This week on the Lock and Code podcast, we speak with EFF Activism Director Jason Kelley about online age verification and the "grey web."

_This week on the Lock and Code podcast…_

The internet is cracking apart. It’s exactly what some politicians want.

In June, a Texas law that requires age verification on certain websites withstood a legal challenge brought all the way to the US Supreme Court. It could be a blueprint for how the internet will change very soon.

The law, titled HB 1181 and passed in 2023, places new requirements on websites that portray or depict “sexual material harmful to minors.” With the law, the owners or operators of websites that contain images or videos or illustrations or descriptions that “more than one-third of which is sexual material harmful to minors” must now verify the age of their website’s visitors, at least in Texas. Similarly, this means that Texas residents visiting adult websites (or websites meeting the “one-third” definition) must now go through some form of online age verification to watch adult content.

The law has obvious appeal from some groups, which believe that, similar to how things like alcohol and tobacco are age-restricted in the US, so, too, should there be age restrictions on pornography online.

But many digital rights advocates believe that online age verification is different because the current methods used for online age verification could threaten privacy, security, and anonymity online.

As Electronic Frontier Foundation, or EFF, wrote in June:

“A person who submits identifying information online can never be sure if websites will keep that information or how that information might be used or disclosed. This leaves users highly vulnerable to data breaches and other security harms.”

Despite EFF’s warnings, this age-restricted reality has already arrived in the UK, where residents are being age-locked out of increasingly more online services because of the country’s passage of the Online Safety Act.

Today, on the Lock and Code podcast with host David Ruiz, we speak with Jason Kelly, activism director at EFF and co-host of the organization’s podcast “How to fix the internet,” about the security and privacy risks of online age verification, why comparisons to age restrictions that are cleared with a physical ID are not accurate, and the creation of what Kelley calls “the grey web,” where more and more websites—even those that are not harmful to minors—get placed behind online age verification models that could collect data, attach it to your real-life identity, and mishandle it in the future.

> “This is probably the worst thing in my view that has ever happened to our rights online.”

Tune in today to listen to the full conversation.

**Listen up—Malwarebytes doesn’t just talk cybersecurity, we provide it.**

Protect yourself from online attacks that threaten your identity, your files, your system, and your financial well-being with our exclusive offer for Malwarebytes Premium for Lock and Code listeners.

 “The worst thing” for online rights: An age-restricted grey web (Lock and Code S06E16) 

Hackers release 9GB of stolen files from the computer of an alleged North Korean hacker, revealing tools, logs,…

Hackers release 9GB of stolen files from the computer of an alleged North Korean hacker, revealing tools, logs, sensitive data and much more. The data is now available for download via DDoSecrets.

It is not often that the inner workings of a cyber-espionage operator are exposed, but that is exactly what happened when two hackers decided to publish a trove of stolen files during one of the world’s biggest hacking conferences.

The material did not surface on a cybercrime forum or through a misconfigured database. Instead, it was shared through **Phrack**, the legendary hacker publication, during its 40th anniversary issue at DEF CON in Las Vegas.

The people behind the **leak**, who go by the names Saber and cyb0rg, say they gained access to a virtual workstation and a virtual private server used by someone they call “KIM.” This individual was believed by the leakers to be linked to **Kimsuky**, a group long associated with North Korean state-backed cyber activity. Yet even with that claim, questions remain, and some security experts think it is just as possible that the operator could be based in China.

What they took and later shared offers a rare look into the operational tools and records of an advanced threat actor. The first batch of data included attack logs showing attempts to compromise South Korea’s government and its Defense Counterintelligence Command through the VPS. The second release was even more revealing, containing internal documentation, source code, stolen credentials, and command scripts from the operator’s workstation.

Independent analysts like Distributed Denial of Secrets (DDoSecrets), who reviewed the files and **indexed** the entire 8.90 GB archive on its website for free download, found that the materials appeared authentic and consistent with a real-world espionage toolkit.

Screenshot of the archive available on DDoSecrets (Image credit: Hackread.com)

However, figuring out who actually ran these systems can still be difficult. Hackers sometimes leave trails that point to the wrong country, and skilled operators can mimic another nation’s methods closely enough to mislead investigators.

For now, the leak sits as both a technical goldmine for researchers and a mystery for intelligence analysts. Phrack has said it plans to release additional download links on its site, which means more details could surface.

