In 2017, a cyberattack called WannaCry spread across the world like wildfire. It locked up hospitals, banks, and even train stations. While experts rushed to contain the chaos, one young man quietly discovered a secret switch that stopped it all. His name was Marcus Hutchins. People praised him as a hero. But just a few months later, he was arrested. Why? Because of a dark secret from his past.
This is the true story of how one man saved the internet, then nearly lost everything.
Fast Facts
- Who: Marcus Hutchins, British cybersecurity expert known as MalwareTech
- What: Found a hidden kill switch that stopped the global WannaCry ransomware attack
- When: May 2017 (global viral event); arrested later that year in the U.S.
- Twist: Faced jail for earlier involvement in creating banking malware (Kronos)
- Today: Works in malware research and cybersecurity education
The Hero Nobody Saw Coming
Marcus Hutchins was just 22 years old when the WannaCry ransomware struck. Born in a small town in Devon, England, Marcus was a self-taught hacker. He had been fascinated by computers since childhood. Using the online name MalwareTech, he worked as a malware researcher and analyst. By day, he studied viruses. By night, he posted blogs about his discoveries.
On May 12, 2017, a powerful ransomware began spreading fast. It locked users out of their computers and demanded money to unlock them. It hit over 300,000 computers in more than 150 countries, including critical systems in the UK’s National Health Service (NHS).
How Marcus Stopped WannaCry With One Website
Marcus was analyzing the code behind WannaCry when he noticed something odd. The malware was trying to connect to a strange website address. It was long and random, like gibberish. No one had registered it yet. On a hunch, Marcus quickly bought the domain name for a few dollars. That simple act triggered the kill switch hidden inside the malware.
Once the malware reached the active website, it shut down. The virus stopped spreading.
“I did not know at the time that registering the domain would stop the malware.”
Marcus later said in an interview.
In just a few hours, Marcus went from anonymous blogger to global hero. News sites praised the mysterious figure who had saved millions of computers. On Reddit and Twitter, tech fans called him “the accidental hero.”
The Confessions of Marcus Hutchins, the Hacker Who Saved the Internet
byu/MyNameIsGriffon intechnology
But Then the FBI Showed Up
While Marcus was attending a hacker conference in Las Vegas later that year, the FBI arrested him. The charge had nothing to do with WannaCry. Instead, it came from something he had done as a teenager. Marcus had helped create and sell a type of malware called Kronos. This malware was used to steal banking information. It had been sold on the dark web in 2014 and 2015.
Marcus had moved on from those days. But the law had not forgotten.
In court, Marcus admitted what he had done. He pled guilty to two charges but showed deep regret. The judge considered his age at the time and the fact that he had saved so many people.
Instead of prison, Marcus was sentenced to time served and one year of supervision. The judge said, “You turned a corner. That makes a difference.”
read more : Meet the World’s Most Wanted Hacker Who Once Broke Into Systems and Later Helped Secure Them
From Mistakes to Redemption
Not everyone agreed with the decision. Some people thought Marcus should have gone to jail. Others believed he had truly changed.
Cybersecurity expert Brian Krebs supported the court’s ruling, saying,
“We need to encourage the reformed hackers who use their skills to stop threats, not punish them for being young and stupid.”
Since then, Marcus has returned to security research. He still writes and teaches others how to understand malware. His story is a powerful lesson. It shows how someone can rise above their past and do good, even after serious mistakes.
What Can We Learn From Marcus Hutchins?
Marcus’s story is not just about viruses and computers. It is about the human side of hacking. He made bad choices as a teenager. But he also made one of the most important discoveries in internet history.
Here are three things his story teaches us:
- Redemption is real
People can change, grow, and make amends for their past. - Curiosity can save the world
Marcus was not trying to be a hero. He was curious. That curiosity saved lives. - The internet remembers everything
What you do online, even years ago, can come back later in life.
Can You Do What Marcus Did?
Stopping a virus like WannaCry is not easy. Marcus had years of experience in malware analysis. But if you’re curious about cybersecurity, there are places to start:
- TryHackMe.com – Great for beginners to learn hacking safely
- HackTheBox.com – Practice cybersecurity challenges
- Cybrary.it – Free online courses in cybersecurity
These platforms teach real skills in a safe and legal way. Marcus himself has shared resources and breakdowns on his blog to help others learn.
Why This Story Still Matters
Today, ransomware is still a serious threat. New attacks happen every year. That makes Marcus’s story more relevant than ever. It reminds us that:
- Heroes can come from unexpected places
- The line between good and bad in tech is not always clear
- Redemption stories matter, especially in a world that rarely gives second chances
Final Thoughts
Marcus Hutchins did something no one else could do at the time. He stopped a global cyberattack from inside his bedroom. But he also had to face the consequences of his past. His story is not perfect, but it is powerful. It shows that people can grow, mistakes can be forgiven, and even the geeky kid behind the keyboard can become a quiet hero.