All articles

If you could stop a devastating cyberattack, would you think about yourself first, or just act? This is the uncensored story of the WannaCry ransomware attack, how Marcus Hutchins went from cyber celebrity to wanted cyber criminal overnight and where he is now.

The story of WannaCry and hacker Marcus Hutchins

“I was shaking, I think I sweated through my T-shirt and blazer. I did not know how to feel – it just felt like everything was coming to an end, but not in a good way…”

For Marcus Hutchins, a dream that turned into a nightmare ended in July 2019 with a compassionate sentence by a Milwaukee judge. “I just got out of my court hearing for the sentencing. I wasn’t sure how it would go down. I was very, very nervous,” he told us after leaving the courtroom. “But the judge took a broad view of the entire circumstances. He weighed up my past work helping security. He ended up ruling ‘time served,’ which was a big surprise to me. But it does make sense, when you weigh in that I’ve been forced to stay in a foreign country for two years.”

Marcus’s story starts with what strangely became his downfall – stopping a catastrophic ransomware attack called WannaCry.

What is the WannaCry ransomware attack?

Hutchins became an overnight cybersecurity celebrity in 2017. “I came back from lunch, saw all the news about something targeting the NHS and decided to dig a little deeper, which was when I noticed an unregistered domain inside the code.” He registered the domain and the infection count went down. He had found the ‘kill switch’ for the WannaCry epidemic.

WannaCry cyberhero or Marcus Hutchins, cybercriminal?

It changed his life. He became a hero, then fell to zero a few weeks later. “I woke up to see my face over a two-page spread of the Daily Mail. Media had posted my address in the paper, which meant the bad guys I am fighting know where I live.”

Marcus Hutchins arrested at Defcon 2017

After saving the world from the worst ransomware attack in history, Hutchins became a cyber hero. The pinnacle of his fame was global hacker conference Defcon 2017. Marcus had become a demi-god among cyber researchers, journalists and the public before the event. After a week in the Las Vegas sun, partying and rubbing shoulders with the industry’s biggest names, everything would come crashing down.

Big Mac to banged up – WannaCry ransomware attack continued

That week, Marcus Hutchins had shared a mansion with his friends – think huge pool, all-night parties and legal marijuana. Allegedly, while picking up a McDonalds delivery outside the mansion one morning, he noticed an unmarked FBI vehicle.

At the airport, his suspicions were confirmed, “I am completely exhausted. I have no idea what’s going on and I’m just relaxing waiting for my flight. And a man and two other people in uniform approached me and asked, “Are you Marcus Hutchins?” I said yes, and they asked me to come with them. It turned out the guy was an FBI agent and that’s when they arrested me.”

At this point, Hutchins is in a sleep-deprived state of shock. Things aren’t looking good. The FBI showed a warrant for his arrest on conspiracy to commit computer fraud and abuse. It wasn’t for his role in WannaCry, but for a cyber ghost from his past: malware called Kronos, created on the sunny shores of Devon, UK, was of critical importance to the FBI.

Marcus Hutchins’ arrest – a global phenomenon

When the world got hold of Hutchins’ arrest, social media was awash with support and slander. One cybersecurity researcher suggested Hutchins created WannaCry himself only to stop it as it spiraled out of control. But as supporters who raised the alarm on the FBI’s treatment of Hutchins, Twitter bulged with support for Marcus’ character.

Eventually, Hutchins was bailed to a halfway house with a curfew and GPS monitoring. The Twitter community again came to his aid and two lawyers took Hutchins’ case for free. They were able to overturn the curfew and GPS monitoring.

Would prosecutors persuade Hutchins to squeal?

The FBI said if Hutchins called out other hackers he knew of, they’d let him off. On principle, Marcus opposed snitching. Instead, he set his sights on a criminal trial. Hutchins’ cybersecurity background, diligence and good heart played in his favor when the day came.

Much to Hutchins’ surprise, the judge ruled his hero status could almost warrant a full pardon, but that was out of the question. Rather than a 10-year prison sentence and a 500,000 US dollar fine, Marcus stepped out of the courtroom with one year supervised release.

Wait, what? After months of anxiety, Marcus was a free-ish man. The judge smiled on him that day, understanding Hutchins had already served a type of sentence being kept in the US without the right to go home.

Where is Marcus Hutchins now?

Hutchins has retreated from the public spotlight for now. Keep an eye on his Twitter, @MalwareTechBlog, for updates on what he’ll do next. From a recent interview in WIRED, it sounds like a return to his childhood love, surfing:

“Someday, I’d like to be able to live in a house by the ocean like this, where I can look out the window and if the waves are good, go right out and surf.”

The WannaCry documentary – Marcus Hutchins’ untold story

There’s much more to Marcus Hutchins’ story, in his own words. The cybersecurity hero who stopped WannaCry turned cybercrime defendant speaks in our exclusive documentary.

Explore more of history’s craziest and most mysterious cybercrime with our hacker:HUNTER series.

Read More Show Less

If you could stop a devastating cyberattack, would you think about yourself first, or just act? This is the uncensored story of the WannaCry ransomware attack, how Marcus Hutchins went from cyber celebrity to wanted cyber criminal overnight and where he is now.

The story of WannaCry and hacker Marcus Hutchins

“I was shaking, I think I sweated through my T-shirt and blazer. I did not know how to feel – it just felt like everything was coming to an end, but not in a good way…”

For Marcus Hutchins, a dream that turned into a nightmare ended in July 2019 with a compassionate sentence by a Milwaukee judge. “I just got out of my court hearing for the sentencing. I wasn’t sure how it would go down. I was very, very nervous,” he told us after leaving the courtroom. “But the judge took a broad view of the entire circumstances. He weighed up my past work helping security. He ended up ruling ‘time served,’ which was a big surprise to me. But it does make sense, when you weigh in that I’ve been forced to stay in a foreign country for two years.”

