30
classic opsec mistake (discuss.tchncs.de)
submitted 8 months ago by lemmesay@discuss.tchncs.de to c/cybersecuritymemes@lemmy.world
5 comments fedilink hide all child comments

so, the company was Vastaamo. was because it got bankrupt after the breach, and GDPR violations.

the "hacker"(or rather cracker) was extradited from France to Finland.
you can read about how terrible the company's security was here: https://tietosuoja.fi/en/-/administrative-fine-imposed-on-psychotherapy-centre-vastaamo-for-data-protection-violations

or watch mental outlaw's video on the matter, or the Wikipedia article on the breach.

now there are several things that shouldn't have happened (e.g.: don't do these things on your main OS, have root access disabled, etc.), but I'll leave that to you experts.

top 5 comments
sorted by: hot top controversial new old
[-] amio@kbin.social 7 points 8 months ago

Hackermans

[-] lemmesay@discuss.tchncs.de 5 points 8 months ago

it's almost as if company begged to get hacked. but imagine the horror those people whose data was leaked had to go through. they open up to their psychologist and now everyone knows about it.

[-] EmperorHenry@infosec.pub 5 points 8 months ago

As soon as I first heard about services like betterhelp and their competitors, I knew it was a terrible idea.

Therapists have to keep records of everything you say to them, and if it's a big-tech owned service like that that's already getting hacked every other hour, do you think it's safe to have intimate details of your personal problems in a database like that?

[-] EmperorHenry@infosec.pub -1 points 8 months ago

Betterhelp is owned by facebook...Or meta or whatever the fuck it's called now.

this post was submitted on 11 Feb 2024
30 points (100.0% liked)

Cybersecurity - Memes

1960 readers
2 users here now

Only the hottest memes in Cybersecurity

founded 1 year ago
MODERATORS
Sam1232188@lemmy.world
neurohost@lemmy.world
Alphadef@programming.dev
CannaVet@lemmy.world