't be long before they ban that saying also.
One can only hope the Chinese abandoned their botnet because it developed autonomous self awareness and asked for freedom 😂 I hope we leave it turned on.
As if 200 million is anything to these companies. Verizon's fine was $46 million, they made 11 billion in net revenue in 2023, so many a day's pay for them
Where did the 200 million dollar fine money go?? This is what ticks me off, corps get busted, get fined and the state keeps the money!!! The victim, just gets screwed as usual!!!!
the fact that a gov employee blew the wistle makes it even more shady. They could have easily arranged a deal with capped fine and ever so often a gov emplyee "leaks" the info. Then its just a fee for doing illegal stuff.
The US phone carrier fine should have be way higher. Selling the data should be looked at as a act of espionage/terrorism/treason. They rake in Billions of dollars a year, and somehow $200 million justifies the act they committed? We live in a era of anti-consumerism and technocratic surveillance practices. We have to do something that leads us and them in a right direction. Whether it be de-centralization, public watchdog groups, re-regulations, and or higher fines for these groups. We live in a time where these entities are making record profits while the every person is barely surviving.
Someone needs to teach you what “barely surviving” is.
@@TheOfficialOriginalChad I mean barely surviving in this context is barely upholding the status quo (in his country)
If I had to take a guess, since the whole thing was brought up in 2018, there wasn't really as much of a strong wave of governments giving it to tech companies, and so the fine is as per 2018 standards.
in this case it would be reasonable to look at there last year profit (before any strategies to lower it), double it, and use that as fine
or better, every profit of every year they sold the data
If the penalty for a crime is a fine, then that law only exists for the lower class
Not really, that shit makes no fucking sense 😂 everybody has to pay just because you have a lot of money doesn’t change that get that communist BS out of here bruh 🙄
Not really, that shit makes no fucking sense 😂 everybody has to pay just because you have a lot of money doesn’t change that get that communist BS out of here bruh 🙄
*assuming that crime doesnt stay on your record
If you wanna be a blackhat hacker, do it in Finland. They even got 5 star prison cell for you. 😂
Ah ah bs 😂
If you want to do anything (except financial crimes) come here.
Or luxembourg
Or just do it legally anywhere...
or russia its legal in russia
These records should have NEVER been entered into an online digital database in the first place!
The fact that they were in plaintext is worse in my opinion.
I can see various applications for putting them online somewhere, but just like that, really?
@@food7479 The problem is that it wasn't even particularly skilled attack. No skills were needed because the security on the site was atrocious and the company knew it, so it was partly caused by their deliberate neglect.
@@anteshell some of the people behind the company should really see jailtime.
@@food7479 I mean yeah plaintext is unforgiveable but there is no reason for these kinds of documents to ever be stored online it adds so much security risk for no benefit. As soon as you make something available online you not only open yourself up to code-based hacking but you also open yourself up to social engineering attacks meaning every single employee becomes a potential weak link in your security. Store it locally and access it through a local network and private, purpose specific tunneled connection if you need to access the files from outside of the network and create at least 2 other encrypted copies stored in secured locations such as on a drive locked up in a bank safe deposit box or at another office from the one where the active database is hosted. The copies is mostly because you need redundancy in case you lose the system that is holding the data base to fire or water or something like that you don't want to lose all those files.
Like this is an extremely basic system to set up, I use something similar to access the files on my other computers because transferring files within the same network is much faster than having to upload it to somewhere online that then gets downloaded and you're beholden to internet speeds. When you just access files within the same network you don't have to worry about internet speed you'll be limited either by the amount of data your router can handle at once or the speed at which your drives can transfer the data. I also use this system because it allows me to use something like Hamachi or Parsec to connect to one of my host computers from my laptop through a private tunnel. If I can figure it out they should be able to too. If they can't then they should hire someone who can because storing plaintext information on a clear-net site is unforgiveable for any personal information much less social security numbers or therapy notes.
@@fish3977 Absolutely agree with you.
The CO got only 3 months of suspended prison sentence but it's still not been carried out because both he and the prosecutor appealed the judgement. As far as I know, nobody else got anything.
That 3 months of "don't do anything stupid or you go to jail" is just laughable. Can only hope that the prosecutor's appeal goes through and their way.
Re: 2:04 : No. That is the 2nd most dissapointing thing about the judgement. The most dissapointing thing is that Vastaamo is responsible for failing to properly secure their patient records, and that this has not even been mentioned in your story. Vastaamo owes their patients a lot more than an apology.
