Disgusting Hacker Gets 6 Years in Prison
Vložit
- čas přidán 2. 06. 2024
- 0:00 Intro
00:14 Disgusting Hacker Gets 6 Years in Prison
2:48 FCC Fines Carriers $200 Million
5:28 White Hats Target Zombie Botnet
===============================================
My Website: www.seytonic.com/
Follow me on TWTR: / seytonic
Follow me on INSTA: / jhonti
=============================================== - Zábava
These records should have NEVER been entered into an online digital database in the first place!
The fact that they were in plaintext is worse in my opinion.
I can see various applications for putting them online somewhere, but just like that, really?
@@food7479 The problem is that it wasn't even particularly skilled attack. No skills were needed because the security on the site was atrocious and the company knew it, so it was partly caused by their deliberate neglect.
@@anteshell some of the people behind the company should really see jailtime.
@@food7479 I mean yeah plaintext is unforgiveable but there is no reason for these kinds of documents to ever be stored online it adds so much security risk for no benefit. As soon as you make something available online you not only open yourself up to code-based hacking but you also open yourself up to social engineering attacks meaning every single employee becomes a potential weak link in your security. Store it locally and access it through a local network and private, purpose specific tunneled connection if you need to access the files from outside of the network and create at least 2 other encrypted copies stored in secured locations such as on a drive locked up in a bank safe deposit box or at another office from the one where the active database is hosted. The copies is mostly because you need redundancy in case you lose the system that is holding the data base to fire or water or something like that you don't want to lose all those files.
Like this is an extremely basic system to set up, I use something similar to access the files on my other computers because transferring files within the same network is much faster than having to upload it to somewhere online that then gets downloaded and you're beholden to internet speeds. When you just access files within the same network you don't have to worry about internet speed you'll be limited either by the amount of data your router can handle at once or the speed at which your drives can transfer the data. I also use this system because it allows me to use something like Hamachi or Parsec to connect to one of my host computers from my laptop through a private tunnel. If I can figure it out they should be able to too. If they can't then they should hire someone who can because storing plaintext information on a clear-net site is unforgiveable for any personal information much less social security numbers or therapy notes.
@@fish3977 Absolutely agree with you.
The CO got only 3 months of suspended prison sentence but it's still not been carried out because both he and the prosecutor appealed the judgement. As far as I know, nobody else got anything.
That 3 months of "don't do anything stupid or you go to jail" is just laughable. Can only hope that the prosecutor's appeal goes through and their way.
The US phone carrier fine should have be way higher. Selling the data should be looked at as a act of espionage/terrorism/treason. They rake in Billions of dollars a year, and somehow $200 million justifies the act they committed? We live in a era of anti-consumerism and technocratic surveillance practices. We have to do something that leads us and them in a right direction. Whether it be de-centralization, public watchdog groups, re-regulations, and or higher fines for these groups. We live in a time where these entities are making record profits while the every person is barely surviving.
Someone needs to teach you what “barely surviving” is.
@@TheOfficialOriginalChad I mean barely surviving in this context is barely upholding the status quo (in his country)
If I had to take a guess, since the whole thing was brought up in 2018, there wasn't really as much of a strong wave of governments giving it to tech companies, and so the fine is as per 2018 standards.
in this case it would be reasonable to look at there last year profit (before any strategies to lower it), double it, and use that as fine
or better, every profit of every year they sold the data
If the penalty for a crime is a fine, then that law only exists for the lower class
Not really, that shit makes no fucking sense 😂 everybody has to pay just because you have a lot of money doesn’t change that get that communist BS out of here bruh 🙄
Not really, that shit makes no fucking sense 😂 everybody has to pay just because you have a lot of money doesn’t change that get that communist BS out of here bruh 🙄
*assuming that crime doesnt stay on your record
If you wanna be a blackhat hacker, do it in Finland. They even got 5 star prison cell for you. 😂
Ah ah bs 😂
If you want to do anything (except financial crimes) come here.
Or luxembourg
Or just do it legally anywhere...
or russia its legal in russia
The 200 million dollar fine is even more tragic than the 6 years prison sentence. Those companies earn billions every year.
If anyone did what these companies just did, they would be in jail for 20+ years. But since a company did it, they get fined 0.11% of their revenue.