Nevertheless, this is not the first time that such sensitive data has gotten into the hands of a third party. Back in 2020, IBM’s X‑Force team stumbled across over **40 gigabytes of video recordings** showing Iranian cyber‑espionage operators teaching others how to hijack email accounts.

The footage, which included real-time steps, like linking Gmail accounts to Zimbra software to download inboxes, was exposed by mistake when the hackers uploaded it to an unsecured cloud server.

Hackers Leak 9GB of Data from Alleged North Korean Hacker’s Computer

Gaming cheats are the bane of the video game industry—and a hot commodity. A recent study found that cheat creators are making a fortune from gamers looking to gain a quick edge.

Software that can see opponents through walls. Aimbots that can lock onto other players automatically. Tools that can boost characters’ stats to the max. The world of online game cheats is expansive—with some cheat websites advertising hacks for dozens of PC games—and it’s being driven by an underground economy that’s allegedly raking in millions every year.

Over the last two years, a group of computer scientists has been analyzing and mapping the online cheat marketplace, observing what behaviors get people banned from games, and probing the effectiveness of anti-cheat systems created by games developers. Combined, 80 cheat websites are likely making between $12.8 million and $73.2 million annually—that’s around $1.1 million to $6.1 million per month, say the academics from the University of Birmingham, in the UK.

“People can really make a lot of money from selling cheats, and companies have a lot to lose if a game is seen as full of cheaters,” says Tom Chothia, a cybersecurity professor at the University of Birmingham. Last week, along with assistant professor Marius Muench and PhD researcher Sam Collins, Chothia presented findings about the cheat economy and research on how robust anti-cheat systems are at the Black Hat cybersecurity conference in Las Vegas.

Across the North American and European cheat-selling websites they analyzed, the researchers estimate that around 30,000 to 174,000 people may be buying cheats per month. The estimates, which were first published last year, are likely an undercount of the size of the whole cheat ecosystem, the researchers say, as they don’t include cheats purchased from forums, websites in Asia, or the amount of people using free cheats. (The figures largely tally with a previous $100 million estimate for the overall cheats economy.)

The cheating community—both those who develop and sell cheats, and those who are interested in buying and using them—sprawls across the web. As well as dedicated cheat-selling websites, there are resellers, Discord communities, forums, smaller groups that sell cheats, and widespread marketing that tries to get cheats in front of people’s eyeballs. Cheats can operate by either inserting code into the game’s internal processes or parsing what is happening onscreen and taking actions outside of the game’s mechanics—the most sophisticated can involve external hardware.

In recent years, the markets for selling cheats have become more industrialized. “They look like really professionally done online shops,” Collins says. Some cheat websites sell cheats for one-time use, but others charge recurring subscriptions, such as every month or 90 days. Subscriptions allow people to continue using the cheats’ features over time, get updates if cheats stop working, and receive support from the developers. According to the academics’ analysis, where they gathered data toward the end of 2023 and focused on software cheats, the minimum price for a cheat across the 80 websites was $6.63. Meanwhile, the most expensive price was $254.28. Many are under $100 per month, depending on the subscription type.

Some of the websites have their own customer service processes and accept payments from a number mainstream payment services, Collins explains. “The staff are quite professional,” he explains. “They’re not afraid to be rude to you if they don’t like you, but they try to be pretty professional.” Core to a cheat website’s success is whether the cheats actually work and—crucially—how long they will work for. Sites have “status” indicators, showing whether a cheat is currently thought to be working.

It’s all part of the ongoing tussle between the cheat developers and games companies, which spend money on developing anti-cheat software and trying to limit nefarious behavior in their games—sometimes including lawsuits around perceived copyright issues. “It's a legal gray area. It's not illegal to sell cheats” in most countries, Chothia says, noting that China and South Korea are among the few countries that have made it a crime to use cheat software.

Andrew Hogan, a cofounder of games threat intelligence company Intorqa, which provides data to gaming companies about the cheat ecosystem, says developers are always evolving their cheats, becoming more technical, and trying to find ways around anti-cheat systems. “Even the best cheats will be detected,” Hogan says. “They don't work forever and often don’t even work for a week. But we see cheat developers who are updating their sheets every one and a half days.”

The cheat sites can make big claims themselves. One site’s public web pages say it undertakes “consistent testing daily” to make sure its cheats are still operating, claiming that its hacks “can be used without bans for a long time.” “Several of our cheats have yet to be detected from the time of their release,” the website says. Another cheats website claims its hacks are “undetectable” and that its offerings can be customized: “Tailor the cheats to fit your specific needs and play style.”