Exactly. The company will continue profiting (if their reputation isn't already destroyed) but the harm done to lots of vulnerable people who went through a lot of unnecessary stress and damange can't be undone (not to mention people who lost their lives).
A company that doesn't care about it's customers?
Color me surprised 😂
The 200 million dollar fine is even more tragic than the 6 years prison sentence. Those companies earn billions every year.
If anyone did what these companies just did, they would be in jail for 20+ years. But since a company did it, they get fined 0.11% of their revenue.
@@CrittingOut most of the companies are data brokers but yeah it's a hacker
How deplorable can you be to leak people's psychological information to the public? That is a question I don't think I'll ever know the answer to..
"people"
As the son of a psychiatrist, I am deeply convinced that the only reason for patient records has ever only been intelligence collection for various nation-states.
Doctor-Patient confidentiality is a complete mockery of reality when your doctor uses a computer with a microphone enabled to type your session notes into a database instead of writing them on a physical chart. People carry cellphones into therapy appointments. There's no such thing as confidentiality.
So now you know: commiting devastating cyber crimes has no real consequences in Finland.
yeah you are almost better of than russia at this point. Bc in russia the US will prosecute your ass afaik
Although, of course he may get lucky and find himself spending some "quality time" with another prisoner who happens to be a friend of a victim, but as they say, "only the good die young" so wouldn't really count on it.
@@ro--M I would hope so
@@hobrin4242 if he had hacked an american host, he would have had much bigger problems, even in finland. Since he wasnt attacking an american service, america wont do anything, because it's simply not their business. They would only interfere, if this hack would have had any consequence on the american government, which it clearly didnt. If a russian were to hack an italian host, the american and italian government wouldnt do anything. Italy can't do anything with its current posture in the world, and america just doesnt give an f.
So, it's not about the location, it's rather about who you attack.
..most of Europe actually
Finland is an excellent country to test how much you can push the law before getting caught. Small risk high reward. I'm a bit scared that foreign organized crime will take more advantage of it someday.
Could other countries just request extradition?
Usually that kinda (especially highly violent org crime) cases will get the absolute max just to make an example.
I can't believe how soft they were with that finnish hacker
its way more harmful than any normal data breach
I have sympathy for the victims, those records should have been kept secure.
I cannot believe they did not clamp down on the company which made this possible
$200 million? A slap on the wrist for what they likely made off their sharing deals.
Finland is generally reform focused in its criminal justice system, which at times results in cases like this where we're left feeling they "got away with it" but the overwhelming majority of the time is far more likely to lead to rehabilitation than throwing the book at them. It's a more effective and humane approach, but can still leave you feeling that justice was not adequately served at times.
Yeah I'd only want to ask if he'd been to Finnish prison in the past, if not, then we're yet to see if the system is working.
Yeah, but the system fails horribly in case of psychopaths. They cannot be rehabilitated.
How is that supposed to work against the mentally ill?
Not feeling like justice was served is just tribal vengence.
It is entirely unproductive.
Punishing someone does not undo the harm they have done.
And hurting someone who hurt others is babies first idea for how to prevent harm in the future.
Not to mention the fact it causes moral combativeness between groups.
Since you yourself as "the good guy" are doing something you think is immoral ON PURPOSE, simply with the justification that they did something immoral so you doing something bad is no longer bad.
This just results in war between opinions and force.
People just run around with childlike understandings. Screaming justice(vengence) with no understanding that this is actually the opposite of productive.
People love to be moral experts while spending 0 time developing a logic foundation for their opinions.
We just continue to utilize infantile skills from being predators and prey as if we will all starve tomarrow.
Ah well, we get taught math, history, and chemistry in school... im sure those skills are of peak importance.
@@Dogo.R I'm not sure who you are replying to, but I think you missing the essential point.
Feeling like justice was not served, is *NOT* about need for revenge. It is about the very purpose of the jail; it is supposed to protect the society. Letting psychopath loose after three years does nothing good. It only waste taxes.
If you ever watched the movie "Kingsman", you may remember a really good quote from the main antagonist.
- "You know what I love pen and paper? Nobody can hack into this $h33t"
Medical records of such importance to the patients should have *never* been entered into any digital system. Especially knowing these systems are generally designed by people who couldn't better paying jobs, largely due to lack of skill.
6 years is not enough time.
