Miriam thought his knowledge had survived in Valio. He went on to make the address of the address and the ban as the first measures.
Valio for the first time reported on December 20, 2024 Tiina Somerpuro/KL
On Wednesday Mirjamin The mailbox became a letter from Valio. He had already forgotten the December news of Valio’s extensive hacking. Now he guessed what the letter would probably say.
– The attacker has taken over the information of the Valio Pension Fund and Valio’s insurance company, your name and personal identification number, the letter states.
Early in the week, Valio announced that a larger number of people had been subject to a burglary. About 70,000 people from the Valio pension fund information system have ended up being taken over by the attacker.
Previously, Valio said that the burglary would apply to 5,000 people who are among the staff of Valio, Valio subsidiaries and milk acquisition cooperatives.
What makes the Miriam case special is that he last worked for Valio in the 70s for one summer.
“I was a 16-17 year old girl in the summer,” says Miriam.
Miriam immediately took the recommended measures mentioned in the letter he received.
Valio advises on their website Among other things, victims of information leak to consider making a credit ban and a change of address.
Indeed, Miriam spent the next few days in the mail, the bank and the registrar to fill the forms. He is still facing a credit ban on the tax administration.
– Of course it’s a bad thing. This should not happen, says Miriam.
Such a letter Miriam and 70,000 other people received in the mail. Reader
The burglary is affected by many
CEO of Valio’s Mutual Insurance Company and Valio Pension Cashier Jari Laaninen says that retention times for the pension fund are based on law. The earnings -related pension fund provides statutory pension insurance.
– According to it, the information should be retained for a person’s lifetime and five years ahead. Then the register exists, even if we had only been insured for a short time decades ago, Laaninen opens.
At some point in the 1970s, Miriam’s data is electrified to the Valio pension fund systems. According to Laaninen, data processing is easier in electronic form.
The burglary occurred when the attacker had access to personal information through the supplier used by Valio. STT There was a burglary when the password had leaked a password from a software company Vincit employee as a result of the employee’s damage. This company sells IT services to Valio.
In addition to the police, the case is also at the office of the Data Protection Ombudsman on the reason. It is investigating the security breach from the perspective of data protection legislation. The Office of the Data Protection Ombudsman requests a report from Valio and other organizations concerned.
Miriam is of the opinion that victims of a burglary are entitled to compensation.
– This is terribly working, palpitations and anxiety to people. This is not fun. There is a risk that criminals will sell the hijacked personal data forward.
The data subject shall have the right to receive compensation for material or intangible damage if the controller or the processor violates the EU General Data Protection Regulation.
In the case of a burglary, disseminating information that violates private life, a data protection crime or other crimes, claims for damages may be made in the context of criminal proceedings.