Marcus Hutchins, the “MalwareTech” researcher who helped to find a kill switch for the infamous ransomware, was arrested on his way home from a security conference last August.
At the time he was accused of helping to author the Kronos banking Trojan.
Now he’s been charged with also developing and distributing UPAS Kit, a “modular HTTP bot” designed to install on victims’ machines without alerting AV tools.
“UPAS Kit allowed for the unauthorized exfiltration of information from protected computers,” court documents claim. “UPAS Kit used a form grabber and web injects to intercept and collect personal information from a protected computer.”