The cyber attack that spread malicious software around the world, shutting down networks at hospitals, banks and government agencies, was thwarted by a young British researcher and an inexpensive domain registration, with help from another 20-something security engineer in the US.
Britain’s National Cyber Security Center and others were hailing the cyber security researcher, a 22-year-old identified online only as MalwareTech, who—unintentionally at first—discovered a so-called “kill switch” that halted the unprecedented outbreak, AP reported.
By then the “ransomware” attack had crippled Britain’s hospital network and computer systems in several countries in an effort to extort money from computer users. But the researcher’s actions may have saved companies and governments millions of dollars and slowed the outbreak before computers in the US were more widely affected. In a blog post on Saturday, MalwareTech explained he returned from lunch with a friend on Friday and learned that networks across Britain’s health system had been hit by ransomware, tipping him off that “this was something big”.
He began analyzing a sample of the malicious software and noticed its code included a hidden web address that was not registered. He said he “promptly” registered the domain, something he regularly does to try to discover ways to track or stop malicious software.
Across an ocean, Darien Huss, a 28-year-old research engineer for the cyber security firm Proofpoint, was doing his own analysis, noticing the authors of the malware had left in a feature known as a kill switch.
Add new comment
Read our comment policy before posting your viewpoints