Marcus’s story starts with what strangely became his downfall – stopping a catastrophic ransomware attack called WannaCry.

What is the WannaCry ransomware attack?

Hutchins became an overnight cybersecurity celebrity in 2017. “I came back from lunch, saw all the news about something targeting the NHS and decided to dig a little deeper, which was when I noticed an unregistered domain inside the code.” He registered the domain and the infection count went down. He had found the ‘kill switch’ for the WannaCry epidemic.

WannaCry cyberhero or Marcus Hutchins, cybercriminal?

It changed his life. He became a hero, then fell to zero a few weeks later. “I woke up to see my face over a two-page spread of the Daily Mail. Media had posted my address in the paper, which meant the bad guys I am fighting know where I live.”

Marcus Hutchins arrested at Defcon 2017

After saving the world from the worst ransomware attack in history, Hutchins became a cyber hero. The pinnacle of his fame was global hacker conference Defcon 2017. Marcus had become a demi-god among cyber researchers, journalists and the public before the event. After a week in the Las Vegas sun, partying and rubbing shoulders with the industry’s biggest names, everything would come crashing down.

Big Mac to banged up – WannaCry ransomware attack continued

That week, Marcus Hutchins had shared a mansion with his friends – think huge pool, all-night parties and legal marijuana. Allegedly, while picking up a McDonalds delivery outside the mansion one morning, he noticed an unmarked FBI vehicle.

At the airport, his suspicions were confirmed, “I am completely exhausted. I have no idea what’s going on and I’m just relaxing waiting for my flight. And a man and two other people in uniform approached me and asked, “Are you Marcus Hutchins?” I said yes, and they asked me to come with them. It turned out the guy was an FBI agent and that’s when they arrested me.”

At this point, Hutchins is in a sleep-deprived state of shock. Things aren’t looking good. The FBI showed a warrant for his arrest on conspiracy to commit computer fraud and abuse. It wasn’t for his role in WannaCry, but for a cyber ghost from his past: malware called Kronos, created on the sunny shores of Devon, UK, was of critical importance to the FBI.

Marcus Hutchins’ arrest – a global phenomenon

When the world got hold of Hutchins’ arrest, social media was awash with support and slander. One cybersecurity researcher suggested Hutchins created WannaCry himself only to stop it as it spiraled out of control. But as supporters who raised the alarm on the FBI’s treatment of Hutchins, Twitter bulged with support for Marcus’ character.

Eventually, Hutchins was bailed to a halfway house with a curfew and GPS monitoring. The Twitter community again came to his aid and two lawyers took Hutchins’ case for free. They were able to overturn the curfew and GPS monitoring.

Would prosecutors persuade Hutchins to squeal?

The FBI said if Hutchins called out other hackers he knew of, they’d let him off. On principle, Marcus opposed snitching. Instead, he set his sights on a criminal trial. Hutchins’ cybersecurity background, diligence and good heart played in his favor when the day came.

Much to Hutchins’ surprise, the judge ruled his hero status could almost warrant a full pardon, but that was out of the question. Rather than a 10-year prison sentence and a 500,000 US dollar fine, Marcus stepped out of the courtroom with one year supervised release.

Wait, what? After months of anxiety, Marcus was a free-ish man. The judge smiled on him that day, understanding Hutchins had already served a type of sentence being kept in the US without the right to go home.

Where is Marcus Hutchins now?

Hutchins has retreated from the public spotlight for now. Keep an eye on his Twitter, @MalwareTechBlog, for updates on what he’ll do next. From a recent interview in WIRED, it sounds like a return to his childhood love, surfing:

“Someday, I’d like to be able to live in a house by the ocean like this, where I can look out the window and if the waves are good, go right out and surf.”

The WannaCry documentary – Marcus Hutchins’ untold story

There’s much more to Marcus Hutchins’ story, in his own words. The cybersecurity hero who stopped WannaCry turned cybercrime defendant speaks in our exclusive documentary.

Explore more of history’s craziest and most mysterious cybercrime with our hacker:HUNTER series.

Read More Show Less

What if governments would use your private data

In human culture it is not unusual to put people into imaginary ranks, be it because of the way they dress, their education, their career, or kindness. Depending on one’s social background the criteria for rating people can be extremely individual. Just like one person can have more best friends and another only one. Does it mean that one person is more popular and therefore has more friends? Maybe. But it could also mean, that one person can have a very different system to subconsciously rate individuals around them.

Nowadays we do not just get scored by humans around us, but also by computers. Social media, online shops, or search engines are collecting our data everyday creating an online persona of us, to show us personalized content or ads. This data can also be bought by organizations or governments, which may help you get a better credit score or maybe even deny you access to certain public places.

Digital Persona

If you open up a new bank account or need a loan, the bank will check your credit score to make sure you are trustworthy and can pay the loan back. Also, each time you rate a restaurant on yelp, visit a place with your location turned on, buy something online, like a video on YouTube or comment on a friend’s post on social media your data is being collected and an online persona of you is being automatically created and put in relation with people behaving similar to you online.

Usually, your online persona is being used to personalize your digital experience. This data about you can be bought so that organizations and governments could create a scoring system. Let’s say you play online poker from time to time: Algorithms could then detect the start of a possible gambling addiction, hence lowering your credit score. One of the most prominent social credit scoring systems is issued by Zhima Credit in China, which is sometimes translated to Sesame Credit.

The Zhima Credit

Zhima Credit is a subsidiary of the Chinese online retailer Alibaba. Users can voluntarily choose being scored by the system based on credit history and behavior. Li Yinguin, Zhima’s technology director, explained how the system works: “Someone who plays video games for 10 hours a day, for example, would be considered an idle person, and someone who frequently buys diapers would be considered as probably a parent, who on balance is more likely to have a sense of responsibility.”