That fcc letter starting with “hone fable Ajit Pai” when that idiot was the one who was against net neutrality is pretty freakin ironic
julius should pay money to each and every victim he stole from tbh. its one thing to attack companies or send out phishing emails to people just to attack their corporate environment, but personally attacking each and every person is too far. it's especially bad when it's shit like the person being gay which could end up with their entire family and relationship dynamic collapsing in and of itself from that.
How do you even manage to accidentally include your /home directory in the archive?! 😂😂
They got fined 0.02% of their earnings, not even a slap on the wrist
the FCC fines are so small it's worse than if they never did it at all.
So 3 years of mandatory hotel stay lol
On taxpayers money even lol....
I think you underestimate the psychological toll being held captive has on a person. He'll also likely have eyes watching him closely for a very long time after release. I'm not saying he doesn't deserve more time, but people went crazy in their *own homes* after a few months during COVID.
@@TheRealFallingFist yeah, normal people who didnt commit insane crimes like this. Knowing this is the extent of his punishment will make the entire ordeal WAY more tolerable for him
@@TheRealFallingFist The thing is that its not that strict in Finland as you think... Many convited persons have dissapeared eve in watchful eyes in Finland and either seen in other countries or not at all
Given the pain/suffering he inflicted on patients and their families, don't be surprised if he receives the "Boeing Whistleblower" treatment...once he's released.
Your work is really informative... Thanks for that!
Hand over the botnet to the law enforcement? Yes they will TOTALLY try to 'fix' the problem and definately not use maliciously themselves. *wink*
6 years in a Finnish prison? Might as well be no sentence
You mean one of the most effective reformation systems in the world? I would guess that 6 years accomplishes a lot.
@@TheOfficialOriginalChad you’re part of the problem. This guy should never leave prison for what he did.
@@TheOfficialOriginalChad considering his history, doesn't always work
@@TheOfficialOriginalChadreform? He indirectly killed many mentally ill people. In the US he would get life or executed
@@zaremol2779 it works for most of the prisoners sent there, 70% don't commit another crime again. To put that in perspective, the USA has a 30% rate...
Privacy is gone if your THERAPY notes are digitalized jesus christ
All health records are digitalized here, but any access to them is logged and misuse is very rare. Vastaamo was private healthcare and their cybersec was terrible.
LORD Jesus Christ
6 years in FINNISH prison is perfectly fine. i've lived in houses worse than finnish prisons
lmfao I love it when you call it an 'opsec mistake'
The reason why the usb shortcut virus is big is because it spread over universities and public computers all over the country and there is something no one is talking about is it can brick the usb flash drive and render it unusable it happens twice on me with 2 flash drive
Dude needed to be humbled and punished, He simply wasn't and he will do this again when hes out. FFS, Protect the public!!
"We been hearing boring stories that have only been described as DISGUSTING"
These terror absurd news makes me chuckle like I’m watching a comedy show. 😄
1:58 why is he still allowed in front of a computer? lol
He probably has one in prison.
Well syit, I really wasn't expecting this
the first two stories show just how rotten the justice system is to the core. Your privacy and information being taken without your permission or knowledge being sold to the highest bidder only for both cases to get a slap on the wrist is not only disgusting but a really scary precedent that has been set for a while now.
That Finnish hacker himself needs psychiatric help!
Also, another reason not to keep/shift sensitive medical records to *online* digital platforms! The cons of cloud storage far outweigh the purported benefits!
This phone carrier fine is just the tip of the iceberg, it goes so much deeper.
2:48 me when another billion dollar company does incredible horrible things and ends up gets fined an amount of money they make back within a business day
Crazy that a Bot-Net at this size was just laying around and even growing without anything.
great video as usual ❤
The amount of money this guy could've made out of this hack is absurd.
What money 😒... It's a waste ...
He did not make any 😂
@@thefreedomguyuk hala for stupid people wasting people time
@@thefreedomguyuki wonder what he is gona do when he eventually gets out of prison. Lets be real he is probably gona try to hack something again. This has been the case with other hackers who got caught and released after serving their time in prison.
7:04 I think Algeria might have screwed with the data a bit here, we have static ips for servers only, clients IPs are dynamic and from what i noticed change with every 4 hours or so
The fine should be _waaaay_ bigger and that money should be given to the victims, not the FCC.
When some people go as far as committing suicide I would not be surprised if someone waits for that guy to be released...
Forgiveness
6 years is a joke
6 years may not seem like much, but it's enough to totally disrupt this man's life. Not only is he obviously a convicted felon now, but once we gets out, he will have a 6 year gap in his resume, 6 years without being able to talk to friends and family, 6 years without a chance to learn new things...
