Marcus Hutchins, slayer of WannaCry worm, pleads guilty to malware charges
Marcus Hutchins, the security researcher who helped neutralize the virulent WannaCry ransomware worm, has pleaded guilty to federal charges of creating and distributing malware used to break into online bank accounts.
“I regret these actions and accept full responsibility for my mistakes,” Hutchins wrote in a short post. “Having grown up, Ive since been using the same skills that I misused several years ago for constructive purposes. I will continue to devote my time to keeping people safe from malware attacks.”
Hutchins was changed in August 2017 with creating Kronos, a banking trojan that stole online bank account passwords from infected computers. A superseding indictment filed 10 months later charged him with 10 felony counts that alleged he created a second piece of malware called UPAS Kit. Hutchins, whose online persona MalwareTech attracts more than 143,000 followers on Twitter, had a league of vocal defenders claiming the allegations were false.
In a plea agreement filed in federal court Friday, Hutchins pleaded guilty to two of the 10 counts. One count charged him with distributing Kronos, while the other charged him with conspiracy. Prosecutors agreed to drop the remainder of their case. The agreement, which is signed by Hutchins, includes the following elements:
- The conspiracy as charged existed;
- The defendant knowingly became a member of the conspiracy with the intent to advance the conspiracy;
- And one of the conspirators committed an overt act in an effort to advance the goal of conspiracy.
Hutchins faces 10 years in prison at sentencing. It wasn't immediately clear when sentencing would take place.
Hutchins became an overnight luminary in security circles in May 2017 after he registered a domain that stopped the spread of WannaCry, a quick-spreading ransomware worm that had been shutting down computers all over the world. Windows exploits developed by, and later stolen from, the National SecuRead More – Source