If participating in this social scoring system is voluntarily, why do people do it? In China a huge number of citizens does not own a traditional credit history. The Zhima system allows them to be measured and gives banks the opportunity to score their credit risk. If your score is high enough you may even book hotel rooms or rent a car without having to pay a deposit. The Zhima Credit can be understood as a bonus program, where you gain benefits, if you behave a certain way.

Good Versus Bad

What is considered good by one person may not be for the other based on subjective, social or cultural aspects. Let’s just take a look about sleeping patterns in different cultures: In Germany sleeping in too long at the weekends is usually considered lazy, because you are not seizing the day. Especially when the sun is shining you should wake up early and go on a hiking trip. For Egyptians on the other hand it is not frowned upon sleeping till noon on the weekends, as a long working week and stressful commute can drain a lot of your energy. Also, as it can get very hot in the summer time, the seizing the day part may come a bit later than in a Central European country which eventually leads to people staying up late and needing to compensate on sleep over the weekend.

“Given the variation in each country’s context, a global system may not be feasible. It will fall on each country, at least in the near term, to make their own decision. For individuals, it is important to make informed decisions on your own data: who can store and use them, who can share them, who they are shared with, and what are the impacts on you. It is also important to get prepared and consider whether and how to participate in a social score system should it be implemented in your country,” says Prof. Chengyi Lin, Affiliate Professor of Strategy at INSEAD and a leading expert on digital transformation.

Can A Social Scoring System Be Trusted?

A digital scoring system would be developed by humans adopting artificial intelligence and machine learning. In order for the algorithms to know what is right and wrong they would need to feed it with our data and different behavior has to be connected with a positive, negative or neutral score. But how reliable can such a system really be today?

First of all, the algorithm would be programmed by people so there is always the possibility of human error and the subjective definition of right and wrong. Second, the system would probably be regimented by the government. In Germany, for example, they have their issues with suppressive systems burned into their cultural minds with the last one just ending 30 years ago. This does not mean that Germans do not trust their government –in the face of the Corona pandemic Germans nowadays trust their government more than ever – but rather being aware of the democratic need to split power and interest in order to protect freedom and privacy.

Just imagine if such a scoring system would have been implemented a few decades ago. Would we still have the same rights we have now? How could such a system affect individuality and how much of our freedom and privacy would we lose? Such a scoring system would need to have access to the most private aspects of our lives. We cannot just shut the door and make it wait outside.

Dangers of Discrimination in An Automated Scoring System

In order for a scoring system to work it has to access our everyday life, to understand our sleep patterns, how often we go to the gym, take a walk, or what we eat. Let’s say you have a sweet tooth and buy and eat sweets on a regular basis. Even though you may be healthy the system could negatively score you on it: your health insurance could cost more, because the system puts you in a risk group for diabetes, and you may have to pay more for dental treatments, even though you take good care of your teeth. A system will score you via numbers: If statistics say you are more likely to be a criminal because you grew up in a certain area with a lot of gang violence or are more likely to succeed when your parents have well-paying careers, will this have any consequences on which colleges or scholarships you can apply to?

Transparency in how a system like this works is very important. Only then, can we be sure its purpose is really to make our lives safer and more convenient. Also, how do we make sure people not in the system can still participate in everyday life. A recent headline in China was about a man who had to turn himself in after 16 years on the run for murder, as he didn’t have a smartphone and therefore no health code, which Chinese authorities use to fight the spread of the corona virus, and thus could not access public transport or even find a place to live. I am sure we can all agree that one less criminal on the street is very positive, but what about elderly who do not use smartphones, like your grandparents? Would they be excluded from society, because they are not part of a digital scoring system?

In order for a digital scoring system to work there are a lot of issues which still need to be discussed, tested or understood, like transparency, privacy, and discrimination issues. And we still have a long way to go, before an AI can grant someone the opportunity to get an apartment or take the bus.

If you could stop a devastating cyberattack, would you think about yourself first, or just act? This is the uncensored story of the WannaCry ransomware attack, how Marcus Hutchins went from cyber celebrity to wanted cyber criminal overnight and where he is now.

The story of WannaCry and hacker Marcus Hutchins

“I was shaking, I think I sweated through my T-shirt and blazer. I did not know how to feel – it just felt like everything was coming to an end, but not in a good way…”

For Marcus Hutchins, a dream that turned into a nightmare ended in July 2019 with a compassionate sentence by a Milwaukee judge. “I just got out of my court hearing for the sentencing. I wasn’t sure how it would go down. I was very, very nervous,” he told us after leaving the courtroom. “But the judge took a broad view of the entire circumstances. He weighed up my past work helping security. He ended up ruling ‘time served,’ which was a big surprise to me. But it does make sense, when you weigh in that I’ve been forced to stay in a foreign country for two years.”

Marcus’s story starts with what strangely became his downfall – stopping a catastrophic ransomware attack called WannaCry.

What is the WannaCry ransomware attack?

Hutchins became an overnight cybersecurity celebrity in 2017. “I came back from lunch, saw all the news about something targeting the NHS and decided to dig a little deeper, which was when I noticed an unregistered domain inside the code.” He registered the domain and the infection count went down. He had found the ‘kill switch’ for the WannaCry epidemic.

WannaCry cyberhero or Marcus Hutchins, cybercriminal?

It changed his life. He became a hero, then fell to zero a few weeks later. “I woke up to see my face over a two-page spread of the Daily Mail. Media had posted my address in the paper, which meant the bad guys I am fighting know where I live.”

Marcus Hutchins arrested at Defcon 2017

After saving the world from the worst ransomware attack in history, Hutchins became a cyber hero. The pinnacle of his fame was global hacker conference Defcon 2017. Marcus had become a demi-god among cyber researchers, journalists and the public before the event. After a week in the Las Vegas sun, partying and rubbing shoulders with the industry’s biggest names, everything would come crashing down.

Big Mac to banged up – WannaCry ransomware attack continued

That week, Marcus Hutchins had shared a mansion with his friends – think huge pool, all-night parties and legal marijuana. Allegedly, while picking up a McDonalds delivery outside the mansion one morning, he noticed an unmarked FBI vehicle.