@@CrittingOut most of the companies are data brokers but yeah it's a hacker
A sentence of 40 years is more in line.
💀
No sentence is more in line. It was the company's fault for not paying the guy despite it being literal pocket change for them.
Really? You want the company to pay a criminal so that he "won't leak the data"? How about the criminal just.. you know, doesn't hack into the servers and steal personal information in the first place?
Is that the hill you want to die on?
@@salkeldeliaoe you are absolutely braindead
@@salkeldeliaoeyeah they should have paid but the guy still deserves to be sentenced bruh wdym
Re: 2:04 : No. That is the 2nd most dissapointing thing about the judgement. The most dissapointing thing is that Vastaamo is responsible for failing to properly secure their patient records, and that this has not even been mentioned in your story. Vastaamo owes their patients a lot more than an apology.
Exactly. The company will continue profiting (if their reputation isn't already destroyed) but the harm done to lots of vulnerable people who went through a lot of unnecessary stress and damange can't be undone (not to mention people who lost their lives).
So now you know: commiting devastating cyber crimes has no real consequences in Finland.
yeah you are almost better of than russia at this point. Bc in russia the US will prosecute your ass afaik
Although, of course he may get lucky and find himself spending some "quality time" with another prisoner who happens to be a friend of a victim, but as they say, "only the good die young" so wouldn't really count on it.
@@ro--M I would hope so
@@hobrin4242 if he had hacked an american host, he would have had much bigger problems, even in finland. Since he wasnt attacking an american service, america wont do anything, because it's simply not their business. They would only interfere, if this hack would have had any consequence on the american government, which it clearly didnt. If a russian were to hack an italian host, the american and italian government wouldnt do anything. Italy can't do anything with its current posture in the world, and america just doesnt give an f.
So, it's not about the location, it's rather about who you attack.
..most of Europe actually
Finland is an excellent country to test how much you can push the law before getting caught. Small risk high reward. I'm a bit scared that foreign organized crime will take more advantage of it someday.
Could other countries just request extradition?
Usually that kinda (especially highly violent org crime) cases will get the absolute max just to make an example.
I can't believe how soft they were with that finnish hacker
its way more harmful than any normal data breach
I have sympathy for the victims, those records should have been kept secure.
I cannot believe they did not clamp down on the company which made this possible
How deplorable can you be to leak people's psychological information to the public? That is a question I don't think I'll ever know the answer to..
"people"
As the son of a psychiatrist, I am deeply convinced that the only reason for patient records has ever only been intelligence collection for various nation-states.
Doctor-Patient confidentiality is a complete mockery of reality when your doctor uses a computer with a microphone enabled to type your session notes into a database instead of writing them on a physical chart. People carry cellphones into therapy appointments. There's no such thing as confidentiality.
6 years is not enough time.
$200 million? A slap on the wrist for what they likely made off their sharing deals.
Massive corp have shown time and time again that they can just break the law, then pay a relatively small fine when they get caught. They make way more money than if they followed the rules. Why would they ever stop?
That fcc letter starting with “hone fable Ajit Pai” when that idiot was the one who was against net neutrality is pretty freakin ironic
Your work is really informative... Thanks for that!
the FCC fines are so small it's worse than if they never did it at all.
julius should pay money to each and every victim he stole from tbh. its one thing to attack companies or send out phishing emails to people just to attack their corporate environment, but personally attacking each and every person is too far. it's especially bad when it's shit like the person being gay which could end up with their entire family and relationship dynamic collapsing in and of itself from that.
6 years in a Finnish prison? Might as well be no sentence
You mean one of the most effective reformation systems in the world? I would guess that 6 years accomplishes a lot.
@@TheOfficialOriginalChad you’re part of the problem. This guy should never leave prison for what he did.
@@TheOfficialOriginalChad Afaik, it only works when the prisoner is in a state where they are incompatible with society (hence why they turned to crime instead of getting a job).
He knows how to live, so this is just like putting him in a combined hotel and school for the 6 years! (I could be stupid though. Never been to prison here, so dunno how hard they actually try to reform you)
@@TheOfficialOriginalChad considering his history, doesn't always work
@@TheOfficialOriginalChadreform? He indirectly killed many mentally ill people. In the US he would get life or executed
Finland is generally reform focused in its criminal justice system, which at times results in cases like this where we're left feeling they "got away with it" but the overwhelming majority of the time is far more likely to lead to rehabilitation than throwing the book at them. It's a more effective and humane approach, but can still leave you feeling that justice was not adequately served at times.
