Expert Hacker Spared Jail

The British computer expert who helped shut down the WannaCry cyber-attack on the NHS said he is “incredibly thankful” after being spared jail in the US for creating malware. 

Marcus Hutchins was hailed as a hero in May 2017 when he found a “kill switch” that slowed the effects of the WannaCry virus which affected over 300k computers in 150 countries worldwide

But the 25-year-old, from the seaside resort of Ilfracombe in Devon, was arrested by FBI agents in a Las Vegas airport months later after attending a hacking convention.

In April, 25-year-old Marcus Hutchins pleaded guilty to two charges of making malicious software, or malware. Prosecutors alleged that the malware let cyber-criminals steal online banking details from internet users. Hutchins admitted to creating two programs known as Kronos and UPAS Kit.Since Hutchins' arrest in 2017, he has remained in the US on bail. 

The judge presiding at Hutchins' hearing, JP Stadtmueller, said that the 25-year-old would face one year of supervised release.

Hutchins, known online as MalwareTech, tweeted on Friday 26th July: “Sentenced to time served! Incredibly thankful for the understanding and leniency of the judge, the wonderful character letter you all sent, and everyone who helped me through the past two years, both financially and emotionally.”

He had pleaded guilty to two charges relating to writing malware, which court documents have described as “malicious computer code” known as Kronos.

The documents said: “The malware was designed to target banking information and to work on many types of web browsers, including Internet Explorer, Firefox and Chrome. Since 2014, Kronos has been used to infect numerous computers around the world and steal banking information.”

Hutchins, who had faced up to 10 years in prison, tweeted before his hearing: “Heading into court now. No matter what happens, I love y’all.” 

Writing earlier this year on his website, he said of his acts: “I regret these actions and accept full responsibility for my mistakes. Having grown up, I’ve since been using the same skills that I misused several years ago for constructive purposes. I will continue to devote my time to keeping people safe from malware attacks.”

Guardian:         BBC

You Might Also Read:

WannaCry Has Not Gone Away:

 

 

 

 

« Malware Delivery Via LinkedIn
GDPR Requires Better Methods Of Authentication »

CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

Alvacomm

Alvacomm

Alvacomm offers holistic VIP cybersecurity services, providing comprehensive protection against cyber threats. Our solutions include risk assessment, threat detection, incident response.

DigitalStakeout

DigitalStakeout

DigitalStakeout enables cyber security professionals to reduce cyber risk to their organization with proactive security solutions, providing immediate improvement in security posture and ROI.

Clayden Law

Clayden Law

Clayden Law advise global businesses that buy and sell technology products and services. We are experts in information technology, data privacy and cybersecurity law.

MIRACL

MIRACL

MIRACL provides the world’s only single step Multi-Factor Authentication (MFA) which can replace passwords on 100% of mobiles, desktops or even Smart TVs.

ON-DEMAND WEBINAR: What Is A Next-Generation Firewall (and why does it matter)?

ON-DEMAND WEBINAR: What Is A Next-Generation Firewall (and why does it matter)?

Watch this webinar to hear security experts from Amazon Web Services (AWS) and SANS break down the myths and realities of what an NGFW is, how to use one, and what it can do for your security posture.

Daon

Daon

Daon offers a universal biometric authentication platform for mobile devices.

Morphisec

Morphisec

Morphisec's world leading prevention-first software stops ransomware and other advanced attacks from endpoint to the cloud.

Electric Imp

Electric Imp

Electric Imp offers an innovative and powerful Internet of Things platform that securely connects devices with advanced cloud computing resources.

Cyber Security & Information Systems Information Analysis Center (CSIAC)

Cyber Security & Information Systems Information Analysis Center (CSIAC)

CSIAC is chartered to leverage best practices and expertise from government, industry, and academia on cyber security and information technology.

ExpressVPN

ExpressVPN

ExpressVPN is a Virtual Private Network services provider offering secure encrypted access to the internet.

Cybil

Cybil

Cybil is a publicly-available portal where members of the international cyber capacity building community can find and share information to support the design and delivery of programs and projects.

PAX Momentum

PAX Momentum

PAX Momentum is the Mid-Atlantic’s premier startup accelerator, specializing in cyber, enterprise software, telecom, CleanTech, FinTech, InsureTech, and AI.

Sectyne

Sectyne

Sectyne is a full-stack cyber consultancy committed to providing tailored services, advisory consultations, and training.

Data Defenders

Data Defenders

Data Defenders provide information security technology solutions that empower consumers, businesses and governments with safe and secure IT and cybersecurity infrastructures.

BSS

BSS

BSS is a solutions and services business based in the UK with a focus on Cyber Security, Data, Financial Crime, Internal Audit, Change, Risk and Resilience.

SecureClaw

SecureClaw

SecureClaw offers specialized cybersecurity consultation, various products, and a range of services to meet your company's business domain needs.

NVISO Security

NVISO Security

NVISO is a pure-play cyber security consulting firm, focused mainly on the Financial Sector, the Technology Sector, and Government & Critical Infrastructure.

Index Engines

Index Engines

Index Engines is the world’s leading AI-powered analytics engine to detect data corruption due to ransomware.

appNovi

appNovi

appNovi inventories everything to map the attack surface, identify missing security agents, and prioritize vulnerabilities based on exposure.

Scribe Security

Scribe Security

Scribe security provides end-to-end software supply chain security solutions.

Internet Watch Foundation (IWF)

Internet Watch Foundation (IWF)

Since the early days of the internet, our job has been to help child victims of sexual abuse by hunting down and removing any online record of the abuse.