Skip to content
Cyber Breaches
Search
Data breachResolved

Vastaamo data breach (2019)

In October 2020, the Finnish psychotherapy service Vastaamo was the subject of a ransomware attack targeting first the company itself, followed by their patients directly.

Victim
Vastaamo
records
30.4K
SectorHealthcare
CountryFinland

Imported from Have I Been Pwned — pending editorial review and translation to French. The summary below is machine-extracted; consult the source for details.

In 2019-03-31, Vastaamo was affected by a data breach. Approximately 30,433 accounts were exposed. In October 2020, the Finnish psychotherapy service Vastaamo was the subject of a ransomware attack targeting first the company itself, followed by their patients directly.

Sources

  1. haveibeenpwned.comhttps://haveibeenpwned.com/PwnedWebsites#Vastaamo
  2. vastaamo.fihttps://vastaamo.fi

Related incidents

Data breachContained

Vastaamo psychotherapy data breach and patient extortion (Finland, 2020)

Records on approximately 33,000 patients of Finnish psychotherapy provider Vastaamo were stolen in 2018 from an unencrypted database with no root password. After failed company-extortion in October 2020, the attacker sent ransom demands to ~30,000 patients directly. Founder later acquitted; Aleksanteri Kivimäki convicted and sentenced to 6 years 3 months.

Victim
Vastaamo (Finnish psychotherapy centre)
Loss
$670.0K
Records
33.0K
Data breachResolved

Promofarma data breach (2019)

In August 2019, a data breach from the Spanish online pharmacy Promofarma appeared for sale on a dark web marketplace. The breach exposed over 2.7M records and contained almost 1.3M unique customer email addresses. The data also included customer names and was provided to HIBP by dehashed.com.

Victim
Promofarma
Records
1.3M