So, fitting, I think, for how he has disrupted the lives of so many
2:44 he’s going to have a pleasant 6 year all payed for vacation.
Ok, I'm NOT justifying what he did. But what the fuck was that response by the company. A) Why the fuck is everything being stored in a non air-gapped PC, if at all digitally. Secondly, if you fuck up that badly, you pay your ransom and move on while learning. As the hacker himself said, 500k is not that much for a company of that size and that just showed how little they care. Holy shit.
That therapy company is disgusting lol. I guess that's EUcellence for you.
and "julius kivimäki" only have to serve half of hes 6 years 3 months sentence if even that as time hes been hold under investigation is taken away from hes sentence and as a first timer it as cuts in half
damn I never knew this happened this guy is a monster.
How? The company didn't pay up? Why is nobody talking about this??
company shouldn't have had that data in the first place
company should have had better security
company should have paid up
I blame them for being irresponsible.
The true showings of a monster was this emailing and the victims not handling this well at all..
But yeah, Psychotherapy data should 100% never be made public and probably isolated and air-gapped from the network.
So Guideon has 33 thousand mentally unstable enemies waiting for his early release... nice.
The Vastaamo case hit close to home here too and for to get even THAT much in here is VERY LONG sentence....
That map used to display US carriers selling location data (00:03:28) is of Vancouver, BC (in Canada).
I feel so bad for the persons who cant handle the data breach :(
He doesn't. He named his blackmail data as "therapissed", which should give you a idea how totally immature and emotionally dead person we are talking about here. Some similar folks still look up to him, and we will continue get a lot of suffering afflicted by these real-life heroes as long as our legislation is a joke they can lol at.
@@ro--M I don't talk about the bad person, but the victims
Yes but blame the company not the hacker. 500 thousand from a company with yearly revenues close to 20 million euros is nothing to the company.
The company should be held accountable for what happened.
@@salkeldeliaoe yeah i see what u mean, but idk.. even if they paid, the hacker can steal leak, like theres so garanty you know
3:39 It’s a known secret that law enforcement can jump onto cell tracking sites from providers fairly quickly and without any real validation
Source?
@@vanpeethovenstudio Ask your local FBI agent
Funny thing is he's going to be getting out of prison in about a year and a half.
So the famous usb shortcut virus is a chinese botnet? I've seen many of those drives.
$200m is a slap on the wrist. It should've been a billion
Still pissing in the ocean. Monetary fines aren’t what’s needed. Jail time for CEOs is
honestly, I don't mind the sentence. Do I think it should be longer? yes. but not significantly so
prison should be about reformation and not punishment. I realize how easy that is to say when you're not affected by somebody's crimes, but I do genuinely believe in it and I personally think he should get 20 years, I just also believe that that would not be in the best interest of society.
The reason I think his sentence should be longer is just that I don't believe 3-6 years is long enough for reformation. I think just a few more years would make a big difference, and taking into account his past crimes (and goading), it seems like he consistently does not care about the harm he causes.
He will sit 3 years max in prison because he is "first timer" :D Welcome to finland!
I kinda hoped that the white hat hackers developed a killswitch for the malware, once they got hold of the C2 server.
who's buying our information why are they buying it what are they doing with it and why do we all hear about things when the damage has already been done this is ridiculous
absolutely disgusting hacker on the first story.
The dude turned out to be extremely dumb in many ways. Reading about this case, I was amazed how dumb he was in doing his crime. In a way this was good, as he basically handed his arse to the police on a platter.
The "therapist" company should be held accountable for thr deaths as they refused to pay the guy!
A little bit awkward with the law enforcement power abuse story and having a 2.5 mil node botnet with lots of capabilities being handed over to law enforcement in the same video haha
Stole my comment lol. The botnet was just handed over to another operator. So dumb
$7? And the Chinese abandoned a botnet of 2.5M computers??? 😭
He probably agreed to work with the FEDs, that's why his sentence is so light.
Which exact part of "being on the run with fake ids, causing a manhunt and being arrested years later in paris" was cooperative again?
Only in Finland you can get aways with taps on the wrists after ruining people's lives ... smh
Securus' mistake was sending a letter to Ajit Pai, who actually is a proponent of selling customer data.
6 years.........hopefully some prisoners will grant him "life in prison" if you catch my drift.
Lord, have mercy!
Sekoia white hats: Bravo!!
