The Teen Malware Career Of Marcus Hutchins (itwire.com) 48
Slashdot reader troublemaker_23 writes, "A number of security researchers have dismissed an article by reporter Brian Krebs about Marcus Hutchins, the Briton who is awaiting trial in the US on charges of writing and distributing the Kronos banking malware, by pointing out that it has nothing to do with the case." An anonymous reader writes:
Krebs investigated dozens of hacker forum pseudonyms, concluding "The clues suggest that Hutchins began developing and selling malware in his mid-teens -- only to later develop a change of heart and earnestly endeavor to leave that part of his life squarely in the rearview mirror." Krebs believes 15-year-old Hutchins registered a domain he'd later advertise as "mainly for blackhats wanting to phish," and in 2010 may have filmed YouTube videos about password-stealing malware. Krebs says the early activities are "fairly small-time -- and hardly rise to the level of coding from scratch a complex banking trojan and selling it to cybercriminals," though he believes Hutchins moved on to advertising exploit kits, password-stealers, and bot rentals.
Krebs also talked to 27-year-old Brendan Johnston, a friend of Hutchins who did time in prison in 2014 for selling Trojans, who "said his old friend sincerely tried to turn things around in late 2012... 'I feel like I know Marcus better than most people do online, and when I heard about the accusations I was completely shocked,. He tried for such a long time to steer me down a straight and narrow path that seeing this tied to him didn't make sense to me at all." Krebs stresses that Hutchins didn't try to hide the fact that he'd written malware, "which in the United States at least is a form of protected speech." And his essay concludes, "Let me be clear: I have no information to support the claim that Hutchins authored or sold the Kronos banking trojan."
Symantec's former cybersecurity czar Tarah Wheeler has now set up a new legal fund after it was discovered that most of the online donations to Hutchins' previous defense fund came from stolen or fake credit card numbers. Hutchins returns to court in October, and the new fund has already received more than $16,000 in donations from more than 200 contributors.
Krebs also talked to 27-year-old Brendan Johnston, a friend of Hutchins who did time in prison in 2014 for selling Trojans, who "said his old friend sincerely tried to turn things around in late 2012... 'I feel like I know Marcus better than most people do online, and when I heard about the accusations I was completely shocked,. He tried for such a long time to steer me down a straight and narrow path that seeing this tied to him didn't make sense to me at all." Krebs stresses that Hutchins didn't try to hide the fact that he'd written malware, "which in the United States at least is a form of protected speech." And his essay concludes, "Let me be clear: I have no information to support the claim that Hutchins authored or sold the Kronos banking trojan."
Symantec's former cybersecurity czar Tarah Wheeler has now set up a new legal fund after it was discovered that most of the online donations to Hutchins' previous defense fund came from stolen or fake credit card numbers. Hutchins returns to court in October, and the new fund has already received more than $16,000 in donations from more than 200 contributors.
Who gets to decide? (Score:5, Interesting)
I'd like to categorise the telemetry in Windows 10 as malware...
Where is the line drawn, and who gets to draw it?
Re: Who gets to decide? (Score:1)
Somewhere between Windows 10 and stuff that steals your banking credentials.
Re: (Score:1)
Isn't that EA Origin?
Re: (Score:2)
If you don't like to use Windows 10 on your own computer(s) then don't. How the hell can you think something you can control to that level can be malware?
You can easily disable the telemetry too, can you easily disable the malware aspects of malware?
You have a point but please make the example realistic.
Re: (Score:2)
Overreacted - sorry. :(
Re: (Score:3)
Because the people of that democratic society have rejected the death penalty for all crimes except the very most serious.
If you'd prefer a society which enacts arbitrary death penalties and executions then you could try standing for office on that platform, or lobbying, or campaigning. Or you could go apply to live in China, N. Korea, Iran, Pakistan, Afghanistan, Syria or IS or similar. Have a nice trip.
Re: (Score:3, Interesting)
have rejected the death penalty for all crimes except the very most serious.
And yet murderers, mass murderers [nytimes.com], rapists [dailymail.co.uk], child rapists [wwaytv3.com], and many others are not executed but instead coddled for decades at the taxpayer expense.
Obviously society doesn't consider any of the above as serious crimes or these criminals would be executed. And before you bring up the tired, "Capital punishment doesn't deter crime", it's not about deterring crime. It's about getting rid of people who have chosen not to live within th
Re: (Score:2)
Re: (Score:2)
Re: (Score:1)
Only if you kill them before the legal process has gone its whole course (all the appeals).
Re: (Score:1)
I have noticed this tread amongst US citizens, even left wingers and the antifa crowd, to desire execution of people they deem undesirable. I expect this among the redneck right wingers, but sadly the left is becoming more violent in speech and action.
Anyway, we don't execute people for non violent crimes. We shouldn't execute anyone, since that empowers the state to murder, but even in the current legal climate executions are typically reserved for violent felons who committed capital crimes.
Murdering pe
Re: (Score:1)
Because the death penalty is a tool of politics, not a tool of justice. The only reason why the US still does it is to give the appearance of politicians being "tough on crime" in a punitive society.
In Saudi Arabia they behead people in the public square. There's something fundamentally honest about this compared to countries that try to pretend it's some kind of medical procedure and hide it away so nobody has to look it in the face. Kind of like drone warfare.
Re: (Score:1)
Because the death penalty is immoral.
It's also no more effective as a deterrent than much less extreme punishments, which means anybody arguing for it is fucking stupid as well as a degenerate scumbag.
the death penalty needs to remove / very cut down (Score:2)
the death penalty needs to remove / very cut down.
any ways it takes years for the courts any ways be force they charge up old sparky
Re: (Score:2, Interesting)
People mistakenly think an up/down-vote system results in fairer results. Not necessarily. It gives results which conform to the group's biases. The problem arises when the population of people likely to down-vote a post is highly disproportionate. Th
Still a problem (Score:2)
A big part of /. moderation is not the moderation system itself, but the abuse of the system by (let us call them) special interests. Long ago it was people with sock puppet accounts mostly using them to moderate their own posts. Those still exist today, but we also have groups punishing "wrong think" and up modding garbage. E.G. "Trump is a F*# wad!" gets modded informative, "Trump's policy on X may actually be good because.. reasoning" gets modded "Troll", and "Why is Trump's policy?" questions get mo
Anonymous... (Score:2, Insightful)
Posting anonymously is effectively saying your opinion doesn't matter, and you are too chickenshit to back it up. Anonymous posting should be eliminated immediately, or at least it should be impossible to mod Anonymous posts up.
Can you see what I did there? no, didn't think so.
Wrong (Score:2)
Posting anonymously is required if you have certain opinions which people see as "wrong think". Some easy examples: Arguing against UBI. Arguing against Global Warming (now called Climate Change). Arguing against pot legalization. Arguing for a creator in Philosophy (not related to theology). Arguing for most of the amendments in the US Constitution (though pro 4th is still safe). Arguing for certain political parties, platforms, and candidates, or against their opposition.
When accounts related to sp
Re: (Score:2)
And of course the down votes and the insults so patently demonstrate the mentality of the chickenshits that resort to down-voting.
Fake credit card? (Score:1)
How exactly can money be obtained from a phoney card number?
Re: (Score:2)
Where they can be used is places that cannot do an immediate verification with the credit card company. In this case they probably collected donation information but did not process the credit cards at the time of donation. So their total showed they collected XXXX money but when they attempted to get that money from the credit card comp
Brian Krebs of the Washington CIA Post .. (Score:2)