At the airport, his suspicions were confirmed, “I am completely exhausted. I have no idea what’s going on and I’m just relaxing waiting for my flight. And a man and two other people in uniform approached me and asked, “Are you Marcus Hutchins?” I said yes, and they asked me to come with them. It turned out the guy was an FBI agent and that’s when they arrested me.”

At this point, Hutchins is in a sleep-deprived state of shock. Things aren’t looking good. The FBI showed a warrant for his arrest on conspiracy to commit computer fraud and abuse. It wasn’t for his role in WannaCry, but for a cyber ghost from his past: malware called Kronos, created on the sunny shores of Devon, UK, was of critical importance to the FBI.

Marcus Hutchins’ arrest – a global phenomenon

When the world got hold of Hutchins’ arrest, social media was awash with support and slander. One cybersecurity researcher suggested Hutchins created WannaCry himself only to stop it as it spiraled out of control. But as supporters who raised the alarm on the FBI’s treatment of Hutchins, Twitter bulged with support for Marcus’ character.

Eventually, Hutchins was bailed to a halfway house with a curfew and GPS monitoring. The Twitter community again came to his aid and two lawyers took Hutchins’ case for free. They were able to overturn the curfew and GPS monitoring.

Would prosecutors persuade Hutchins to squeal?

The FBI said if Hutchins called out other hackers he knew of, they’d let him off. On principle, Marcus opposed snitching. Instead, he set his sights on a criminal trial. Hutchins’ cybersecurity background, diligence and good heart played in his favor when the day came.

Much to Hutchins’ surprise, the judge ruled his hero status could almost warrant a full pardon, but that was out of the question. Rather than a 10-year prison sentence and a 500,000 US dollar fine, Marcus stepped out of the courtroom with one year supervised release.

Wait, what? After months of anxiety, Marcus was a free-ish man. The judge smiled on him that day, understanding Hutchins had already served a type of sentence being kept in the US without the right to go home.

Where is Marcus Hutchins now?

Hutchins has retreated from the public spotlight for now. Keep an eye on his Twitter, @MalwareTechBlog, for updates on what he’ll do next. From a recent interview in WIRED, it sounds like a return to his childhood love, surfing:

“Someday, I’d like to be able to live in a house by the ocean like this, where I can look out the window and if the waves are good, go right out and surf.”

The WannaCry documentary – Marcus Hutchins’ untold story

There’s much more to Marcus Hutchins’ story, in his own words. The cybersecurity hero who stopped WannaCry turned cybercrime defendant speaks in our exclusive documentary.

Explore more of history’s craziest and most mysterious cybercrime with our hacker:HUNTER series.

Read More Show Less

Remember when you were a kid, running around with your friends, imagining having superpowers and fighting the bad guys? Eventually you outgrew it and are now having a regular human job, but a lot of scientists are driven by their imaginations and are working on technologies to augment ourselves into superhumans.

Human augmentation can aid produce better prosthetics or reduce genetic disorders, and could create a better life for a lot of people – but it also raises the question of where to draw the line: Where does a human stop being human and start becoming a machine?

Creating Joy

We humans have been augmenting our bodies for thousands of years. And we have come a long way from wooden legs to microprocessor prosthetics. It is not just about giving people the opportunity to be independent, after losing an arm or a leg – it is giving back the quality of life everybody deserves. In the future robotic limbs could be integrated into the human body, boosting our biological capabilities. Similar to an upgrade: Human 2.0.

Technology Has its Price

State-of-the-art technology and design have their price. You get what you can pay for. If you cannot afford it you are not getting it. Nowadays it may be that you cannot afford to get a modern and perfectly fitted microprocessor prosthetics. In the future it may lead to parallel universes in one world. An example of this dystopian view is the Netflix series Altered Carbon: The wealthiest people can afford to choose every type of body they want or what kind of augmentation they want to integrate in those bodies, while the rest of humanity has to take what is given to them – like the 8 year old girl which was “resleeved” into the body of a middle aged woman.

When Does Humanity Stop?

Humanity may had millions of years to evolve, but can we still stay human, if we are filled with technology? Imagine if you could preserve yourself, the way you think, the way you talk, what you like or dislike and be able to live forever in different synthetic bodies. Would it still be you, or just a copy of who you used to be– an artificial intelligence which got fed with the data of you and how you process information? If someone has his genetics transformed so that they could process information faster and remember things better than anyone around him, are they still the same person they were before? Will genetically engineered people be a normality, and regular born humans discriminated, like in the movie Gattaca?

For now, we cannot say if our future will be more a utopia or dystopia. For all we know scientists are creating technology to improve our lives day by day, which makes me optimistic about how our society will be tomorrow.

If you could stop a devastating cyberattack, would you think about yourself first, or just act? This is the uncensored story of the WannaCry ransomware attack, how Marcus Hutchins went from cyber celebrity to wanted cyber criminal overnight and where he is now.

The story of WannaCry and hacker Marcus Hutchins

“I was shaking, I think I sweated through my T-shirt and blazer. I did not know how to feel – it just felt like everything was coming to an end, but not in a good way…”

For Marcus Hutchins, a dream that turned into a nightmare ended in July 2019 with a compassionate sentence by a Milwaukee judge. “I just got out of my court hearing for the sentencing. I wasn’t sure how it would go down. I was very, very nervous,” he told us after leaving the courtroom. “But the judge took a broad view of the entire circumstances. He weighed up my past work helping security. He ended up ruling ‘time served,’ which was a big surprise to me. But it does make sense, when you weigh in that I’ve been forced to stay in a foreign country for two years.”

Marcus’s story starts with what strangely became his downfall – stopping a catastrophic ransomware attack called WannaCry.

What is the WannaCry ransomware attack?

