London: A British computer security researcher hailed as a hero for thwarting the “WannaCry” ransomware onslaught was in US custody on Thursday after being indicted on charges of creating malware to attack banks.
Marcus Hutchins, known by the alias “Malwaretech,” was charged in an indictment dated July 12 and unsealed this week by federal authorities in Wisconsin.
The US Justice Department said in a statement Hutchins was arrested Wednesday in Las Vegas, where a major Def Con hacker security conference took place over the weekend. Twitter postings from other security researchers said he was detained as he prepared to fly back to Britain.
Hutchins faces criminal charges including conspiracy to commit computer fraud, according to the US Department of Justice.
The indictment accuses Hutchins and another individual of making and distributing Kronos “banking Trojan,” a reference to malicious software designed to steal user names and passwords used at online banking sites.
Since it was created, Kronos has been configured to work on banking systems in Britain, Canada, Germany, Poland, France, and other countries, according to the DOJ.
The indictment set the time of the activity by Hutchins as being from July 2014 to July of the following year. Hutchins was part of a conspiracy to distribute the hacking tool on so-called dark markets, according to the indictment signed last month by US Attorney Gregory Haanstad.
Kronos was evidently first made available through certain internet forums in early 2014, and was marketed and distributed through a hidden online AlphaBay marketplace, according to US prosecutors.