r000t

The child who swatted me hundreds of times, issued bomb threats to commercial airlines, and DDoS'd PSN and XBL during Christmas of 2014 now has an international warrant out for his arrest.

This time, he extorted tens of thousands of psychotherapy patients, threatening to release their private therapy notes if they did not pay a ransom.

But check out how he got caught... He accidentally uploaded his entire home folder to the darknet forum he was using. Whoopsie!

Nov 8, 2022 at 4:01pmWeb
Show threadhusku (vain tilaajille)Nov 8, 2022

@r000t

Whoa, Finnish #vastaamo case.

#torille

Show threadRyan BasdenNov 8, 2022
@r000t Is that the same kid who was in LizardSquad and was like 12?
Show threadayla Nov 8, 2022
@rybaz @r000t I’m pretty sure it is. He made some tweets the other day I think trying to claim innocence(?)
Show threadMobiusNov 8, 2022
@r000t Noob mistake expected of a script kiddie. Glad to hear he's toast! I detest ransom extortionists!
Show threadthe grugqNov 8, 2022

@r000t @gossithedog I wonder how much benefit he would’ve gained from HashKnownHosts? Of course, config would’ve been an issue anyway, and probably ~/.bash_history

As usual, the core failure was a compartmentation failure. Using a personal device to do crimes is not smart.

Humans make mistakes. Build security to work even when the user isn’t perfect.

Show threadpayhoyt.eth Nov 8, 2022
@thegrugq @r000t @gossithedog was that the lesson here? 😂
Show thread+bonifartius 𒂼𒄄Nov 8, 2022
@r000t why are therapy notes stored online in finland and who thinks having these things stored in a central place is fine?
Show thread+bonifartius 𒂼𒄄Nov 8, 2022
@r000t i mean.. it really sucks for the people whose stuff is now online, but it shouldn't have been in a central system in the first place. the people who design those things are as guilty as the one who hacked it and leaked it imho. it's text book negligence..
Show threadMikaNov 8, 2022
@bonifartius @r000t The former CEO of the company has been charged with data protection offences.
https://yle.fi/news/3-12641083
Prosecutors charge ex-CEO of hacked therapy firm Vastaamo

Sensitive patient information was leaked on the dark web after the company refused to pay a blackmail demand following two separate data breaches.

News
Show threadAK23 Nov 8, 2022
@r000t and here I am thinking I was paranoid for using HashKnownHosts yes
Show threadѕ¢я1ρt 👾Nov 9, 2022
@r000t Oh wow, this is vile. I have thought about lizard squad in years. Sorry this happened to you.
Show threadWaLLy3K Nov 9, 2022

@r000t I love the idea of something as simple as the `known_hosts` file bringing someone down.

That is indeed a 100% whoopsie!

Show threadLinzaNov 9, 2022
@r000t In the context of what happened to you, it sounds kind of like Al Capone getting jailed for tax evasion.
Show threadvarx/techNov 10, 2022
@r000t Holy cow. So is he basically sunk if he ever leaves Finland, is that the deal?