Three cheat websites contacted by WIRED did not respond to emails asking for interviews or answer questions.

While cheats and anti-cheats are getting more sophisticated in most cases, Hogan says there has recently been a “resurgence” in an older cheat method called pixelbots—but now they’ve been rebranded as AI-aimbots. The bots, which are an external kind of cheat, read what is happening on the screen and aim for the cheating player. Only now they’ve been improved by developers using computer vision. “They're much easier and quicker for developers to create using machine learning and AI and object detection programs,” Hogan says, noting that there has been a surge of their use in recent months.

Over time, the enduring popularity of cheats and the money involved has also, inevitably, brought with it the attention of cybercriminals and scammers. In recent years, thousands of government and university websites around the world have been hacked to push Roblox and Fortnite “offers,” that are actually used to push malware and obtain personal information. Kids trying to cheat in Gorilla Tag, an ape-based chase game, have been found installing a dubious VPN that could hijack their internet traffic. The researchers do say that in their analysis of 80 cheat-selling websites they didn’t find any direct evidence of scams or malware, most likely because they are trying to make money and build strong reputations.

As the cheat and anti-cheat development battle has become more sophisticated, both sides have moved into the kernel, the core of a computer’s operating system. Deploying kernel drivers, at the deepest level of the OS, where they have high levels of access, creates the risks of everything from system level crashes to potential privacy and security vulnerabilities—giving anyone virtually unfettered control over your PC is never a good idea. For an example of the issues that kernel access can cause, Crowdstrike’s botched update last year that crashed millions of computers around the world was possible because its software had kernel access. Microsoft announced it would move antivirus products and endpoint detection and response (EDR) out of the kernel in the future.

In April, Elise Murphy, head of game security at Electronic Arts, wrote in a blog post that the company’s Jevelin anti-cheat system has blocked 33 million attempts at cheating since the software launched in 2022. “The kernel is the deepest part of the operating system, and if cheats operate from there while the anti-cheat does not, they can hide everything they are doing with no chance for us to detect or prevent any of it,” Murphy wrote.

According to the University of Birmingham researchers, this kernel-level access makes anti-cheat systems incredibly robust when it comes to actually defending against cyberattacks as well. “One of our findings is that your laptop’s probably never as safe as when you are playing Fortnite; anti-cheat protection will actually keep you safe from a whole range of malware, which normal antivirus will miss,” Chothia says.

Inside the Multimillion-Dollar Gray Market for Video Game Cheats

A safe mode bypass vulnerability in the `Model.load_model` method in Keras versions 3.0.0 through 3.10.0 allows an attacker to achieve arbitrary code execution by convincing a user to load a specially crafted `.keras` model archive.

**Exploitability Metrics**

Attack Vector: This metric reflects the context by which vulnerability exploitation is possible. This metric value (and consequently the resulting severity) will be larger the more remote (logically, and physically) an attacker can be in order to exploit the vulnerable system. The assumption is that the number of potential attackers for a vulnerability that could be exploited from across a network is larger than the number of potential attackers that could exploit a vulnerability requiring physical access to a device, and therefore warrants a greater severity.

Attack Complexity: This metric captures measurable actions that must be taken by the attacker to actively evade or circumvent existing built-in security-enhancing conditions in order to obtain a working exploit. These are conditions whose primary purpose is to increase security and/or increase exploit engineering complexity. A vulnerability exploitable without a target-specific variable has a lower complexity than a vulnerability that would require non-trivial customization. This metric is meant to capture security mechanisms utilized by the vulnerable system.

Attack Requirements: This metric captures the prerequisite deployment and execution conditions or variables of the vulnerable system that enable the attack. These differ from security-enhancing techniques/technologies (ref Attack Complexity) as the primary purpose of these conditions is not to explicitly mitigate attacks, but rather, emerge naturally as a consequence of the deployment and execution of the vulnerable system.

Privileges Required: This metric describes the level of privileges an attacker must possess prior to successfully exploiting the vulnerability. The method by which the attacker obtains privileged credentials prior to the attack (e.g., free trial accounts), is outside the scope of this metric. Generally, self-service provisioned accounts do not constitute a privilege requirement if the attacker can grant themselves privileges as part of the attack.

User interaction: This metric captures the requirement for a human user, other than the attacker, to participate in the successful compromise of the vulnerable system. This metric determines whether the vulnerability can be exploited solely at the will of the attacker, or whether a separate user (or user-initiated process) must participate in some manner.

