Become a fan of Slashdot on Facebook

 



Forgot your password?
typodupeerror
×
Security Privacy News

UK Tabloids Doxxed the 'Hero' Hacker Who Stopped a Global Cyberattack (theoutline.com) 164

The UK-based security researcher, who "accidentally" halted the spread of the ransomware Wanna Decryptor over the weekend, has been doxxed by UK tabloids. From a report: [...] Journalists have published his name against his will, bringing him unwanted attention and sending a signal to privacy-sensitive researchers that no good deed goes unpunished. The researcher, writing under the username MalwareTechBlog, published a blog post on his personal site with findings about the virus, explaining how it was stopped and what would have to be done to prevent it from coming back. News outlets, including the Daily Mail, The Guardian, and CNN called the anonymous researcher a hero. The researcher was initially responsive to press inquiries. He told reporters that he was 22, lived in the south of England with his parents, and worked for an L.A. security firm. However, he told The Guardian that he wanted to remain anonymous "because it just doesn't make sense to give out my personal information, obviously we're working against bad guys and they're not going to be happy about this." It took about a day for UK papers, including The Mail, The Sun, The Telegraph, and The Mirror, to suss out the researcher's name and publish photos of him, show up at his house, and track down his friends and associates for interviews. "It's caused a fair bit of stress," he told Forbes. "I don't want fame."
This discussion has been archived. No new comments can be posted.

UK Tabloids Doxxed the 'Hero' Hacker Who Stopped a Global Cyberattack

Comments Filter:
  • by smooth wombat ( 796938 ) on Monday May 15, 2017 @03:45PM (#54421631) Journal

    How many of those papers are owned by Rupert Murdoch?

    • by Anonymous Coward

      One: The Sun
      http://www.bbc.co.uk/newsbeat/article/17851358/who-is-sun-owner-rupert-murdoch-and-what-does-he-do

    • What does that have to do with it?

      • by dbIII ( 701233 )
        Because it's a policy Murdoch has been pushing for decades in his loss making newspapers. They are his tool for influence which is why he keeps them fed from profits from Fox etc.
  • by hsmith ( 818216 ) on Monday May 15, 2017 @03:45PM (#54421633)
    They don't care what gets in their way as long as it leads to a "juicy story" and will ruin every life in the way to get it. Reporters, well anyone employed at these garbage "papers" are vile disgusting people.

    It isn't really "fake news" as Orange Jesus would say, just garbage news.
    • Local news reporting still tries to inform you about what's going on around your town/city.

      Most news from the larger media companies and the networks, however - especially the regurgitated "breaking news" from 24/7 cable news networks - is just gossip. Long gone are the days of covering stories with journalistic integrity (see CNN and the 1991 Gulf War, compared to Wolf Blitzer's "The Situation Room", for comparison's sake.)

    • I don't get why this would be "juicy." I've seen items about the wanna decryptor on slashdot and reddit, that's it.

      The tabloid-reading masses were not, as far as I could tell, clamoring for the identity of this computer superhero in the same way they're evidently clamoring for a picture of Brittney Spears' ordering a soda.
      • by Maritz ( 1829006 )
        It was a big story in the UK because the chronically underfunded NHS runs a lot of Windows XP and they got shafted by the ransomware. They're probably spinning this as 'hero saves NHS' because the tabloids are for stupid people who live in a cartoon world.
    • by rahvin112 ( 446269 ) on Monday May 15, 2017 @07:33PM (#54423197)

      These are the same type of reporters that hacked the voicemail of a missing girl and then deleted some of the saved voicemails in the hope she'd get more which convinced the police she was still alive and caused the investigation to be suspended for a couple weeks. British tabloids are the ones leading the charge into a world with no journalism, respect or privacy.

    • by Maritz ( 1829006 )

      Reporters, well anyone employed at these garbage "papers" are vile disgusting people.

      Yep. If you happen to meet someone who works at one of these rags, plead with them to kill themselves.

