The 20-year-old man has justified his actions by, among other things, that he had “too much time”.
The case of Traficom’s data breach will now move to prosecution. Illustration picture. KIMMO HAAPALA
The preliminary investigation of Traficom’s outrageous data breach has now been completed. A 20-year-old man has admitted to the act during questioning and stated that his motive was “the desire to experiment and too much time”. The man had obtained the usernames and passwords from the dark web.
The man broke into the software of the Helsinki-based company and gained access to Traficom’s vehicle register data between the 6th and the 14th. May of the current year.
In the data breach, the man used the IDs of the employees of two client companies and used them to query the vehicle register. The man’s searches focused on the information of about 65,000 vehicle owners and holders.
According to the suspicion, the man hacked the owner and holder information of about 50 vehicles. The police have been in contact with them. However, in the preliminary investigation, no indications were found that the man had stored information somewhere or looked at other than the fifty mentioned above.
The case has moved to prosecution. In addition to the Traficom data breach, the police suspect that the man also sought information from the Tax Administration’s positive credit register. However, the man did not get any information from there – the answers to the surveys had been delivered as a separate message to the client company, in whose name the information was sought.
– Despite thorough investigations, no signs were found that the data taken from Traficom and the Tax Administration had been misused, says the head of the investigation, criminal inspector Jukkapekka Risu in the police bulletin.
The police say that they began to suspect a data breach after a private person reported that a financial decision survey had been made using his personal identification number.