**Vulnerable System Impact Metrics**

Confidentiality: This metric measures the impact to the confidentiality of the information managed by the VULNERABLE SYSTEM due to a successfully exploited vulnerability. Confidentiality refers to limiting information access and disclosure to only authorized users, as well as preventing access by, or disclosure to, unauthorized ones.

Integrity: This metric measures the impact to integrity of a successfully exploited vulnerability. Integrity refers to the trustworthiness and veracity of information. Integrity of the VULNERABLE SYSTEM is impacted when an attacker makes unauthorized modification of system data. Integrity is also impacted when a system user can repudiate critical actions taken in the context of the system (e.g. due to insufficient logging).

Availability: This metric measures the impact to the availability of the VULNERABLE SYSTEM resulting from a successfully exploited vulnerability. While the Confidentiality and Integrity impact metrics apply to the loss of confidentiality or integrity of data (e.g., information, files) used by the system, this metric refers to the loss of availability of the impacted system itself, such as a networked service (e.g., web, database, email). Since availability refers to the accessibility of information resources, attacks that consume network bandwidth, processor cycles, or disk space all impact the availability of a system.

**Subsequent System Impact Metrics**

Confidentiality: This metric measures the impact to the confidentiality of the information managed by the SUBSEQUENT SYSTEM due to a successfully exploited vulnerability. Confidentiality refers to limiting information access and disclosure to only authorized users, as well as preventing access by, or disclosure to, unauthorized ones.

Integrity: This metric measures the impact to integrity of a successfully exploited vulnerability. Integrity refers to the trustworthiness and veracity of information. Integrity of the SUBSEQUENT SYSTEM is impacted when an attacker makes unauthorized modification of system data. Integrity is also impacted when a system user can repudiate critical actions taken in the context of the system (e.g. due to insufficient logging).

Availability: This metric measures the impact to the availability of the SUBSEQUENT SYSTEM resulting from a successfully exploited vulnerability. While the Confidentiality and Integrity impact metrics apply to the loss of confidentiality or integrity of data (e.g., information, files) used by the system, this metric refers to the loss of availability of the impacted system itself, such as a networked service (e.g., web, database, email). Since availability refers to the accessibility of information resources, attacks that consume network bandwidth, processor cycles, or disk space all impact the availability of a system.

GHSA-pwq7-2gvj-vg9v: Keras safe mode bypass vulnerability

Dark Reading's Terry Sweeney and Google Cloud Security's Jason Kemmerer discuss how organizations can secure the modern workplace with zero trust browser protection for remote and hybrid teams.

Google Chrome Enterprise: Keeping Businesses Safe From Threats on the Web

Cybersecurity researchers have disclosed vulnerabilities in select model webcams from Lenovo that could turn them into BadUSB attack devices.
"This allows remote attackers to inject keystrokes covertly and launch attacks independent of the host operating system," Eclypsium researchers Paul Asadoorian, Mickey Shkatov, and Jesse Michael said in a report shared with The Hacker News.
The

Linux-Based Lenovo Webcams’ Flaw Can Be Remotely Exploited for BadUSB Attacks

Critical WinRAR flaw CVE-2025-8088 exploited by Russia-linked hackers to spread RomCom malware, update to version 7.13 now to…

Critical WinRAR flaw CVE-2025-8088 exploited by Russia-linked hackers to spread RomCom malware, update to version 7.13 now to stay protected. Learn how a Russia-linked group is using this vulnerability and why you must manually update to WinRAR 7.13 now to stay safe.

WinRAR, a popular tool used by millions to manage compressed files, has been found to have a serious security weakness that was being actively exploited by hackers. The flaw, officially named CVE-2025-8088, allowed attackers to trick the program into installing malware on users’ computers without their knowledge. Security researchers at the firm ESET discovered and disclosed the issue, which has since been patched by WinRAR in a new update.

****How the Attack Worked****

The vulnerability is a type of _path traversal_ bug. This means a malicious file could be designed to make WinRAR save a file in a different location than where the user intended, such as the computer’s Startup folder. This enabled attackers to execute their own code.

According to a tweet from CVE (@CVEnew), this vulnerability was exploited to run what’s known as arbitrary code on a victim’s computer. The hackers’ goal was to deliver a malicious software called RomCom backdoor through specially crafted archive files sent in phishing emails.