  • by Anonymous Coward

    The press will continue to lament how they are perceived negatively in spite of them being the real heroes of every story they report.

  • Transparancy (Score:5, Insightful)

    by Avarist ( 2453728 ) on Monday May 15, 2017 @03:48PM (#54421661)
    Those tabloids are a sore on humanity but we must remember, they exist because it works, because people fall for the clickbait. Tackle the cause not the symptom.
    • Re: (Score:1, Interesting)

      by Anonymous Coward

      Tackle the cause not the symptom.

      While the latest anglo-american elections (Brexit, Trump) suggest that the extermination of humankind has some merit ("tackle the cause not the symptom"), I would personally prefer to address the symptom instead. Humans will probably always be gullible, but we could at least teach critical thinking in primary education and alleviate some of this (that would address the symptom, even though the fundamental problem -- flawed human psychology -- will probably persist for the f

    • Re: (Score:2, Troll)

      by Gravis Zero ( 934156 )

      they exist because it works, because people fall for the clickbait. Tackle the cause not the symptom.

      The root cause is humanity itself. The second order cause is freedom of the press. The third order cause is a business model based on attention grabbing. The fourth order cause is people willing to do anything because they want money.

      Which cause should we tackle exactly?

      • by Ocker3 ( 1232550 )
        How about #5, a political class cowed by a runaway Fleet Street who can tap telephone lines, expose an individual's private information, etc., without serious fear of fines or actual action? There is a balance between a free press and a right to privacy, a need to know, and a valid desire to not have your personal information everywhere. Perhaps the Public Interest test needs to be applied more often, with punishments for getting it badly wrong.
    • Er... how exactly do we tackle the cause, which as you said is human nature?
      • Re:Transparancy (Score:4, Insightful)

        by drinkypoo ( 153816 ) <drink@hyperlogos.org> on Monday May 15, 2017 @06:47PM (#54422919) Homepage Journal

        Er... how exactly do we tackle the cause, which as you said is human nature?

        With education. When I was in jr. high I had an English teacher who cared enough to teach us about techniques of propaganda. This sort of thing (along with, you know, basic logic — the only place I got any of that was in GATE) should be an explicit part of the curriculum. Instead we got No Child Left Behind, which leaves teachers no time for that kind of jazz. They have to teach to the tests, and have no time for anything else. (I guess now we have Every Student Succeeds instead, and I haven't heard as much about that, so perhaps it's somewhat less evil.)

    • Tackle the cause not the symptom.

      Sounds good!

      (destroys humanity and replaces it with robots)

  • Good work (Score:5, Insightful)

    by Anonymous Coward on Monday May 15, 2017 @03:49PM (#54421673)
    Not you, UK tabloids. But the /. editor who removed the guy's name from the summary. The issue at stake is newsworthy to Slashdot reader, but at the end, the name of the person isn't.
  • by bjdevil66 ( 583941 ) on Monday May 15, 2017 @03:53PM (#54421715)
    Good press: Exposing bad actors in a conspiracy that are trying to remain anonymous.

    Bad press: Exposing an accidental good actor that specifically asked to remain anonymous so he could do his work.

    This was like outing a police officer's name and address after he nails a low-level gang leader. It could get very messy for this 22 year old online. Hacked social media accounts, DDOSed any personally managed online resources (web servers, etc.). And that's if it's a low-level script kiddie type trying to make some cash - and not some more malevolent group.

    Celebrity isn't what you want in that line of work...
    • yeah but he would make a few million in crowdfunding easy.
      • by Ocker3 ( 1232550 )
        Why should a person have to get money from individuals for his defense, when the system should have protected him? He's an excellent example of someone working Inside the system, for the system's benefit, in fact for the entire global online-user population, he should be given kudos and privacy if he wants it, not a target on his back.
    • Re: (Score:2, Insightful)

      If he really wanted to remain anonymous then he should have kept his mouth shut instead of posting on a personal blog and then giving interviews to the media.

      You can't really complain about people figuring out who you. If you want to stay anonymous, then stay anonymous!

