Whiz kid who foiled cyberattack

  • TECH
  • Tuesday, 16 May 2017

This photograph, posed as an illustration on May 12, 2017, shows the website of the NHS: East and North Hertfordshire notifying users of a problem in its network taken outside the Department of Health in London. The unprecedented global ransomware cyberattack has hit more than 200,000 victims in more than 150 countries, Europol executive director Rob Wainwright said May 14, 2017. Britain's state-run National Health Service was affected by the attack. / AFP PHOTO / Daniel LEAL-OLIVAS

They are called white hats – the good guys in the Wild West of the Internet – and they ride to the rescue as in the case of the 22-year-old British expert who helped stop the WannaCry cyberattack. 

The young cybersecurity researcher, known only by his Twitter handle @MalwareTechBlog, says he found a weakness by chance that allowed slowing the spread of WannaCry, a type of malware called ransomware that encrypts files on an infected computer and demands money to unlock them. 

Britain's National Cyber Security Centre (NCSC) published his discovery, but also noted he was not an employee. 

British media reported that he is employed in a cybersecurity firm and that he wishes to remain anonymous. 

"He clearly succeeded in halting the spread" of WannaCry, said cybersecurity expert Marco Cova at Lastline. 

According to Europol, the situation is now stable in Europe.  

In China, which was also hard hit, the spread of the malware has slowed considerably according to authorities. 

@MalwareTechBlog "stopped WannaCry by finding the 'kill switch' that the hackers introduced into the virus themselves to stop it if necessary," said Nicolas Godier, a cybersecurity expert at Proofpoint. 

Godier said the British researcher worked closely with cybersecurity company Proofpoint expert Darien Huss over the weekend. 

Contrary to the image of solitary hackers conversing through encrypted messages, the computer experts communicate most often through Twitter, according to Godier.  

"All day long they analyse strains of computer viruses to see how they function" and find ways to stop them, said Godier. 

"If each works in his own corner, it isn't effective, so they share their research. And with social networks, it moves quickly." 

In this case it only took them several hours to find a weakness, said Godier. 

'White hat' vs 'Black hat' 

The hackers who launch attacks and the cyber security experts who parry them have largely the same skills. 

"In a certain way there are white knights and black knights" in cyber security, said Godier. 

More often the terms are drawn from Westerns. 

"The white hat is a researcher that does work for the good of the industry/society, the black hat's motivation is more nefarious in nature," said Raj Samani, Chief Scientist at McAfee, a leading producer of antivirus software.  

They are in a perpetual race to discover vulnerabilities in software, which hackers will exploit to profit from while cyber security experts will develop solutions to protect their clients and the public. 

In addition to the pride of a job well done, good publicity that comes from foiling a massive cyberattack can boost the reputation of white hats such as @MalwareTechBlog. 

It can help them increase their circle of collaborators, thus improving their work. 

The attention can also help a researcher get a job in a cybersecurity firm, if they don't already have one. 

The same can be true for negative publicity, providing some hackers the opportunity to switch sides and join reputable firms. 

Sued by Sony for hacking the PlayStation 3 games console, George Hotz was later recruited by Facebook in 2011. — AFP

Article type: metered
User Type: anonymous web
User Status:
Campaign ID: 1
Cxense type: free
User access status: 3
Join our Telegram channel to get our Evening Alerts and breaking news highlights

Next In Tech News

Driver was behind Tesla wheel in deadly Texas crash: investigators
Opinion: If you can't save money, time and the planet with Uber and Lyft, then what is the point?
Walmart allowing some shoppers to buy bitcoin at Coinstar kiosks
Snap shares plunge 25% as Apple privacy changes hit ads business
Internet providers collect 'staggering' amounts of data -U.S. FTC chair
Exclusive: Governments turn tables on ransomware gang REvil by pushing it offline -sources
Intel shares sink as third-quarter sales miss estimates
Facial recognition is on the menu in UK schools
Explainer-What is Trump's new venture and what are its odds of success?
Bitcoin falls from peak, U.S. ETF support questioned

Others Also Read