The security firm found evidence that it's been in use since May 2nd, though it could have been around as early as April 24th. It flew under everyone's radar because it's nowhere near as attention-grabbing as WannaCry, and it doesn't require people to know how to use Bitcoin. According Proofpoint exec Ryan Kalember, the miner's creators could've already earned over a million from its efforts. Meanwhile, the three Bitcoin wallets connected to WannaCry have only gotten payments equivalent to around $81,000. Proofpoint says that it expects more cyber criminals to use NSA's leaked tools in the future. If you want to protect your computers, make sure to install patches, keep Windows updated and don't use unlicensed software.