Photo: Getty/Twitter
Show Hide image

How a badly faked photo of Vladimir Putin took over Twitter

Plus: how to identify fake images online. 

Last week, the world’s eyes were on Vladimir Putin. As the Russian president sat down for his long-awaited meeting with Donald Trump during the G20 summit, the world held its breath. No one could look away. And nowhere was Putin’s pull better illustrated than in this viral photo of the leader, fixed with the rapt, almost adoring, gazes of Trump, Turkish president Recep Tayyip Erdogan, and Turkey’s foreign minister Mevlut Cavusoglu. If your average picture speaks a thousand words, this one spoke a million.

Or it would’ve – if it was real.

Over the weekend the picture spread across social media, accumulating hundreds of thousands of retweets and shares. Some users quickly pointed out the photo was faked and that Putin had been Photoshopped into an empty chair. Despite this, the picture continued to spread, with many making memes and jokes about a moment that never even happened.

It is not clear where the picture originated. @Hasavrat is a Turkish Twitter user who gained more than 15,000 retweets and 25,000 likes on her tweet of the picture on 8 July, which was captioned: “A Renaissance painting of our age”. She tells me she found the image on the “Turkish Twittersphere” and she doesn’t know who created it. “It was one of those feeds that does political satire and meme-type commenting – we call it #Goygoy in Turkish,” she explains.

One of the other earliest posts of the Photoshop was shared by the Russian journalist Vladimir Soloviev, who shared it on his Facebook page on 8 July and deleted it after it emerged it was fake. This has led to some claiming the picture was created and spread by the Russian media to showcase Putin’s power. In the picture, Angela Merkel has been Photoshopped so that it appears she is wearing a ribbon of Saint George, a Russian military decoration often worn as a symbol of support for the Russian government. Were the picture created by Russian government-sanctioned propagandists, you'd imagine the Photoshop would be infinitely better. 

Although the picture’s creator is currently unknown, it is clear different people spread the photo for different reasons.

“I didn't think it was real when I tweeted it,” @Hasavrat tells me, “I was very surprised and sort of regretted tweeting it at all.” She says she captioned the image with the words “of our age” because she was referring to the use of Photoshop, memes, and gifs in modern political discourse. Her intended audience were her Turkish Twitter followers, who she assumed would understand the joke.

“I did consider deleting it,” she says, “because I was noticing people were responding with ‘[it’s a] Photoshop’ non-stop, which is when it became apparent people thought it was real. I didn’t because I found it amusing, especially when journalists, MPs, think-tankers, etc started picking it up. People who I think really ought to know how to use Google Image search.

“Everyone has an inner troll, or at least I certainly do. I just muted the notifications on it.”

The fake picture continued to spread under joke captions, meaning many didn’t scrutinise its authenticity. Twitter user @ParkerMolloy shared the picture with the lyrics from the 1978 musical Grease, riffing off a scene in which the Pink Ladies surrounded the main character, Sandy. Molloy gained tens of thousands of retweets on the image, but deleted it on 10 July. “People seem to think I was trying to pass it off as real, so I deleted it,” she wrote.

On 9 July, Twitter users began sharing the news the photo was fake. Evan McMurry, a media editor at ABC, gained 13,500 retweets on his tweet showcasing the Photoshop and the original image. Earlier in the day, BuzzFeed editor Matthew Champion gained nearly 600 retweets when he shared the news. It has long been apparent that debunking posts don’t go anywhere near as viral as the fake posts themselves, and this incident seems no exception. Though McMurry’s tweet gained more shares than traditional debunks, there are still many online unaware that the picture is faked.

In 2012, academics found that 86 percent of fake images about Hurricane Sandy were spread through retweets, not original tweets. You don’t have to save and re-upload a fake image to be complicit in the damage they cause. To help you avoid this, the New Statesman has created a comprehensive guide to identifying fake images.

Amelia Tait is a technology and digital culture writer at the New Statesman.

Show Hide image

Marcus Hutchins: What we know so far about the arrest of the hero hacker

The 23-year old who stopped the WannaCry malware which attacked the NHS has been arrested in the US. 

In May, Marcus Hutchins - who goes by the online name Malware Tech - became a national hero after "accidentally" discovering a way to stop the WannaCry virus that had paralysed parts of the NHS.

Now, the 23-year-old darling of cyber security is facing charges of cyber crime following a bizarre turn of events that have left many baffled. So what do we know about his indictment?


Hutchins, from Ilfracombe in Devon, was reportedly arrested by the FBI in Las Vegas on Wednesday before travelling back from cyber security conferences Black Hat and Def Con.

He is now due to appear in court in Las Vegas later today after being accused of involvement with a piece of malware used to access people's bank accounts.

"Marcus Hutchins... a citizen and resident of the United Kingdom, was arrested in the United States on 2 August, 2017, in Las Vegas, Nevada, after a grand jury in the Eastern District of Wisconsin returned a six-count indictment against Hutchins for his role in creating and distributing the Kronos banking Trojan," said the US Department of Justice.

"The charges against Hutchins, and for which he was arrested, relate to alleged conduct that occurred between in or around July 2014 and July 2015."

His court appearance comes after he was arraigned in Las Vegas yesterday. He made no statement beyond a series of one-word answers to basic questions from the judge, the Guardian reports. A public defender said Hutchins had no criminal history and had previously cooperated with federal authorities. 

The malware

Kronos, a so-called Trojan, is a kind of malware that disguises itself as legitimate software while harvesting unsuspecting victims' online banking login details and other financial data.

It emerged in July 2014 on a Russian underground forum, where it was advertised for $7,000 (£5,330), a relatively high figure at the time, according to the BBC.

Shortly after it made the news, a video demonstrating the malware was posted to YouTube allegedly by Hutchins' co-defendant, who has not been named. Hutchins later tweeted: "Anyone got a kronos sample."

His mum, Janet Hutchins, told the Press Association it is "hugely unlikely" he was involved because he spent "enormous amounts of time" fighting attacks.


Meanwhile Ryan Kalember, a security researcher from Proofpoint, told the Guardian that the actions of researchers investigating malware may sometimes look criminal.

“This could very easily be the FBI mistaking legitimate research activity with being in control of Kronos infrastructure," said Kalember. "Lots of researchers like to log in to crimeware tools and interfaces and play around.”

The indictment alleges that Hutchins created and sold Kronos on internet forums including the AlphaBay dark web market, which was shut down last month.

"Sometimes you have to at least pretend to be selling something interesting to get people to trust you,” added Kalember. “It’s not an uncommon thing for researchers to do and I don’t know if the FBI could tell the difference.”

It's a sentiment echoed by US cyber-attorney Tor Ekeland, who told Radio 4's Today Programme: "I can think of a number of examples of legitimate software that would potentially be a felony under this theory of prosecution."

Hutchins could face 40 years in jail if found guilty, Ekelend said, but he added that no victims had been named.

This article also appears on NS Tech, a new division of the New Statesman focusing on the intersection of technology and politics.

Oscar Williams is editor of the NewStatesman's sister site NSTech.