Hutchins became an overnight cybersecurity celebrity in 2017. “I came back from lunch, saw all the news about something targeting the NHS and decided to dig a little deeper, which was when I noticed an unregistered domain inside the code.” He registered the domain and the infection count went down. He had found the ‘kill switch’ for the WannaCry epidemic.

WannaCry cyberhero or Marcus Hutchins, cybercriminal?

It changed his life. He became a hero, then fell to zero a few weeks later. “I woke up to see my face over a two-page spread of the Daily Mail. Media had posted my address in the paper, which meant the bad guys I am fighting know where I live.”

Marcus Hutchins arrested at Defcon 2017

After saving the world from the worst ransomware attack in history, Hutchins became a cyber hero. The pinnacle of his fame was global hacker conference Defcon 2017. Marcus had become a demi-god among cyber researchers, journalists and the public before the event. After a week in the Las Vegas sun, partying and rubbing shoulders with the industry’s biggest names, everything would come crashing down.

Big Mac to banged up – WannaCry ransomware attack continued

That week, Marcus Hutchins had shared a mansion with his friends – think huge pool, all-night parties and legal marijuana. Allegedly, while picking up a McDonalds delivery outside the mansion one morning, he noticed an unmarked FBI vehicle.

At the airport, his suspicions were confirmed, “I am completely exhausted. I have no idea what’s going on and I’m just relaxing waiting for my flight. And a man and two other people in uniform approached me and asked, “Are you Marcus Hutchins?” I said yes, and they asked me to come with them. It turned out the guy was an FBI agent and that’s when they arrested me.”

At this point, Hutchins is in a sleep-deprived state of shock. Things aren’t looking good. The FBI showed a warrant for his arrest on conspiracy to commit computer fraud and abuse. It wasn’t for his role in WannaCry, but for a cyber ghost from his past: malware called Kronos, created on the sunny shores of Devon, UK, was of critical importance to the FBI.

Marcus Hutchins’ arrest – a global phenomenon

When the world got hold of Hutchins’ arrest, social media was awash with support and slander. One cybersecurity researcher suggested Hutchins created WannaCry himself only to stop it as it spiraled out of control. But as supporters who raised the alarm on the FBI’s treatment of Hutchins, Twitter bulged with support for Marcus’ character.

Eventually, Hutchins was bailed to a halfway house with a curfew and GPS monitoring. The Twitter community again came to his aid and two lawyers took Hutchins’ case for free. They were able to overturn the curfew and GPS monitoring.

Would prosecutors persuade Hutchins to squeal?

The FBI said if Hutchins called out other hackers he knew of, they’d let him off. On principle, Marcus opposed snitching. Instead, he set his sights on a criminal trial. Hutchins’ cybersecurity background, diligence and good heart played in his favor when the day came.

Much to Hutchins’ surprise, the judge ruled his hero status could almost warrant a full pardon, but that was out of the question. Rather than a 10-year prison sentence and a 500,000 US dollar fine, Marcus stepped out of the courtroom with one year supervised release.

Wait, what? After months of anxiety, Marcus was a free-ish man. The judge smiled on him that day, understanding Hutchins had already served a type of sentence being kept in the US without the right to go home.

Where is Marcus Hutchins now?

Hutchins has retreated from the public spotlight for now. Keep an eye on his Twitter, @MalwareTechBlog, for updates on what he’ll do next. From a recent interview in WIRED, it sounds like a return to his childhood love, surfing:

“Someday, I’d like to be able to live in a house by the ocean like this, where I can look out the window and if the waves are good, go right out and surf.”

The WannaCry documentary – Marcus Hutchins’ untold story

There’s much more to Marcus Hutchins’ story, in his own words. The cybersecurity hero who stopped WannaCry turned cybercrime defendant speaks in our exclusive documentary.

Explore more of history’s craziest and most mysterious cybercrime with our hacker:HUNTER series.

Read More Show Less

If you could stop a devastating cyberattack, would you think about yourself first, or just act? This is the uncensored story of the WannaCry ransomware attack, how Marcus Hutchins went from cyber celebrity to wanted cyber criminal overnight and where he is now.

The story of WannaCry and hacker Marcus Hutchins

“I was shaking, I think I sweated through my T-shirt and blazer. I did not know how to feel – it just felt like everything was coming to an end, but not in a good way…”

For Marcus Hutchins, a dream that turned into a nightmare ended in July 2019 with a compassionate sentence by a Milwaukee judge. “I just got out of my court hearing for the sentencing. I wasn’t sure how it would go down. I was very, very nervous,” he told us after leaving the courtroom. “But the judge took a broad view of the entire circumstances. He weighed up my past work helping security. He ended up ruling ‘time served,’ which was a big surprise to me. But it does make sense, when you weigh in that I’ve been forced to stay in a foreign country for two years.”

Marcus’s story starts with what strangely became his downfall – stopping a catastrophic ransomware attack called WannaCry.

What is the WannaCry ransomware attack?

Hutchins became an overnight cybersecurity celebrity in 2017. “I came back from lunch, saw all the news about something targeting the NHS and decided to dig a little deeper, which was when I noticed an unregistered domain inside the code.” He registered the domain and the infection count went down. He had found the ‘kill switch’ for the WannaCry epidemic.

WannaCry cyberhero or Marcus Hutchins, cybercriminal?

It changed his life. He became a hero, then fell to zero a few weeks later. “I woke up to see my face over a two-page spread of the Daily Mail. Media had posted my address in the paper, which meant the bad guys I am fighting know where I live.”

Marcus Hutchins arrested at Defcon 2017

After saving the world from the worst ransomware attack in history, Hutchins became a cyber hero. The pinnacle of his fame was global hacker conference Defcon 2017. Marcus had become a demi-god among cyber researchers, journalists and the public before the event. After a week in the Las Vegas sun, partying and rubbing shoulders with the industry’s biggest names, everything would come crashing down.