These deceptive emails tricked people into opening the harmful attachments. For your information, RomCom malware is known for its ability to steal sensitive data and install other harmful programs, creating a serious security risk for anyone affected.

CVE on X

****The Russian Link****

Researchers from ESET, including Anton Cherepanov, Peter Košinár, and Peter Strýček, identified that the group behind this attack is a cyberespionage team suspected of being linked to Russia. This group has been known to carry out similar attacks in the past, targeting users in Europe and North America with different types of malware.

In late 2024, as reported by Hackread.com, they were exposed for exploiting a vulnerability in popular browsers like Mozilla Firefox and Tor Browser, which allowed them to run malicious code just by a user visiting a specific webpage.

Fortunately, there is a simple fix. WinRAR has released an update, version 7.13, which closes this dangerous security loophole. However, WinRAR does not automatically update itself, so it is up to each individual user to take action. To protect yourself from this threat, you must manually download and install the new version of WinRAR. Users who do not update will remain vulnerable to this specific attack.

WinRAR Zero-Day CVE-2025-8088 Exploited to Spread RomCom Malware

Liferay Portal 7.4.0 through 7.4.3.132, and Liferay DXP 2025.Q1.0 through 2025.Q1.4, 2024.Q4.0 through 2024.Q4.7, 2024.Q3.1 through 2024.Q3.13, 2024.Q2.0 through 2024.Q2.13, 2024.Q1.1 through 2024.Q1.15, and 7.4 GA through update 92 allow a pre-authentication blind SSRF vulnerability in the portal-settings-authentication-opensso-web component due to improper validation of user-supplied URLs. An attacker can exploit this issue to force the server to make arbitrary HTTP requests to internal systems, potentially leading to internal network enumeration or further exploitation.

1.  GitHub Advisory Database
2.  GitHub Reviewed
3.  CVE-2025-4581

**Liferay Portal and Liferay DXP vulnerable to Server-Side Request Forgery**

Moderate severity GitHub Reviewed Published Aug 9, 2025 to the GitHub Advisory Database • Updated Aug 11, 2025

**Package**

maven com.liferay.portal:release.dxp.bom (Maven)

**Affected versions**

\>= 2025.Q1.0, <= 2025.Q1.4

\>= 2024.Q4.0, <= 2024.Q4.7

\>= 2024.Q3.1, <= 2024.Q3.13

\>= 2024.Q2.0, <= 2024.Q2.13

\>= 2024.Q1.0, <= 2024.Q1.15

<= 7.4.13.u92

**Patched versions**

2025.Q1.5

2024.Q1.16

maven com.liferay.portal:release.portal.bom (Maven)

Liferay Portal 7.4.0 through 7.4.3.132, and Liferay DXP 2025.Q1.0 through 2025.Q1.4, 2024.Q4.0 through 2024.Q4.7, 2024.Q3.1 through 2024.Q3.13, 2024.Q2.0 through 2024.Q2.13, 2024.Q1.1 through 2024.Q1.15, and 7.4 GA through update 92 allow a pre-authentication blind SSRF vulnerability in the portal-settings-authentication-opensso-web component due to improper validation of user-supplied URLs. An attacker can exploit this issue to force the server to make arbitrary HTTP requests to internal systems, potentially leading to internal network enumeration or further exploitation.

**References**

*   https://nvd.nist.gov/vuln/detail/CVE-2025-4581
*   https://liferay.dev/portal/security/known-vulnerabilities/-/asset\_publisher/jekt/content/CVE-2025-4581

Published to the GitHub Advisory Database

Aug 9, 2025

Last updated

Aug 11, 2025

GHSA-6v93-frf9-2rp8: Liferay Portal and Liferay DXP vulnerable to Server-Side Request Forgery

A new documentary series about cybercrime airing next month on HBO Max features interviews with Yours Truly. The four-part series follows the exploits of Julius Kivimäki, a prolific Finnish hacker recently convicted of leaking tens of thousands of patient records from an online psychotherapy practice while attempting to extort the clinic and its patients.

A new documentary series about cybercrime airing next month on **HBO Max** features interviews with Yours Truly. The four-part series follows the exploits of **Julius Kivimäki**, a prolific Finnish hacker recently convicted of leaking tens of thousands of patient records from an online psychotherapy practice while attempting to extort the clinic and its patients.

The documentary, “_Most Wanted: Teen Hacker_,” explores the 27-year-old Kivimäki’s lengthy and increasingly destructive career, one that was marked by cyber attacks designed to result in real-world physical impacts on their targets.

