Child hackers are increasingly young, and many experts believe parents are unaware of the true extent of this emerging threat. The alarm bells ring louder as children as young as seven are being referred to Britain's national cybercrime intervention program, known as the Money team, during a period when major companies are suffering from multi-million-pound security breaches. This finding reveals a disturbing trend: the average age of individuals referred to Cyber Choices—an initiative aimed at those involved or contemplating entry-level cybercrimes—is just 15, with the youngest merely seven years old, according to the National Crime Agency (NCA). This upward trend in referrals, mostly involving gamers aged 10 to 16, coincides with a dramatic surge in insurance payouts to hacked businesses across the UK—an increase of 230%.
A former hacker, Ricky Handschumacher, who began hacking in a video game at the age of 15 and later served four years in federal prison for cryptocurrency theft totaling $7.6 million, emphasizes how today's youth are more vulnerable than ever. "I was around that age when I started," he shares, pointing out that the mainstream acceptance of hacking and cybercrime makes young people more exposed.
Now 32, Handschumacher is among two high-profile crypto hackers warning exclusively to Money that teenagers are increasingly following the same risky path. "It seems to be growing more and more, and there's no sign of it stopping," he asserts from Florida.
In the Context of Widespread Cyber Attacks
Recent large-scale cyberattacks highlight Britain’s vulnerability. For example, in April, Marks & Spencer suffered a cyber incident costing them approximately £136 million, which temporarily shut down their online services. Similarly, the Co-op experienced a data breach that compromised information from 6.5 million customers, and Jaguar Land Rover had to halt operations at several factories for five weeks, causing an estimated disruption cost of £1.9 billion. Transport for London faced months of operational chaos due to cyber disruptions, and the nursery chain Kido was targeted with ransomware. Alarmingly, teenagers and young adults are suspected in all these high-profile cases.
The Gaming Route to Cybercrime
Gaming platforms serve as a significant gateway into the darker world of cybercrime. According to Broadbent, a senior officer at the NCA's National Cyber Crime Unit, approximately 97% of children aged 8 to 17 participate in gaming, making it a natural stepping stone for those curious or inclined toward hacking. Both Handschumacher and Joseph Harris—who was jailed for stealing $14 million in cryptocurrency at age 28—started their hacking journeys through childhood games. Harris’s first hacking experience at age 12 involved Club Penguin, a popular kids’ game featuring a penguin navigating an icy world. He discovered a bug in the game that allowed him to access rare items—some worth thousands of dollars—and soon began exploiting this flaw by impersonating others’ accounts through social engineering.
His fascination grew as he watched tutorials and realized he could sell accounts for thousands of dollars, which became his primary income at age 13. Harris admits, however, that the real thrill was the achievement and recognition from online communities. His diagnosis of ADHD contributed to intense hyper-focus on hacking topics, making the activity highly engaging.
Neurodiversity and the Culture of Hacking
Some research suggests a link between neurodiversity—such as traits associated with autism—and hacking ability. Between 2017 and 2020, approximately 17% of individuals referred to UK cybercrime prevention programs had autistic traits, far above the general population rate of 1–2%. Nonetheless, Professor John McAlaney cautions against stereotyping, emphasizing that hackers are not just socially isolated loners but often find a sense of belonging within supportive online communities. These forums can provide camaraderie and validation, especially for those who feel misunderstood offline.
The Social Side of Cybercrime
Joseph Harris found refuge in hacking forums, where gaining recognition for stolen or compromised accounts was rewarding. He reports earning around $2,000 monthly through account sales, boosting his confidence and sense of achievement. Broadbent highlights that many young hackers are often isolated, sitting alone in their rooms and seeking community and acknowledgment online. Their involvement can be driven more by curiosity, the desire to challenge themselves, or to earn respect among peers, rather than solely financial gain.
A Wide Spectrum of Hacker Profiles
Not all hackers fit into a single mold. Handschumacher, once a student baseball star and avid gamer, encountered hacking through a DDoS attack during multiplayer gaming. Like others in the Cyber Choices program, he began with small-scale exploits such as stealing social media accounts—mainly motivated by the desire to flex or impress friends—rather than financial gain. Interestingly, his first foray into hacking was driven by curiosity—not malice—believing that online activities were less harmful because they didn't involve physical contact.
From there, the path into more serious crime cascaded. Handschumacher’s and Harris’s journeys intersected as they expanded into cryptocurrency theft, exploiting software vulnerabilities, and credit card scams. Both eventually faced law enforcement, with Harris being sentenced to 16 months and Handschumacher serving 27 months for various cybercrimes.
The Growing Gap in Cybersecurity Skills and Opportunities
The rise in juvenile hacking coincides with a global shortage of cybersecurity professionals—about four million jobs remain unfilled worldwide, with most organizations feeling the pinch of skills gaps. Initiatives like The Hacking Games (THG) aim to channel this talent into legitimate careers by recognizing skills developed through gaming rather than traditional academic credentials. They advocate for alternative recruitment methods, such as assessing gaming skills and problem-solving abilities, and plan to organize esports tournaments to showcase hacking talent.
Encouraging Ethical Hacking and Financial Incentives
For many young hackers, bug bounty programs offer a legal and ethical way to utilize their skills. These programs reward individuals who find and report vulnerabilities in corporate systems—although the payout amounts are often modest compared to the potential gains from illicit activities. Harris points out that some bug bounties amount to only a few thousand dollars even for critical flaws, which might not be enough to dissuade teenagers aiming for larger payoffs. He suggests higher rewards could entice more talented youth to work ethically.
So, what’s the takeaway? Are we effectively safeguarding our children from the lure of cybercrime, or are existing efforts and awareness campaigns enough to redirect these talents toward positive outlets? The debate is open, and your voice matters. Do you believe the current approach adequately addresses this issue, or is it time for a fundamental rethink? Share your thoughts in the comments below.