Big Mac to banged up – WannaCry ransomware attack continued

That week, Marcus Hutchins had shared a mansion with his friends – think huge pool, all-night parties and legal marijuana. Allegedly, while picking up a McDonalds delivery outside the mansion one morning, he noticed an unmarked FBI vehicle.

At the airport, his suspicions were confirmed, “I am completely exhausted. I have no idea what’s going on and I’m just relaxing waiting for my flight. And a man and two other people in uniform approached me and asked, “Are you Marcus Hutchins?” I said yes, and they asked me to come with them. It turned out the guy was an FBI agent and that’s when they arrested me.”

At this point, Hutchins is in a sleep-deprived state of shock. Things aren’t looking good. The FBI showed a warrant for his arrest on conspiracy to commit computer fraud and abuse. It wasn’t for his role in WannaCry, but for a cyber ghost from his past: malware called Kronos, created on the sunny shores of Devon, UK, was of critical importance to the FBI.

Marcus Hutchins’ arrest – a global phenomenon

When the world got hold of Hutchins’ arrest, social media was awash with support and slander. One cybersecurity researcher suggested Hutchins created WannaCry himself only to stop it as it spiraled out of control. But as supporters who raised the alarm on the FBI’s treatment of Hutchins, Twitter bulged with support for Marcus’ character.

Eventually, Hutchins was bailed to a halfway house with a curfew and GPS monitoring. The Twitter community again came to his aid and two lawyers took Hutchins’ case for free. They were able to overturn the curfew and GPS monitoring.

Would prosecutors persuade Hutchins to squeal?

The FBI said if Hutchins called out other hackers he knew of, they’d let him off. On principle, Marcus opposed snitching. Instead, he set his sights on a criminal trial. Hutchins’ cybersecurity background, diligence and good heart played in his favor when the day came.

Much to Hutchins’ surprise, the judge ruled his hero status could almost warrant a full pardon, but that was out of the question. Rather than a 10-year prison sentence and a 500,000 US dollar fine, Marcus stepped out of the courtroom with one year supervised release.

Wait, what? After months of anxiety, Marcus was a free-ish man. The judge smiled on him that day, understanding Hutchins had already served a type of sentence being kept in the US without the right to go home.

Where is Marcus Hutchins now?

Hutchins has retreated from the public spotlight for now. Keep an eye on his Twitter, @MalwareTechBlog, for updates on what he’ll do next. From a recent interview in WIRED, it sounds like a return to his childhood love, surfing:

“Someday, I’d like to be able to live in a house by the ocean like this, where I can look out the window and if the waves are good, go right out and surf.”

The WannaCry documentary – Marcus Hutchins’ untold story

There’s much more to Marcus Hutchins’ story, in his own words. The cybersecurity hero who stopped WannaCry turned cybercrime defendant speaks in our exclusive documentary.

Explore more of history’s craziest and most mysterious cybercrime with our hacker:HUNTER series.

Read More Show Less

If you could stop a devastating cyberattack, would you think about yourself first, or just act? This is the uncensored story of the WannaCry ransomware attack, how Marcus Hutchins went from cyber celebrity to wanted cyber criminal overnight and where he is now.

The story of WannaCry and hacker Marcus Hutchins

“I was shaking, I think I sweated through my T-shirt and blazer. I did not know how to feel – it just felt like everything was coming to an end, but not in a good way…”

For Marcus Hutchins, a dream that turned into a nightmare ended in July 2019 with a compassionate sentence by a Milwaukee judge. “I just got out of my court hearing for the sentencing. I wasn’t sure how it would go down. I was very, very nervous,” he told us after leaving the courtroom. “But the judge took a broad view of the entire circumstances. He weighed up my past work helping security. He ended up ruling ‘time served,’ which was a big surprise to me. But it does make sense, when you weigh in that I’ve been forced to stay in a foreign country for two years.”

Marcus’s story starts with what strangely became his downfall – stopping a catastrophic ransomware attack called WannaCry.

What is the WannaCry ransomware attack?

Hutchins became an overnight cybersecurity celebrity in 2017. “I came back from lunch, saw all the news about something targeting the NHS and decided to dig a little deeper, which was when I noticed an unregistered domain inside the code.” He registered the domain and the infection count went down. He had found the ‘kill switch’ for the WannaCry epidemic.

WannaCry cyberhero or Marcus Hutchins, cybercriminal?

It changed his life. He became a hero, then fell to zero a few weeks later. “I woke up to see my face over a two-page spread of the Daily Mail. Media had posted my address in the paper, which meant the bad guys I am fighting know where I live.”

Marcus Hutchins arrested at Defcon 2017

After saving the world from the worst ransomware attack in history, Hutchins became a cyber hero. The pinnacle of his fame was global hacker conference Defcon 2017. Marcus had become a demi-god among cyber researchers, journalists and the public before the event. After a week in the Las Vegas sun, partying and rubbing shoulders with the industry’s biggest names, everything would come crashing down.

Big Mac to banged up – WannaCry ransomware attack continued

That week, Marcus Hutchins had shared a mansion with his friends – think huge pool, all-night parties and legal marijuana. Allegedly, while picking up a McDonalds delivery outside the mansion one morning, he noticed an unmarked FBI vehicle.

At the airport, his suspicions were confirmed, “I am completely exhausted. I have no idea what’s going on and I’m just relaxing waiting for my flight. And a man and two other people in uniform approached me and asked, “Are you Marcus Hutchins?” I said yes, and they asked me to come with them. It turned out the guy was an FBI agent and that’s when they arrested me.”

At this point, Hutchins is in a sleep-deprived state of shock. Things aren’t looking good. The FBI showed a warrant for his arrest on conspiracy to commit computer fraud and abuse. It wasn’t for his role in WannaCry, but for a cyber ghost from his past: malware called Kronos, created on the sunny shores of Devon, UK, was of critical importance to the FBI.

