cross-posted from: https://discuss.tchncs.de/post/10692187
so, the company was Vastaamo. was because it got bankrupt after the breach, and GDPR violations.
the “hacker”(or rather cracker) was extradited from France to Finland.
you can read about how terrible the company’s security was here: https://tietosuoja.fi/en/-/administrative-fine-imposed-on-psychotherapy-centre-vastaamo-for-data-protection-violationsor watch mental outlaw’s video on the matter, or the Wikipedia article on the breach.
now there are several things that shouldn’t have happened (e.g.: don’t do these things on your main OS, have root access disabled, etc.), but I’ll leave that to you experts.
Once again proves its not our technology thats weak, its our own brains
would be great if i wasnt forced to share data with morons with that shitty fucking brain