Psychotherapy centre's database hacked, patient info held ransom


Level 29
Content Creator
May 29, 2018
A blackmailer demanding money from a group of psychotherapy centres has released more highly sensitive personal information about more than 200 of its patients.
The blackmailer is demanding that Vastaamo pay 40 bitcoins in order to halt the release of more patient data. The cryptocurrency sum corresponds to about 450,000 euros.
The perpetrator claims to have information on 40,000 patients. The company says it has tens of thousands of customers but has not confirmed how many of them may have been affected by the data hack.
Source: Psychotherapy centre's database hacked, patient info held ransom

There is latest news about this case too from today
Source2: Extortionist publishes more sensitive data on psychotherapy centres’ patients

Its big case on Finland, so i decided to post it here as it wont be publicly available anywhere else probably


Staff member
Malware Hunter
Jul 27, 2015
Therapy clinic Vastaamo has fired its CEO Ville Tapio in the wake of a disastrous data breach which has seen patients’ personal details, as well as notes of what has been discussed in confidential therapy sessions, exposed.
An investigation has uncovered that the database of customer details and therapy session notes was first breached in November 2018, but there was another security breach in mid-March 2019 which apparently CEO Ville Tapio knew about but – for reasons best known to himself – did not inform the appropriate authorities or with other members of Vastaamo’s board.