Marcus Hutchins’ arrest – a global phenomenon

When the world got hold of Hutchins’ arrest, social media was awash with support and slander. One cybersecurity researcher suggested Hutchins created WannaCry himself only to stop it as it spiraled out of control. But as supporters who raised the alarm on the FBI’s treatment of Hutchins, Twitter bulged with support for Marcus’ character.

Eventually, Hutchins was bailed to a halfway house with a curfew and GPS monitoring. The Twitter community again came to his aid and two lawyers took Hutchins’ case for free. They were able to overturn the curfew and GPS monitoring.

Would prosecutors persuade Hutchins to squeal?

The FBI said if Hutchins called out other hackers he knew of, they’d let him off. On principle, Marcus opposed snitching. Instead, he set his sights on a criminal trial. Hutchins’ cybersecurity background, diligence and good heart played in his favor when the day came.

Much to Hutchins’ surprise, the judge ruled his hero status could almost warrant a full pardon, but that was out of the question. Rather than a 10-year prison sentence and a 500,000 US dollar fine, Marcus stepped out of the courtroom with one year supervised release.

Wait, what? After months of anxiety, Marcus was a free-ish man. The judge smiled on him that day, understanding Hutchins had already served a type of sentence being kept in the US without the right to go home.

Where is Marcus Hutchins now?

Hutchins has retreated from the public spotlight for now. Keep an eye on his Twitter, @MalwareTechBlog, for updates on what he’ll do next. From a recent interview in WIRED, it sounds like a return to his childhood love, surfing:

“Someday, I’d like to be able to live in a house by the ocean like this, where I can look out the window and if the waves are good, go right out and surf.”

The WannaCry documentary – Marcus Hutchins’ untold story

There’s much more to Marcus Hutchins’ story, in his own words. The cybersecurity hero who stopped WannaCry turned cybercrime defendant speaks in our exclusive documentary.

Explore more of history’s craziest and most mysterious cybercrime with our hacker:HUNTER series.

Read More Show Less

If you could stop a devastating cyberattack, would you think about yourself first, or just act? This is the uncensored story of the WannaCry ransomware attack, how Marcus Hutchins went from cyber celebrity to wanted cyber criminal overnight and where he is now.

The story of WannaCry and hacker Marcus Hutchins

“I was shaking, I think I sweated through my T-shirt and blazer. I did not know how to feel – it just felt like everything was coming to an end, but not in a good way…”

For Marcus Hutchins, a dream that turned into a nightmare ended in July 2019 with a compassionate sentence by a Milwaukee judge. “I just got out of my court hearing for the sentencing. I wasn’t sure how it would go down. I was very, very nervous,” he told us after leaving the courtroom. “But the judge took a broad view of the entire circumstances. He weighed up my past work helping security. He ended up ruling ‘time served,’ which was a big surprise to me. But it does make sense, when you weigh in that I’ve been forced to stay in a foreign country for two years.”

Marcus’s story starts with what strangely became his downfall – stopping a catastrophic ransomware attack called WannaCry.

What is the WannaCry ransomware attack?

Hutchins became an overnight cybersecurity celebrity in 2017. “I came back from lunch, saw all the news about something targeting the NHS and decided to dig a little deeper, which was when I noticed an unregistered domain inside the code.” He registered the domain and the infection count went down. He had found the ‘kill switch’ for the WannaCry epidemic.

WannaCry cyberhero or Marcus Hutchins, cybercriminal?

It changed his life. He became a hero, then fell to zero a few weeks later. “I woke up to see my face over a two-page spread of the Daily Mail. Media had posted my address in the paper, which meant the bad guys I am fighting know where I live.”

Marcus Hutchins arrested at Defcon 2017

After saving the world from the worst ransomware attack in history, Hutchins became a cyber hero. The pinnacle of his fame was global hacker conference Defcon 2017. Marcus had become a demi-god among cyber researchers, journalists and the public before the event. After a week in the Las Vegas sun, partying and rubbing shoulders with the industry’s biggest names, everything would come crashing down.

Big Mac to banged up – WannaCry ransomware attack continued

That week, Marcus Hutchins had shared a mansion with his friends – think huge pool, all-night parties and legal marijuana. Allegedly, while picking up a McDonalds delivery outside the mansion one morning, he noticed an unmarked FBI vehicle.

At the airport, his suspicions were confirmed, “I am completely exhausted. I have no idea what’s going on and I’m just relaxing waiting for my flight. And a man and two other people in uniform approached me and asked, “Are you Marcus Hutchins?” I said yes, and they asked me to come with them. It turned out the guy was an FBI agent and that’s when they arrested me.”

At this point, Hutchins is in a sleep-deprived state of shock. Things aren’t looking good. The FBI showed a warrant for his arrest on conspiracy to commit computer fraud and abuse. It wasn’t for his role in WannaCry, but for a cyber ghost from his past: malware called Kronos, created on the sunny shores of Devon, UK, was of critical importance to the FBI.

Marcus Hutchins’ arrest – a global phenomenon

When the world got hold of Hutchins’ arrest, social media was awash with support and slander. One cybersecurity researcher suggested Hutchins created WannaCry himself only to stop it as it spiraled out of control. But as supporters who raised the alarm on the FBI’s treatment of Hutchins, Twitter bulged with support for Marcus’ character.

Eventually, Hutchins was bailed to a halfway house with a curfew and GPS monitoring. The Twitter community again came to his aid and two lawyers took Hutchins’ case for free. They were able to overturn the curfew and GPS monitoring.

Would prosecutors persuade Hutchins to squeal?

The FBI said if Hutchins called out other hackers he knew of, they’d let him off. On principle, Marcus opposed snitching. Instead, he set his sights on a criminal trial. Hutchins’ cybersecurity background, diligence and good heart played in his favor when the day came.

Much to Hutchins’ surprise, the judge ruled his hero status could almost warrant a full pardon, but that was out of the question. Rather than a 10-year prison sentence and a 500,000 US dollar fine, Marcus stepped out of the courtroom with one year supervised release.