Yeah I'd only want to ask if he'd been to Finnish prison in the past, if not, then we're yet to see if the system is working.
Yeah, but the system fails horribly in case of psychopaths. They cannot be rehabilitated.
How is that supposed to work against the mentally ill?
Not feeling like justice was served is just tribal vengence.
It is entirely unproductive.
Punishing someone does not undo the harm they have done.
And hurting someone who hurt others is babies first idea for how to prevent harm in the future.
Not to mention the fact it causes moral combativeness between groups.
Since you yourself as "the good guy" are doing something you think is immoral ON PURPOSE, simply with the justification that they did something immoral so you doing something bad is no longer bad.
This just results in war between opinions and force.
People just run around with childlike understandings. Screaming justice(vengence) with no understanding that this is actually the opposite of productive.
People love to be moral experts while spending 0 time developing a logic foundation for their opinions.
We just continue to utilize infantile skills from being predators and prey as if we will all starve tomarrow.
Ah well, we get taught math, history, and chemistry in school... im sure those skills are of peak importance.
@@Dogo.R I'm not sure who you are replying to, but I think you missing the essential point.
Feeling like justice was not served, is *NOT* about need for revenge. It is about the very purpose of the jail; it is supposed to protect the society. Letting psychopath loose after three years does nothing good. It only waste taxes.
So 3 years of mandatory hotel stay lol
On taxpayers money even lol....
I think you underestimate the psychological toll being held captive has on a person. He'll also likely have eyes watching him closely for a very long time after release. I'm not saying he doesn't deserve more time, but people went crazy in their *own homes* after a few months during COVID.
@@TheRealFallingFist yeah, normal people who didnt commit insane crimes like this. Knowing this is the extent of his punishment will make the entire ordeal WAY more tolerable for him
@@TheRealFallingFist The thing is that its not that strict in Finland as you think... Many convited persons have dissapeared eve in watchful eyes in Finland and either seen in other countries or not at all
Well syit, I really wasn't expecting this
great video as usual ❤
The amount of money this guy could've made out of this hack is absurd.
What money 😒... It's a waste ...
He did not make any 😂
@@thefreedomguyuk hala for stupid people wasting people time
@@thefreedomguyuki wonder what he is gona do when he eventually gets out of prison. Lets be real he is probably gona try to hack something again. This has been the case with other hackers who got caught and released after serving their time in prison.
Dude needed to be humbled and punished, He simply wasn't and he will do this again when hes out. FFS, Protect the public!!
The fine should be _waaaay_ bigger and that money should be given to the victims, not the FCC.
That Finnish hacker himself needs psychiatric help!
Also, another reason not to keep/shift sensitive medical records to *online* digital platforms! The cons of cloud storage far outweigh the purported benefits!
Given the pain/suffering he inflicted on patients and their families, don't be surprised if he receives the "Boeing Whistleblower" treatment...once he's released.
"We been hearing boring stories that have only been described as DISGUSTING"
Had that been a U.S. company he'd be in federal prison for decades. Six years for all of that sounds way too lenient.
The longest anyone in Finland has been in prison consecutively is 22 years.
Yeah, it’s absurd. Prison sentences in finland are way too short in the rare cases where the criminal even gets a sentence…
@@Onni- I mean I am all for short sentences so long as that means that the crime rates go down, but jesus fucking christ that is too low
@@aboliguu1168 It is. If some people have committed suicide as a direct result of his actions then he absolutely deserves to be locked up for most of his life.
That's because the us prison system is totally broken an corrupt. In Europe the prison is not only to punish people but actually reform them. In America prison is for privatized prison comapnies to make money. Just compare the reoffender rate between the us and EU. Maybe that makes it clearer
damn I never knew this happened this guy is a monster.
How? The company didn't pay up? Why is nobody talking about this??
company shouldn't have had that data in the first place
company should have had better security
company should have paid up
I blame them for being irresponsible.
1:58 why is he still allowed in front of a computer? lol
lmfao I love it when you call it an 'opsec mistake'
These terror absurd news makes me chuckle like I’m watching a comedy show. 😄
This phone carrier fine is just the tip of the iceberg, it goes so much deeper.
