A 21-year-old Kentucky man who previously admitted to creating and selling a "remote access trojan" (RAT) known as LuminosityLink has been
sentenced to 30 months in federal prison. Colton Grubbs had previously pleaded guilty to conspiracy to unlawfully accessing computers in the furtherance of a criminal act, among other crimes.
When Grubbs was first charged, he claimed LuminosityLink was a legitimate tool for system administrators, and he never intended for it to be used maliciously. He reversed course in a plea agreement he signed in July 2017. In that document, he admitted for the first time that he knew some customers were using the software to control computers without owners' knowledge or permission. Grubbs also admitted emphasizing a wealth of malicious features in marketing materials that promoted the software.
The malicious features included the ability for LuminosityLink to be installed without notification, record key presses, surveil targets using their computer cameras and microphones, view and download computer files, steal names and passwords used to access websites, use infected computers to mine digital currencies, use victim computers to launch DDoS attacks, and prevent anti-malware software from detecting and removing the software.
He sold this software for $40 a pop to more than 6,000 people globally.
"Our modern society is dependent on computers, mobile devices, and the use of the Internet," Robert M. Duncan Jr., United States Attorney for the Eastern District of Kentucky, said in a Monday statement. "People simply have to have confidence in their ability to use these modern instruments to transact their business, privately communicate, and securely maintain their information."
Grubbs was also ordered to forfeit the money he made from his crimes, including 114 bitcoins, currently worth approximately $725,000