Wait, what? After months of anxiety, Marcus was a free-ish man. The judge smiled on him that day, understanding Hutchins had already served a type of sentence being kept in the US without the right to go home.

Where is Marcus Hutchins now?

Hutchins has retreated from the public spotlight for now. Keep an eye on his Twitter, @MalwareTechBlog, for updates on what he’ll do next. From a recent interview in WIRED, it sounds like a return to his childhood love, surfing:

“Someday, I’d like to be able to live in a house by the ocean like this, where I can look out the window and if the waves are good, go right out and surf.”

The WannaCry documentary – Marcus Hutchins’ untold story

There’s much more to Marcus Hutchins’ story, in his own words. The cybersecurity hero who stopped WannaCry turned cybercrime defendant speaks in our exclusive documentary.

Explore more of history’s craziest and most mysterious cybercrime with our hacker:HUNTER series.

Read More Show Less

If you could stop a devastating cyberattack, would you think about yourself first, or just act? This is the uncensored story of the WannaCry ransomware attack, how Marcus Hutchins went from cyber celebrity to wanted cyber criminal overnight and where he is now.

The story of WannaCry and hacker Marcus Hutchins

“I was shaking, I think I sweated through my T-shirt and blazer. I did not know how to feel – it just felt like everything was coming to an end, but not in a good way…”

For Marcus Hutchins, a dream that turned into a nightmare ended in July 2019 with a compassionate sentence by a Milwaukee judge. “I just got out of my court hearing for the sentencing. I wasn’t sure how it would go down. I was very, very nervous,” he told us after leaving the courtroom. “But the judge took a broad view of the entire circumstances. He weighed up my past work helping security. He ended up ruling ‘time served,’ which was a big surprise to me. But it does make sense, when you weigh in that I’ve been forced to stay in a foreign country for two years.”

Marcus’s story starts with what strangely became his downfall – stopping a catastrophic ransomware attack called WannaCry.

What is the WannaCry ransomware attack?

Hutchins became an overnight cybersecurity celebrity in 2017. “I came back from lunch, saw all the news about something targeting the NHS and decided to dig a little deeper, which was when I noticed an unregistered domain inside the code.” He registered the domain and the infection count went down. He had found the ‘kill switch’ for the WannaCry epidemic.

WannaCry cyberhero or Marcus Hutchins, cybercriminal?

It changed his life. He became a hero, then fell to zero a few weeks later. “I woke up to see my face over a two-page spread of the Daily Mail. Media had posted my address in the paper, which meant the bad guys I am fighting know where I live.”

Marcus Hutchins arrested at Defcon 2017

After saving the world from the worst ransomware attack in history, Hutchins became a cyber hero. The pinnacle of his fame was global hacker conference Defcon 2017. Marcus had become a demi-god among cyber researchers, journalists and the public before the event. After a week in the Las Vegas sun, partying and rubbing shoulders with the industry’s biggest names, everything would come crashing down.

Big Mac to banged up – WannaCry ransomware attack continued

That week, Marcus Hutchins had shared a mansion with his friends – think huge pool, all-night parties and legal marijuana. Allegedly, while picking up a McDonalds delivery outside the mansion one morning, he noticed an unmarked FBI vehicle.

At the airport, his suspicions were confirmed, “I am completely exhausted. I have no idea what’s going on and I’m just relaxing waiting for my flight. And a man and two other people in uniform approached me and asked, “Are you Marcus Hutchins?” I said yes, and they asked me to come with them. It turned out the guy was an FBI agent and that’s when they arrested me.”

At this point, Hutchins is in a sleep-deprived state of shock. Things aren’t looking good. The FBI showed a warrant for his arrest on conspiracy to commit computer fraud and abuse. It wasn’t for his role in WannaCry, but for a cyber ghost from his past: malware called Kronos, created on the sunny shores of Devon, UK, was of critical importance to the FBI.

Marcus Hutchins’ arrest – a global phenomenon

When the world got hold of Hutchins’ arrest, social media was awash with support and slander. One cybersecurity researcher suggested Hutchins created WannaCry himself only to stop it as it spiraled out of control. But as supporters who raised the alarm on the FBI’s treatment of Hutchins, Twitter bulged with support for Marcus’ character.

Eventually, Hutchins was bailed to a halfway house with a curfew and GPS monitoring. The Twitter community again came to his aid and two lawyers took Hutchins’ case for free. They were able to overturn the curfew and GPS monitoring.

Would prosecutors persuade Hutchins to squeal?

The FBI said if Hutchins called out other hackers he knew of, they’d let him off. On principle, Marcus opposed snitching. Instead, he set his sights on a criminal trial. Hutchins’ cybersecurity background, diligence and good heart played in his favor when the day came.

Much to Hutchins’ surprise, the judge ruled his hero status could almost warrant a full pardon, but that was out of the question. Rather than a 10-year prison sentence and a 500,000 US dollar fine, Marcus stepped out of the courtroom with one year supervised release.

Wait, what? After months of anxiety, Marcus was a free-ish man. The judge smiled on him that day, understanding Hutchins had already served a type of sentence being kept in the US without the right to go home.

Where is Marcus Hutchins now?

Hutchins has retreated from the public spotlight for now. Keep an eye on his Twitter, @MalwareTechBlog, for updates on what he’ll do next. From a recent interview in WIRED, it sounds like a return to his childhood love, surfing:

“Someday, I’d like to be able to live in a house by the ocean like this, where I can look out the window and if the waves are good, go right out and surf.”

The WannaCry documentary – Marcus Hutchins’ untold story

There’s much more to Marcus Hutchins’ story, in his own words. The cybersecurity hero who stopped WannaCry turned cybercrime defendant speaks in our exclusive documentary.

Explore more of history’s craziest and most mysterious cybercrime with our hacker:HUNTER series.

Read More Show Less