Security News > 2020 > October > Finnish psychotherapy clinic discloses data breach, victims extorted
A large psychotherapy clinic in Finland is under heavy stress after a threat actor asked a ransom for a client database with confidential information stolen in a data breach that likely happened almost two years ago.
Psychotherapy Center Vastaamo announced the incident last Wednesday, saying that the extortionist first contacted three of its employees in September, asking for 40 bitcoins not to release stolen patient data.
"Based on the investigations, it seems probable that the data breach that led to the theft of the customer database took place in November 2018" - Vastaamo.
The breach in March prompted steps that corrected the issues related to the protection of customer information, especially since Vastaamo was to be acquired by PTK Midco in May. As part of the acquisition process, an external cybersecurity audit was commissioned in April-May 2019.
Vastaamo is offering victims of the data breach support over the phone, advising on what to do if their private information has been leaked online.
News URL
Related news
- How to Prevent Your First AI Data Breach (source)
- Toyota confirms third-party data breach impacting customers (source)
- National Public Data Breach: Only 134 Million Unique Emails Leaked and Company Acknowledges Incident (source)
- CannonDesign confirms Avos Locker ransomware data breach (source)
- Patelco notifies 726,000 customers of ransomware data breach (source)
- Nearly 1/3 of Companies Suffered a SaaS Data Breach in Last Year (source)
- Park’N Fly notifies 1 million customers of data breach (source)
- GDPR Data Breach Notification Letter (Free Download) (source)
- Business services giant CBIZ discloses customer data breach (source)
- A third of organizations suffered a SaaS data breach this year (source)