Marcus Hutchins

From Wikipedia, the free encyclopedia
Jump to navigation Jump to search

Marcus Hutchins, also known online as MalwareTech, is a British computer security researcher known for temporarily stopping the WannaCry ransomware attack.[1][2] He is employed by cybersecurity firm Kryptos Logic.[3][4] Hutchins is from Ilfracombe, Devon, UK.[5]

In August 2017, Hutchins was arrested in Las Vegas (where he was attending the DEF CON conference) after being indicted on six hacking-related federal charges in the U.S. District Court for the Eastern District of Wisconsin. Prosecutors allege that Hutchins assisted in the creation and spread of a piece of banking malware known as Kronos in 2014 and 2015. The charges are not related to WannaCry,[6][7] but included the allegations that he created the Kronos malware in 2014, and sold it in 2015 via the AlphaBay forums.[8][9] Hutchins denied any wrongdoing and pleaded not guilty to the charges against him on August 2017.[10][11] He was out on bail pending trial and remained in Los Angeles.[12] In early June 2018, the U.S. government added four more charges to his indictment.[13]

On 19 April 2019 Hutchins pleaded guilty to conspiring to commit wire fraud, as well as distributing, selling, promoting, and advertising a device used to intercept electronic communications.[14] His statement included the quote "I regret these actions and accept full responsibility for my mistakes. Having grown up, I’ve since been using the same skills that I misused several years ago for constructive purposes."[15] Hutchins faced up to five years in prison and $250,000 in fines for the two charges.[16] On 26 July, 2019, Hutchins was sentenced to time served and one year of supervised release.[17]


  1. ^ Gibbs, Samuel (22 May 2017). "WannaCry hackers still trying to revive attack says accidental hero". The Guardian. ISSN 0261-3077. Retrieved 6 August 2017.
  2. ^ Weise, Elizabeth (23 May 2017). "His life got weird after saving the Internet: ransomware hero Marcus Hutchins". USA TODAY. Retrieved 6 August 2017.
  3. ^ Cox, Joseph (3 August 2017). "Researcher Who Stopped WannaCry Ransomware Detained in US After Def Con". Motherboard. Retrieved 6 August 2017.
  4. ^ "Bail of $30,000 set for UK cyber expert Marcus Hutchins". BBC News. 5 August 2017. Retrieved 6 August 2017.
  5. ^ "WannaCry hero Marcus Hutchins 'admitted creating code to harvest bank details' - court told". The Telegraph. Press Association. 5 August 2017. ISSN 0307-1235. Retrieved 16 April 2018.
  6. ^ Hern, Alex; Levin, Sam (3 August 2017). "Briton who stopped WannaCry attack arrested over separate malware claims". The Guardian. ISSN 0261-3077. Retrieved 6 August 2017.
  7. ^ Ram, Aliya (5 August 2017). "British cyber security researcher appears in US court". Financial Times. Retrieved 6 August 2017.
  8. ^ "Indictment". Retrieved 4 August 2017.
  9. ^ Kerr, Orin (3 August 2017). "The Kronos indictment: Is it a crime to create and sell malware?". Retrieved 4 August 2017.
  10. ^ Thomson, Iain (4 August 2017). "WannaCry-killer Marcus Hutchins pleads not guilty to malware claims". The Register. Retrieved 6 August 2017.
  11. ^ Krebs, Brian (5 September 2017). "Who Is Marcus Hutchins?". Krebs on Security.
  12. ^ Farivar, Cyrus (20 October 2017). "Judge: MalwareTech is no longer under curfew, GPS monitoring [Updated]". Ars Technica. Retrieved 11 June 2018.
  13. ^ Heller, Michael (8 June 2018). "New MalwareTech indictment adds four more charges". TechTarget. Retrieved 11 June 2018.
  14. ^ Eastern District of Wisconsin (19 April 2019). "Guilty Plea Apr-19-2019".
  15. ^ Thomson, Iain (19 April 2019). "Wannacry-slayer Marcus Hutchins pleads guilty to two counts of banking malware creation".
  16. ^ Palko Karasz (20 April 2019). "He Stopped a Global Cyberattack. Now He's Pleading Guilty to Writing Malware". The New York Times.
  17. ^ Moreno, Ivan (26 July 2019). "No prison for British cyber expert in malware case". Washington Post. AP.