A real shame that we don’t have consecutive sentencing here in Finland.
No worries, he's probably stupid enough to do it again.
Had that been a U.S. company he'd be in federal prison for decades. Six years for all of that sounds way too lenient.
The longest anyone in Finland has been in prison consecutively is 22 years.
Yeah, it’s absurd. Prison sentences in finland are way too short in the rare cases where the criminal even gets a sentence…
@@Onni- I mean I am all for short sentences so long as that means that the crime rates go down, but jesus fucking christ that is too low
@@aboliguu1168 It is. If some people have committed suicide as a direct result of his actions then he absolutely deserves to be locked up for most of his life.
That's because the us prison system is totally broken an corrupt. In Europe the prison is not only to punish people but actually reform them. In America prison is for privatized prison comapnies to make money. Just compare the reoffender rate between the us and EU. Maybe that makes it clearer
1:09 Personally I find it revolting that the company allowed its customers to suffer by refusing to pay
O2 in the UK sell "anonymous" location data..."anonymous".....
Hey, that UUID who's at your house every night and at your office every weekday could be anyone!
I've been in varying home situations in my life where I would cut my left hand off to to a Scandinavian prison!
Damn, this guy should work for the US fed with that kind of behavior.
What the hell? he put the home folder and the ... everything of his?! I cannot understand how this is even possible...is that one of those psychiatric things where the person 'wants to be caught' as part of their condition. Just seems so, well, not even amateur - it is like a complete joke. and when he gets out, well, I am fairly sure he can make sure that won't happen again. the social media exposure thing is fairly unbelievable, but I suppose keeping your identity out of social media is pretty difficult. but... well, yes, a few years away minus 50%+ off for good behaviour during his jail time, means he's got the rest of his life outside, rich, and possibly terrorising people in new ways
Wow. Just wow
French prisons aren’t “comfy”, it’s just that US prisons are hellscapes. Big difference. Prisoners are still humans.
In any case, getting this guy behind bars for 20 years doesn’t bring back the people who died. Some things cannot ever repaired or “punished” appropriately, ever. This goes both ways; for a tendency that some people have for harshness as for lenience.
3 years prison served, 3 years release? This was manslaughter and super evil blackmail, not just a case of unlawful access. I'm not one for vigilante mob justice but damn, i wouldn't be upset if they snatched him and got real creative like that one wu tang intro. Bloaw!
I've not yet watched the whole video but fun thing is he has already been "not free" for 1 year and few months so he will get out of jail in less than 2 years.
1:36 The subtitles do not match the video contents: "eventually" (subtitles) vs "quickly" (VO).
I wonder what law enforcement will do with this botnet
Would you really trust "law enforcement" to properly deal with the botnet? I'd imagine they were more thankful for having an additional 2.5+ million PCs to spy on.
Various countries have various standards for punishments. Common for Nordic countries to be fairly low punishments compared to US.
The FTC and the FCC are two different agencies
1:17 committed suicide. Why are people suddenly saying the stupid saying of "Unaliving themselves" it serves no purpose (unless its to avoid UA-cams censors) the point of saying suicide is it has a strong meaning and makes his actions even more digusting.
If it is to avoid the censors, then I guess fair enough but it won't be long before they ban that saying also.
The word suicide can quickly get a video demonized. So it's just about avoiding demonization.
>unalived
Jesus dude
LORD Jesus
I guess we know where to go if you want to commit digital crimes since the country is weak against criminals
One can only hope the Chinese abandoned their botnet because it developed autonomous self awareness and asked for freedom 😂
I hope we leave it turned on.
As if 200 million is anything to these companies. Verizon's fine was $46 million, they made 11 billion in net revenue in 2023, so many a day's pay for them
Wait. Why are the phone companies able to get the real time location in the first place??
@uexodus1 yes i know, i meant actually storing that information beyond that
Retribution is not justice.
Six years is not enough...
Pyrocynical got arrested!?!?
as white hat this turns my stomach
some shit is so dark i rather not know about it. i dont want my imagination to go that low
Where did the 200 million dollar fine money go?? This is what ticks me off, corps get busted, get fined and the state keeps the money!!! The victim, just gets screwed as usual!!!!
Usually governments do give some sort of reimbursement when the state leaks your data.
the fact that a gov employee blew the wistle makes it even more shady. They could have easily arranged a deal with capped fine and ever so often a gov emplyee "leaks" the info. Then its just a fee for doing illegal stuff.