      He clearly wanted the attention, he just wants to control how much attention he gets which isn't up to him.

      • by Anonymous Coward on Monday May 15, 2017 @04:56PM (#54422295)

        So, if you say anything online at all, you have no right to complain if you get doxxed? Think through what you're saying, here.

      • by Anonymous Coward

        Easy for you to say, Jeremy from Portsmouth NH

      • RU sure ur leet h4ck7h3p14n37 anonymity will protect you, Jeremy from Portsmouth NH?

        Yeah, maybe he should have kept his mouth shut, but this is also blaming the victim.

        Also, remember he's 22, so there's that.

        Should he have control? Well, there's lot's of laws around the world apply to privacy, so there's that.

        And we all want a little attention, so there's that.

    • by tlhIngan ( 30335 ) <slashdot&worf,net> on Monday May 15, 2017 @04:54PM (#54422271)

      It could get very messy for this 22 year old online. Hacked social media accounts, DDOSed any personally managed online resources (web servers, etc.). And that's if it's a low-level script kiddie type trying to make some cash - and not some more malevolent group.

      Online is the least of his troubles. He will have problems offline

      You think malware groups are above harassment, robbery and/or thuggery? Hell, if the value is high enough, you can add attempted murder to the list. They are criminal organizations and they will not stoop to trying to get anyone hurting their business eradicated.

      At the very least, he should get those tabloids to pay for his moving costs and for a new house.

      • Added bonus: they also know they can get to family members without having to try too hard as they live at the same address. So, not only has he been put in danger by the tabloids, his immediate family is also under threat.

      • by jaa101 ( 627731 )

        At the very least, he should get those tabloids to pay for his moving costs and for a new house.

        Don't tell me you support a legal system where media can be made to pay for the consequences of revealing the truth. I don't think we want to go there, though England already leans pretty far in that direction. There's no way the tabloids involved here are going to pay voluntarily if for no other reason than that it would be an admission that they did the wrong thing.

        To be clear, doxxing this guy is unconscionable conduct on the part of the media companies responsible. The more they do this, and especial

  • Pond scum (Score:5, Informative)

    by TarpaKungs ( 466496 ) on Monday May 15, 2017 @03:56PM (#54421745)
    The UK press are twats.

    Security Researchers have had death threats and setups, like having hard drugs posted to their house shortly followed by a tip off to plod and all manner of other nasty things.

    Sadly it's not just Murdoch's sewerage - the other papers are just as bad.
  • by mattyj ( 18900 )

    How long before we find out that this 'researcher' is a former member of the clan that unleashed this hot garbage to the world, but left over some petty dispute so invoked the back door already known to him.

    I find it hard to believe that Symantec and especially Kaspersky didn't find this 'kill switch' before this guy (allegedly) did.

    • Re: (Score:2, Informative)

      by Anonymous Coward

      You have not read his blog. He specializes in malware tracking, detection, new malware analysis and the like. He has been writing nearly two articles per month since he was 18 and has a job doing similar work at 22. A very accomplished, if a bit overspecialized, young man precisely in the field we are discussing.

    • by dbIII ( 701233 )

      I find it hard to believe that Symantec and especially Kaspersky didn't find this 'kill switch' before this guy (allegedly) did.

      Have you consider that perhaps the malware was more than a few bytes in length and different people started looking at different parts?

  • by presidenteloco ( 659168 ) on Monday May 15, 2017 @04:00PM (#54421793)

    because of this against-his-will exposure, he should crowdsource funds to sue the tabloids.

  • I might be mistaken, but... This is a worm right? With no control over rate of infection, right? Meaning it's an exponential growth process. Meaning it should have hit its saturation in no time. Like an hour or so. Meaning that by the time that dude pulled the plug, the party was mostly over anyway...
    • by Anonymous Coward

      Except for the fact that there is at least one new variant out which does not contain the same kill-switch.

