Marcus Hutchins, the 23-year-old British security researcher who was credited with stopping the WannaCry outbreak in its tracks by discovering a hidden "kill switch" for the malware, has been arrested by the FBI over his alleged involvement in another malicious software targeting bank accounts.
According to an indictment released by the US Department of Justice on Thursday, Hutchins is accused of having helped to create, spread and maintain the banking trojan Kronos between 2014 and 2015.
The Kronos malware was spread through emails with malicious attachments such as compromised Microsoft word documents, and hijacks credentials like internet banking passwords to let its user steal money with ease.
[...] Hutchins, better known online by his handle MalwareTech, had been in Las Vegas for the annual Def Con hacking conference, the largest of its kind in the world. He was at the airport preparing to leave the country when he was arrested, after more than a week in the the city without incident.
Grauniad source: Briton who stopped WannaCry attack arrested over separate malware claims
Also covered by the BBC: NHS cyber-defender Marcus Hutchins charged in US.
Update: Detention quickly turned to arrest and indictment. Also at NPR, Motherboard, and the L.A. Times.
Previously: "Biggest Ransomware Attack in History" Hits Around 100 Countries, Disrupts UK's NHS
WannaCrypt Ransomware Variant -- Lacking Kill Switch -- Seen in Wild [Updated]
(Score: 4, Insightful) by Anonymous Coward on Friday August 04 2017, @03:27PM (1 child)
Since the US makes it a habit to arrest foreign attendees
of DEFCON, perhaps foreigners should consider meeting in a place that is has less risk to their freedom.
(Score: 2) by etherscythe on Friday August 04 2017, @03:33PM
.GOV is just demonstrating a security vulnerability in attendees: you're expected to be somewhere, you can therefore be targeted nearby! Don't be mad because they co-opted the spirit of the event...
"Fake News: anything reported outside of my own personally chosen echo chamber"