By the age of 14, Kivimäki had fallen in with a group of criminal hackers who were mass-compromising websites and milking them for customer payment card data. Kivimäki and his friends enjoyed harassing and terrorizing others by “swatting” their homes — calling in fake hostage situations or bomb threats at a target’s address in the hopes of triggering a heavily-armed police response to that location.

On Dec. 26, 2014, Kivimäki and fellow members of a group of online hooligans calling themselves the **Lizard Squad** launched a massive distributed denial-of-service (DDoS) attack against the **Sony Playstation** and **Microsoft Xbox Live** platforms, preventing millions of users from playing with their shiny new gaming rigs the day after Christmas. The Lizard Squad later acknowledged that the stunt was planned to call attention to their new DDoS-for-hire service, which came online and started selling subscriptions shortly after the attack.

Finnish investigators said Kivimäki also was responsible for a 2014 bomb threat against former **Sony Online Entertainment President** **John Smedley** that grounded an American Airlines plane. That incident was widely reported to have started with a Twitter post from the Lizard Squad, after Smedley mentioned some upcoming travel plans online. But according to Smedley and Finnish investigators, the bomb threat started with a phone call from Kivimäki.

Julius “Zeekill” Kivimaki, in December 2014.

The creaky wheels of justice seemed to be catching up with Kivimäki in mid-2015, when a Finnish court found him guilty of more than 50,000 cybercrimes, including data breaches, payment fraud, and operating a global botnet of hacked computers. Unfortunately, the defendant was 17 at the time, and received little more than a slap on the wrist: A two-year suspended sentence and a small fine.

Kivimäki immediately bragged online about the lenient sentencing, posting on Twitter that he was an “untouchable hacker god.” I wrote a column in 2015 lamenting his laughable punishment because it was clear even then that this was a person who enjoyed watching other people suffer, and who seemed utterly incapable of remorse about any of it. It was also abundantly clear to everyone who investigated his crimes that he wasn’t going to quit unless someone made him stop.

In response to some of my early reporting that mentioned Kivimäki, one reader shared that they had been dealing with non-stop harassment and abuse from Kivimäki for years, including swatting incidents, unwanted deliveries and subscriptions, emails to her friends and co-workers, as well as threatening phonecalls and texts at all hours of the night. The reader, who spoke on condition of anonymity, shared that Kivimäki at one point confided that he had no reason whatsoever for harassing her — that she was picked at random and that it was just something he did for laughs.

Five years after Kivimäki’s conviction, the **Vastaamo Psychotherapy Center** in Finland became the target of blackmail when a tormentor identified as “ransom\_man” demanded payment of 40 bitcoins (~450,000 euros at the time) in return for a promise not to publish highly sensitive therapy session notes Vastaamo had exposed online.

Ransom\_man, a.k.a. Kivimäki, announced on the dark web that he would start publishing 100 patient profiles every 24 hours. When Vastaamo declined to pay, ransom\_man shifted to extorting individual patients. According to Finnish police, some 22,000 victims reported extortion attempts targeting them personally, targeted emails that threatened to publish their therapy notes online unless paid a 500 euro ransom.

In October 2022, Finnish authorities charged Kivimäki with extorting Vastaamo and its patients. But by that time he was on the run from the law and living it up across Europe, spending lavishly on fancy cars, apartments and a hard-partying lifestyle.

In February 2023, Kivimäki was arrested in France after authorities there responded to a domestic disturbance call and found the defendant sleeping off a hangover on the couch of a woman he’d met the night before. The French police grew suspicious when the 6′ 3″ blonde, green-eyed man presented an ID that stated he was of Romanian nationality.

A redacted copy of an ID Kivimaki gave to French authorities claiming he was from Romania.

In April 2024, Kivimäki was sentenced to more than six years in prison after being convicted of extorting Vastaamo and its patients.

The documentary is directed by the award-winning Finnish producer and director Sami Kieski and co-written by **Joni Soila**. According to an August 6 press release, the four 43-minute episodes will drop weekly on Fridays throughout September across Europe, the U.S, Latin America, Australia and South-East Asia.

KrebsOnSecurity in New ‘Most Wanted’ HBO Max Series

A Dark Web antihero has been stealing and then reselling credentials from unsavory online characters. Their motives are questionable, but the schadenfreude is irresistible.

Tag

#web