Slashdot Mirror

← Back to Stories (view on slashdot.org)

Researcher Who Stopped WannaCry Pleads Not Guilty to Creating Banking Malware (vice.com)

Posted by msmash on from the courtroom-musings dept.

Lorenzo Franceschi-Bicchierai, reporting for Motherboard: Monday, the well-known security researcher who became famous after helping to stop the destructive WannaCry ransomware outbreak pleaded "not guilty" to creating software that would later become banking malware. Marcus Hutchins -- better known by his online nickname MalwareTech -- was arrested in early August in Las Vegas after the hacking conference Def Con. The US government accuses Hutchins of writing software in 2014 that would later become the banking malware Kronos. After getting out on bail and traveling to Milwaukee, he stood in front a judge on Monday for his arraignment. Prosecutors also allege he helped a still unknown co-defendant market and sell Kronos. Hutchins's lawyer Brian Klein declared in a packed courtroom in Milwaukee that Hutchins was "not guilty" of six charges related to the alleged creation and distribution of malware. Hutchins will be allowed to travel to Los Angeles, where he will live while he awaits trial. He will also be represented by Marcia Hoffman, formerly of the Electronic Frontier Foundation. Under the terms of his release, Hutchins will be tracked by GPS but will be allowed full internet access so he can continue to work as a security researcher; the only restriction is he will no longer be allowed to access the WannaCry "sinkhole" he used to stop the outbreak of ransomware.

16 of 71 comments (clear)

  1. Fishy by Anonymous Coward · · Score: 3, Interesting

    This is very fishy.....

  2. travel to the USA... by johnjones · · Score: 2, Insightful

    get arrested, well thats a way to incentivise Canadian conferences...

  3. Expected regardless by s.petry · · Score: 4, Interesting

    I would have expected this plea regardless of facts. I can't wait to read more on this as it becomes available. Right now, we have speculation on one side and little except the indictment on the other.

    Needs way more information to start making informed opinions.

    --

    -The wise argue that there are few absolutes, the fool argues that there are no probabilities.

    1. Re: Expected regardless by Anonymous Coward · · Score: 2, Interesting

      More information is needed for an informed opinion but I'll still make a guess that the NSA is pissed that he stopped their malware from working.

    2. Re: Expected regardless by Calydor · · Score: 2

      Who says they'd put up a way for the victims to unlock their machines?

      It becomes ransomware when the distributor wants to make money. It becomes a cyberweapon when the distributor wants to take someone down hard.

      --
      -=This sig has nothing to do with my comment. Move along now=-
  4. Maybe he says the truth by admin7087 · · Score: 3, Insightful

    This looks like one of those cases when someone was not fully willing to 'cooperate' with certain people and then the FBI is 'tipped off' with some very bogus evidence. I'm speculating, of course, but anyway that's how it looks to me.

  5. Things that make you go hmmm by Anonymous Coward · · Score: 2

    I wonder if he stopped or interfered with an NSA false-flag and is being pinned for it...

  6. Re:Poor Marcus by Anonymous Coward · · Score: 3, Interesting

    > What is this shit?
    You wrote it yourself just prior:
    > what he did for THE WORLD by deactivating WCry
    He messed with some probably very active NSA malware.

  7. His name's Monday? by wonkey_monkey · · Score: 4, Funny

    Monday, the well-known security researcher

    I thought he was called Marcus.

    --
    systemd is Roko's Basilisk.
  8. You can tell a lot from pretrial stuff by Anonymous Coward · · Score: 2, Insightful

    "Hutchins will be tracked by GPS but will be allowed full internet access so he can continue to work as a security researcher"

    Sounds like they don't have much of a case, otherwise they would be screeching about how he was a flight risk and a danger to society. I'm guessing their case is something like "he developed part of the tool that was eventually used in a bank heist". Which could be like charging the manufacturer of a large drill with conspiracy because one of their drills had been used in a physical bank robbery even if they had never interacted with the actual robbers on any level.

  9. Re:Poor Marcus by Grishnakh · · Score: 2

    Yep, I hope everyone's learned an important lesson here about doing the "right thing".

    Remember, no good deed ever goes unpunished.

    The next time you see malware about to destroy all of civilization, and you could deactivate it, don't. It's not worth it. You won't be helping yourself, and you'll end up being severely punished for your trouble.

  10. Wait... what? by mark-t · · Score: 3, Insightful

    They are alleging that "he was the author of the code that became the Kronos malware"... even if this allegation were true, that should be entirely irrelevant if he neither authored the Kronos malware nor assisted in its distribution.... heck, by that reasoning, practically every computer programming language creator ever should be held accountable for "writing software that would eventually become malware" as well... because essentially, that's what would be amounted to by what they were saying.

    You can't justly hold an inventor of a technology accountable for how nefarious people might use it unless you can reasonably demonstrate that there was some kind of cooperation between the inventor and the people that committed the wrongdoing.

    Why not hold the parents responsible for breeding in the first place if their child grows up and becomes a murderer?

    Gawd, there are so many things wrong with this entire thing, I can barely believe that this trial is actually happening. It is just so fucked up that I don't have the words...

    --
    File under 'M' for 'Manic ranting'
    1. Re:Wait... what? by DigiShaman · · Score: 2

      The political / legal class is deathly scared of the wizards of IT hacking.

      --
      Life is not for the lazy.
  11. Conspiracy Theory by Anonymous Coward · · Score: 5, Insightful

    "Hutchins will be tracked by GPS but will be allowed full internet access so he can continue to work as a security researcher; the only restriction is he will no longer be allowed to access the WannaCry "sinkhole" he used to stop the outbreak of ransomware."

    That tells you everything you need to know.

    1. WannaCry used the code from the leaked NSA software.
    2. WannaCry included code that looked to check if a specified domain had been registered. If it received a response from the domain, it shut down. If not, it continued to work.
    3. The "sinkhole" domain bricked the NSA software and interfered with ongoing ops.
    4. Tracking the traffic to the "sinkhole" domain might allow you to determine which traffic was from the NSA software and which one was from the WannaCry variant thus exposing ongoing NSA ops.

    'It's not paranoia when they are really out to get you'

  12. Re: Now throw the book at him by KGIII · · Score: 2

    How about we establish guilt, and then debate the penalty based on culpability?

    --
    "So long and thanks for all the fish."
  13. Alternative conferences in Europe by Vadim+Makarov · · Score: 2

    Why travel to the US while there are good security conferences in Europe? Take Chaos Communication Congress every December, or the Dutch and German summer camps that take place at around the same time as DEF CON. I've just been to SHA2017, it was large, lots of fun and some really interesting talks.

    --
    17779 eligible voters in a district, 17779 'vote' as one. This is Russia.