A real shame that we don’t have consecutive sentencing here in Finland.
No worries, he's probably stupid enough to do it again.
They got fined 0.02% of their earnings, not even a slap on the wrist
Crazy that a Bot-Net at this size was just laying around and even growing without anything.
and "julius kivimäki" only have to serve half of hes 6 years 3 months sentence if even that as time hes been hold under investigation is taken away from hes sentence and as a first timer it as cuts in half
>unalived
Jesus dude
LORD Jesus
honestly, I don't mind the sentence. Do I think it should be longer? yes. but not significantly so
prison should be about reformation and not punishment. I realize how easy that is to say when you're not affected by somebody's crimes, but I do genuinely believe in it and I personally think he should get 20 years, I just also believe that that would not be in the best interest of society.
The reason I think his sentence should be longer is just that I don't believe 3-6 years is long enough for reformation. I think just a few more years would make a big difference, and taking into account his past crimes (and goading), it seems like he consistently does not care about the harm he causes.
Sekoia white hats: Bravo!!
I feel so bad for the persons who cant handle the data breach :(
He doesn't. He named his blackmail data as "therapissed", which should give you a idea how totally immature and emotionally dead person we are talking about here. Some similar folks still look up to him, and we will continue get a lot of suffering afflicted by these real-life heroes as long as our legislation is a joke they can lol at.
@@ro--M I don't talk about the bad person, but the victims
Yes but blame the company not the hacker. 500 thousand from a company with yearly revenues close to 20 million euros is nothing to the company.
The company should be held accountable for what happened.
@@salkeldeliaoe yeah i see what u mean, but idk.. even if they paid, the hacker can steal leak, like theres so garanty you know
6 years in FINNISH prison is perfectly fine. i've lived in houses worse than finnish prisons
The Vastaamo case hit close to home here too and for to get even THAT much in here is VERY LONG sentence....
How do you even manage to accidentally include your /home directory in the archive?! 😂😂
6 years is a joke
$200m is a slap on the wrist. It should've been a billion
Still pissing in the ocean. Monetary fines aren’t what’s needed. Jail time for CEOs is
If you ever watched the movie "Kingsman", you may remember a really good quote from the main antagonist.
- "You know what I love pen and paper? Nobody can hack into this $h33t"
Medical records of such importance to the patients should have *never* been entered into any digital system. Especially knowing these systems are generally designed by people who couldn't better paying jobs, largely due to lack of skill.
Wow. Just wow
Funny thing is he's going to be getting out of prison in about a year and a half.
7:04 I think Algeria might have screwed with the data a bit here, we have static ips for servers only, clients IPs are dynamic and from what i noticed change with every 4 hours or so
Ok, I'm NOT justifying what he did. But what the fuck was that response by the company. A) Why the fuck is everything being stored in a non air-gapped PC, if at all digitally. Secondly, if you fuck up that badly, you pay your ransom and move on while learning. As the hacker himself said, 500k is not that much for a company of that size and that just showed how little they care. Holy shit.
Brilliant
Privacy is gone if your THERAPY notes are digitalized jesus christ
All health records are digitalized here, but any access to them is logged and misuse is very rare. Vastaamo was private healthcare and their cybersec was terrible.
LORD Jesus Christ
So the famous usb shortcut virus is a chinese botnet? I've seen many of those drives.
absolutely disgusting hacker on the first story.
Hand over the botnet to the law enforcement? Yes they will TOTALLY try to 'fix' the problem and definately not use maliciously themselves. *wink*
That map used to display US carriers selling location data (00:03:28) is of Vancouver, BC (in Canada).
6 years.........hopefully some prisoners will grant him "life in prison" if you catch my drift.
Lord, have mercy!
O2 in the UK sell "anonymous" location data..."anonymous".....
Hey, that UUID who's at your house every night and at your office every weekday could be anyone!
Only in Finland you can get aways with taps on the wrists after ruining people's lives ... smh
I kinda hoped that the white hat hackers developed a killswitch for the malware, once they got hold of the C2 server.
6 years may not seem like much, but it's enough to totally disrupt this man's life. Not only is he obviously a convicted felon now, but once we gets out, he will have a 6 year gap in his resume, 6 years without being able to talk to friends and family, 6 years without a chance to learn new things...
