AI in Cybersecurity: From WannaCry to Building Your First Phishing Detector
- BetterMind Labs
- Jun 11
- 4 min read
Updated: Aug 5
How a 10$ Kill Switch Saved the World: AI and the Fight Against Malware & Phishing
The Day the World Froze: May 12, 2017
On May 12, 2017, the world paused. Banks, stock markets, hospitals, government offices—more than 200,000 computers across 150 countries became useless overnight. From FedEx to Honda, Nissan, and the UK’s National Health Service (NHS), even global giants were scrambling. Ambulances were rerouted, patient data vanished, and millions were lost every minute.
The culprit? A cryptic digital invader: WannaCry.
The Anatomy of WannaCry
WannaCry was a worm-type ransomware that spread like wildfire through Windows machines using a vulnerability known as EternalBlue, an exploit leaked by a mysterious hacking group called The Shadow Brokers. This group had been releasing powerful cyberweapons from U.S. intelligence arsenals into the wild since 2016.
The name “WannaCry” reportedly came from the malware’s internal file strings—hinting at the emotional pain of its victims.
As systems encrypted and ransom notes popped up, a strange twist brought unexpected relief. Marcus Hutchins, a security researcher, discovered a peculiar domain hardcoded into the malware: iuqerfsodp9ifjaposdfjhgosurijfaewrwergwea.com. The domain was unregistered. Out of curiosity—and luck—he registered it for $10.69.
That act inadvertently triggered a kill switch, stopping WannaCry’s execution wherever it attempted to ping the now-active domain. While it didn't undo damage, it stopped the spread.
Estimated damages? Over $4 billion globally, all because of a tiny .kb-sized file.
How Attackers use AI in Cyber Attacks
The WannaCry crisis set the stage for a new era in digital warfare. Fast forward to the Fifth Industrial Revolution, where AI is being used on both sides of the cyber battlefield.
As per Morgan Stanley, attackers are using AI to:
Write highly convincing phishing emails with generative models
Evade detection by mutating malware signatures
Scan and exploit vulnerabilities at machine speed
Launch voice cloning and deepfake scams to bypass security layers
Meanwhile, defenders are striking back with AI-powered solutions:
IBM is safeguarding hybrid cloud environments using AI that adapts in real time to threat behavior.
CrowdStrike combines threat intelligence with AI to provide predictive protection, catching threats before they strike.
From WannaCry to Action: How a High Schooler Is Fighting Cybercrime
When a student at BetterMind Labs learned how much damage the WannaCry attack had caused, he knew he had to do something. So, he decided to build a phishing URL detector, from the ground up.
Week 1: The Spark
After discovering how WannaCry shut down systems around the world, a high school student at BetterMind Labs asked himself:
“What if I could stop something like that?”
That question sparked everything. His curiosity, problem-solving mindset, and love for coding were the perfect starting point for a real-world AI project.
Week 2: Learning with Mentors & Teammates
We connected him with experienced mentors and a team of students who were just as excited to build. Inside our AI/ML program, they shared ideas, gave each other feedback, and worked side by side to bring the project to life.
Week 3: Building with AI
With support from the team, he learned how to:
Use NLP to scan email content for red flags
Apply TF-IDF to spot suspicious patterns in URLs
Train models like Logistic Regression and Decision Trees to detect phishing links
Everything was hands-on—with real datasets and real results.
Week 4: Turning It Into a Tool
He put it all together into a simple Chrome extension that flags risky links in real time.
It wasn’t just a class project anymore—it became something that could help protect people from real online threats. Want to see how it works? Watch the full project explanation video here.
5 AI + Cybersecurity Projects for High School Innovators
Want to try something like that? Here are 5 impactful beginner-friendly ideas:
AI-Based Phishing Email Classifier – Train a model using spam/ham datasets to flag suspicious content.
URL Safety Scorer – Build a tool that scores URLs based on domain trust, SSL, and content.
Voice Scam Detector – Use voice AI to spot deepfakes or cloned voices.
Intrusion Detection System (IDS) – Use AI to monitor traffic patterns and flag anomalies.
Password Strength Predictor – Create a model that evaluates password safety using past breach data.
Each of these projects can be built in teams of 1–3 with the right mentorship, guidance, and tools—just like we do at BetterMind Labs.
Ready to Build Real AI Projects?
AI in cybersecurity isn’t optional anymore—it’s the front line. If you're a high schooler who wants to do more than just learn about threats—but actually stop them—then this is your call to action.
Our AI/ML internship at BetterMind Labs is designed to help students build real projects with real-world mentors.
Whether it’s phishing defense or anomaly detection, it’s time for your first contribution to global safety.
Let’s build the future. Securely. Together.
Relevant Links
What is AI for Cybersecurity? – Microsoft
What is WannaCry Ransomware? – Akamai
Advanced Phishing Detection Using AI Techniques – NCS
AI-Based Malware Detection – ManageEngine Academy
Introduction to AI for Cybersecurity – Coursera
Top Cybersecurity Projects for Beginners – Great Learning
Comments