    • by Anonymous Coward

      No, it's a two-parter. The worm side of things only affects accessible SMB shares, which essentially means on most networks it can only spread once it's gotten into the network via some other method. A lot of the attack went through phishing emails and the like, in order to get the payload into the internal networks where it would spread via SMB shares. Any networks already infected by the time he hit the kill switch were probably fully infected as you say, but enabling the kill switch stopped it being a

    • by Ocker3 ( 1232550 )
      No, it relied on people opening compromised files via email or network stored files, it wasn't self propagating.
  • by Anonymous Coward on Monday May 15, 2017 @04:27PM (#54422059)

    Those tabloids put him in harms way in the middle of a global IT security crisis.

    When (not if) people in hospitals die because of this computer hacking, they should sue those tabloids, for putting a target on his head, and on the head of anyone who wanted to help. Bet your arse that there are others who will "just duck" to not get doxxed by those sorts of papers.

    I think anyone whose life he saved, should help crowdfund a lawsuit against the papers that did this.

    If he ends up being executed for this, I think that the state (is it UK?) should sue those agencies on his behalf for his wrongful death in which they were enabling participants.

  • What can you expect? (Score:5, Informative)

    by OneHundredAndTen ( 1523865 ) on Monday May 15, 2017 @04:37PM (#54422145)
    The Sun. The Daily Mail. The Mirror. The only thing worse than them is Julius Streicher's Der Stürmer. Thanks, Rupert Murdoch, for the daily garbage.
  • Sounds like he didn't try too hard to hide his identity, depending on the newspapers' integrity to maintain privacy. Maybe instead he should have taken at least some of the steps Anonymous does to keep their identity secret.

    It's inevitable that the perps will go after him. Hopefully it'll only be electronic, not physical. He may never be able to own a computer or a credit card again.

    The sad thing is that this will serve, at least in part, to discourage other private white hats from publishing their works

  • Is it time to doxx everyone involved in the production and distribution of these tabloids?
    Alternatively, you could boycott anything printed by the same company that prints the tabloids so that they drop the tabloids as client. (printing presses are expensive)

    • Is it time to doxx everyone involved in the production and distribution of these tabloids?

      Sounds like a great idea. Go over to Reddit and get cracking...

      Alternatively, you could boycott anything printed by the same company that prints the tabloids so that they drop the tabloids as client. (printing presses are expensive)

      Excellent idea also. Boycott anyone who advertises in these three known garbage press outlets!

      Or hey, put the two ideas, above, together, and simply go kill them all (tabloidists) in their homes! Two birds with one stone, I say.

      • Or hey, put the two ideas, above, together, and simply go kill them all (tabloidists) in their homes!

        Whoa, dude. Killing people is way over the line.

        • Or hey, put the two ideas, above, together, and simply go kill them all (tabloidists) in their homes!

          Whoa, dude. Killing people is way over the line.

          softly, with his song.

          • Or hey, put the two ideas, above, together, and simply go kill them all (tabloidists) in their homes!

            Whoa, dude. Killing people is way over the line.

            softly, with his song.

            I see that my reference to the Roberta Flack song was too tangential to come across. Ah well, I was trying too hard to be clever...

            So, no, I do not advocate murdering tabloid "journalists". Despising them, yes. They get sued for libel often, and deservedly so, judging from their track record of losses in such cases.

            Here in LA, they cause traffic accidents by careering across multiple lanes to pursue a car going the opposite direction – just to get a photo. Their behavior led to some of the provisi

  • Maybe he'll get laid because of this!

  • If some citizens were to dox the editord, camp out on their lawns, shout constant inane questions and mob you, your friends an family at every opportunity.

    It would be 'in the public interest' for these schmucks to get a taste of their own. But that wouldnt stop the mass arrests.
  • Seriously though, a 22 year old wouldn't be that hard to google these days, even the ones that work in security. It's sad. Just say no to Facefarm.
  • As already noted, the line between "exposing bad guys" and "doxxing good guys" is very faint. I vote for people before principles.

Some people manage by the book, even though they don't know who wrote the book or even what book.

Working...