Brit teen accused of running malware factory and helpdesk for crims

Lad cuffed after worldwide manhunt leads cops to parents' home in Stockport, UK

By Iain Thomson in San Francisco

Posted in Security, 5th July 2017 19:12 GMT

A British teenager is accused of flogging and supporting malware used to launch distributed denial-of-service attacks against top multinationals.

Jack Chappell, 18, from Stockport in Cheshire, appeared before Manchester magistrates on Tuesday charged with impairing the operation of computers under the UK's Computer Misuse Act, encouraging or assisting an offense, and money laundering crime proceeds. An unnamed US citizen has also been charged.

In a statement, West Midlands police said Chappell allegedly developed and sold malware designed to knock victims' systems offline, and ran an online helpdesk for criminals using the software nasty. Such malware-as-a-service offerings are becoming increasingly common online.

The code allegedly built by Chappell was apparently used in attacks against cellphone networks T‑Mobile, EE, Vodafone and O2 in the UK, as well as strikes on the BBC, BT, Amazon, Netflix, Virgin Media and the National Crime Agency.

"None of the denial of service attacks Chappell is alleged to have been behind led to the theft or loss of any customer data," the cyber-plod said.

Attacking the UK's National Crime Agency is the online equivalent of kicking a hornet's nest. Officers launched an international investigation involving police forces, the FBI, Israeli Police, and Europol's European Cybercrime Centre. Chapell was arrested at his parents' home.

The teen spoke only to confirm his name and address during this week's court hearing. The case will begin later this month. ®

Sign up to our NewsletterGet IT in your inbox daily

26 Comments

More from The Register

Trend Micro AV nukes innocent Sharepoint code, admins despair

Servers fall over after JavaScript file trashed by mistake

North Korea's antivirus software whitelisted mystery malware

'SiliVaccine' uses ancient, stolen, Trend Micro AV engine and bad home-brew crypto

World's biggest DDoS-for-hire souk shuttered, masterminds cuffed

Webstresser.org taken down by Europol plod and chums

Kaspersky: Clumsy NSA leak snoop's PC was packed with malware

Lab suspects Chinese spyware was on home computer

Mini-Heartbleed info leak bug strikes Apache, airborne malware, NSA algo U-turn, and more

Roundup The security week in review

Trend Micro: Internet scum grab Let's Encrypt certs to shield malware

Updated Angler kit served via compromised HTTPS websites

Patch out for 'ridiculous' Trend Micro command execution vuln

Password Manager, Maximum Security and Premium Security are all at risk

7 NSA hack tool wielding follow-up worm oozes onto scene: Hello, no need for any phish!

Why can't you be like a cheerful HHGTTG dolphin overlord?

World's biggest DDoS attack record broken after just five days

Memcached attacks are going to be this year's thing

Russian malware harvesting Telegram Desktop creds, chats

Python programmer may have outed himself on YouTube