159: Vastaamo

159: Vastaamo

Jun 3, 2025 51m

AI Summary Available

Get the full experience! Sign up to access transcripts, personalized summaries, and more features.

Episode Description

Joe Tidy investigates what may be the cruelest and most disturbing cyber attack in history. A breach so invasive it blurred the line between digital crime and psychological torture. This story might make your skin crawl.

Get more from Joe linktr.ee/joetidy.

Get the book Ctrl + Alt + Chaos: How Teenage Hackers Hijack the Internet (https://amzn.to/3He7GNs).

Sponsors

Support for this show comes from ThreatLocker®. ThreatLocker® is a Zero Trust Endpoint Protection Platform that strengthens your infrastructure from the ground up. With ThreatLocker® Allowlisting and Ringfencing™, you gain a more secure approach to blocking exploits of known and unknown vulnerabilities. ThreatLocker® provides Zero Trust control at the kernel level that enables you to allow everything you need and block everything else, including ransomware! Learn more at www.threatlocker.com.

This show is sponsored by Red Canary. Red Canary is a leading provider of Managed Detection and Response (MDR), helping nearly 1,000 organizations detect and stop threats before they cause harm. With a focus on accuracy across identities, endpoints, and cloud, we deliver trusted security operations and a world-class customer experience. Learn more at redcanary.com.

AI-Generated Summary

Introduction to Joe Tidy and His Work

The episode introduces Joe Tidy, the BBC's Cyber Correspondent, who has spent years diving deep into the world of hacking and cybercrime. His journey into this niche began when he covered the infamous Lizard Squad hack on Christmas, which disrupted gaming services. Tidy reflects on how hackers often enjoy sharing their stories and the ridiculousness of some of the situations he finds himself in while uncovering these stories.

The Vistamo Cyber Attack

Tidy discusses the Vistamo cyber attack from 2020, which was described as one of the darkest and most invasive breaches in history. Hackers, led by an individual known as 'Ransom Man', stole sensitive therapy records, including deeply personal therapy notes of clients—33,000 patients in total. The attack aimed to extort the company for ransom, leading to a psychological impact on the victims, as their innermost secrets were at risk of being released.

Ransom Man's Extortion Tactics

After obtaining client data, Ransom Man sent mass emails to affected individuals, demanding money to prevent the release of their personal details. This unprecedented tactic added another layer of cruelty to the situation, as victims were terrorized by the potential exposure of their private therapy sessions. Tidy highlights the profound psychological and emotional effects on the victims of this kind of breach, calling it akin to digital rape.

The Investigation and Arrest of Ransom Man

As the investigation unfolded, Ransom Man made critical mistakes, including inadvertently revealing his IP address. The police utilized this information to locate and apprehend him. The case drew significant media attention, not just because of the scale of the breach but also due to the personal stories of the victims affected. Tidy emphasizes the challenges faced by law enforcement in tackling such sophisticated cyber threats.

The Aftermath of the Vistamo Attack

Ultimately, the Vistamo attack led to the company's collapse, as it struggled to recover from the public relations disaster and legal ramifications of the breach. Tidy discusses the consequences for the CEO, who has faced legal scrutiny and potential jail time due to failure to secure sensitive data. The judicial process surrounding this case was unprecedented in Finland due to the sheer number of victims.