So, fitting, I think, for how he has disrupted the lives of so many
A little bit awkward with the law enforcement power abuse story and having a 2.5 mil node botnet with lots of capabilities being handed over to law enforcement in the same video haha
Stole my comment lol. The botnet was just handed over to another operator. So dumb
When some people go as far as committing suicide I would not be surprised if someone waits for that guy to be released...
Forgiveness
he is free in 30.4.2026
.. with lots of random anon. complimentary uber's waitin' 2 take it 'h🕳me' 💦ha
Six years is not enough...
I wonder what law enforcement will do with this botnet
2:44 he’s going to have a pleasant 6 year all payed for vacation.
He will sit 3 years max in prison because he is "first timer" :D Welcome to finland!
the first two stories show just how rotten the justice system is to the core. Your privacy and information being taken without your permission or knowledge being sold to the highest bidder only for both cases to get a slap on the wrist is not only disgusting but a really scary precedent that has been set for a while now.
The reason why the usb shortcut virus is big is because it spread over universities and public computers all over the country and there is something no one is talking about is it can brick the usb flash drive and render it unusable it happens twice on me with 2 flash drive
Retribution is not justice.
3:39 It’s a known secret that law enforcement can jump onto cell tracking sites from providers fairly quickly and without any real validation
Source?
@@vanpeethovenstudio Ask your local FBI agent
2:48 me when another billion dollar company does incredible horrible things and ends up gets fined an amount of money they make back within a business day
French prisons aren’t “comfy”, it’s just that US prisons are hellscapes. Big difference. Prisoners are still humans.
In any case, getting this guy behind bars for 20 years doesn’t bring back the people who died. Some things cannot ever repaired or “punished” appropriately, ever. This goes both ways; for a tendency that some people have for harshness as for lenience.
I guess we know where to go if you want to commit digital crimes since the country is weak against criminals
I've been in varying home situations in my life where I would cut my left hand off to to a Scandinavian prison!
Them appealing the fine should raise the fine.
3 years prison served, 3 years release? This was manslaughter and super evil blackmail, not just a case of unlawful access. I'm not one for vigilante mob justice but damn, i wouldn't be upset if they snatched him and got real creative like that one wu tang intro. Bloaw!
I've not yet watched the whole video but fun thing is he has already been "not free" for 1 year and few months so he will get out of jail in less than 2 years.
I see my cell phone carrier was on there.
Various countries have various standards for punishments. Common for Nordic countries to be fairly low punishments compared to US.
That therapy company is disgusting lol. I guess that's EUcellence for you.
The company execs should go to jail too!
Suomi mainittu!
The "therapist" company should be held accountable for thr deaths as they refused to pay the guy!
$7? And the Chinese abandoned a botnet of 2.5M computers??? 😭
macaulay caulkin really let himself go
Securus' mistake was sending a letter to Ajit Pai, who actually is a proponent of selling customer data.
So Guideon has 33 thousand mentally unstable enemies waiting for his early release... nice.
What the hell? he put the home folder and the ... everything of his?! I cannot understand how this is even possible...is that one of those psychiatric things where the person 'wants to be caught' as part of their condition. Just seems so, well, not even amateur - it is like a complete joke. and when he gets out, well, I am fairly sure he can make sure that won't happen again. the social media exposure thing is fairly unbelievable, but I suppose keeping your identity out of social media is pretty difficult. but... well, yes, a few years away minus 50%+ off for good behaviour during his jail time, means he's got the rest of his life outside, rich, and possibly terrorising people in new ways
The FTC and the FCC are two different agencies
A 200 million for phone carriers, even though they made more than 50x that selling the data.
It's not a fine, it's a tax.
200 mill is a working price
Damn, this guy should work for the US fed with that kind of behavior.
This is a serial offender and should be treated as such. If only he'd picked on the US.
He probably agreed to work with the FEDs, that's why his sentence is so light.
Which exact part of "being on the run with fake ids, causing a manhunt and being arrested years later in paris" was cooperative again?
some shit is so dark i rather not know about it. i dont want my imagination to go that low
who's buying our information why are they buying it what are they doing with it and why do we all hear about things when the damage has already been done this is ridiculous