Kevin Mitnick

From Wikipedia, the free encyclopedia

The neutrality or factuality of this article or section may be compromised by weasel words.
You can help Wikipedia by improving weasel-worded statements
.
The neutrality of this article is disputed.
Please see the discussion on the talk page.
Kevin Mitnick
Kevin Mitnick

Kevin David Mitnick (born August 6, 1963) is a computer security consultant and convicted computer hacker. Mitnick served five years in prison (four and a half years of it of it pre-trial [1]), 8 months of that in solitary confinement, and was released on January 21, 2000. During his supervised release, which ended on January 21, 2003, he was initially restricted from using any communications technology other than a landline telephone. After fighting this decision in court, the judge ruled in favor of Mitnick, and when Mitnicks supervised part of his release ended this allowed him to access the Internet.

Contents

[edit] Skills

[edit] Social Engineer

[edit] Definition

|Social Engineer[ing] – [one who applies the findings of social science to the solution of |actual social problems.  
|--------------------------------------------------------------------------------
|[Origin: 1895–1900] 
|
|Dictionary.com Unabridged (v 1.1)
|Based on the Random House Unabridged Dictionary, © Random House, Inc. 2006. 

Kevin Mitnick began social engineering or perhaps discovered his first engineerible situation the age of 12. He realized could bypass the punchcard system used for the Los Angeles bus system, by buying himself his own punch, get free bus rides anywhere in the greater LA area. Social engineering became his primary method of obtaining information, whether it be usernames, passwords, modem phone numbers, anything that would have been useful in whatever mark he was working on.

[edit] Non-Computer Hacking

In high school, he was introduced to phone phreaking.

[edit] Definition

|Phone Phreak – noun a person who uses computers or other electronic devices to place long-|distance telephone calls without paying toll charges.  
|
|Also called phreak.
--------------------------------------------------------------------------------
|[Origin: 1975–80] 
|
|Dictionary.com Unabridged (v 1.1)
|Based on the Random House Unabridged Dictionary, © Random House, Inc. 2006. 

[edit] Computer Hacking

Mitnick broke into his first computer network in 1979, when a friend gave him the phone number for the Ark, the computer system at Digital Equipment Corporation (DEC) used for developing their RSTS/E operating system software. He broke into DEC's systems and stole DEC's software, for which he was later convicted. This was the first of a series of run-ins with the law.

[edit] Downfall

Kevin Mitnick would change his identity by exploiting how the identification system worked in the United States. He would obtain the birth certificates of recently deceased newborns and very young children (around the ages of 1 to 3 years old), as the government had no distinct record of their death since they never worked nor were involved in society. Furthermore, the certificates would have to be from someone who was, for example, born in Washington and died in California, as it was more difficult to trace back to the original source. He changed his identity about three or four times, any time he changed jobs. He claimed to have learned most of this information through a book by the title of Paper Trail, written by Barbara Snow Gilbert.(ISBN 1-886910-44-8) Mitnick was arrested after the FBI obtained a search warrant, searched his house, and found his wallet with numerous fake ID's. Although he was caught in an accident, by having the fake identification still in his possession, once out of jail, he was able to evade the FBI and police for a relatively large amount of time.

[edit] Controversy

Kevin Mitnick's criminal activities, arrest, and trial were controversial.

The core of the controversy came from two books that presented views that were at odds with one another: John Markoff and Tsutomu Shimomura's Takedown, and Jonathan Littman's The Fugitive Game. In particular, Littman made allegations of journalistic impropriety against Markoff, of overzealous prosecution of Mitnick by the government, of mainstream media over-hyping of Mitnick's actual crimes, and of the legality of Shimomura's involvement in the matter. Further controversy came over the release of the movie Takedown, with Littman alleging that portions of the film were taken from his book without permission.

The case against Mitnick tested then-nascent laws that had been enacted for dealing with computer crime, and it raised public awareness of security issues involving networked computers. The controversy remains, however, as Mitnick is often used today as an example of the quintessential computer criminal although his exploits are less notable than his notoriety suggests.

Furthermore, supporters of Mitnick assert that many of the charges against him were fraudulent[1] and not based on actual losses.[2] A lot of the hype surrounding Mitnick's exploits were media sensationalism; For example, many believe that Mitnick was once in the FBI's most wanted list. This is actually a myth. Federal prosecuter Kent Walker said in an interview to the New York Times: "He (Mitnick) was arguably the most wanted computer hacker in the world, he allegedly had access to corporate trade secrets worth millions of dollars. He was a very big threat".[3] The headline of the resultant article, "A Most-Wanted Cyberthief Is Caught in His Own Web," was later picked up by Associated Press, Time Magazine and Reuters, thus perpetuating the myth. Mitnick has alleged that at one time he was held in solitary confinement for 8 months because his girlfriend Suzy Thunder told authorities Mitnick could cause a nuclear attack by whistling into a phone. He was refused access to a phone because of this.[4]

While Mitnick's actual actions may not have justified the level of official concern they did, the fact that his activities were criminal is not disputed. Mitnick's first adult criminal sentence was considerably shorter than is the norm today. His second adult criminal sentence was typical for a second offense committed while on probation.

The film Freedom Downtime, a documentary that centers on the topics of Kevin Mitnick's incarceration in a maximum security prision, Miramax's film's screen adaptation of Takedown, and the "FREE KEVIN" movement, was made in 2001 by Emmanuel Goldstein and produced by 2600 Films in 2006.

[edit] Attacks on Mitnick's sites

On August 20, 2006, Kevin Mitnick's site was defaced by Pakistani hackers with offensive messages against him. The domain names defensivethinking.com, mitsec.com, kevinmitnick.com and mitnicksecurity.com displayed the vandalism for hours before the affected files were replaced.

Mitnick commented:

The Web hosting provider that hosts my sites was hacked, fortunately, I don't keep any confidential data on my Web site, so it wasn't that serious. Of course it is embarrassing to be defaced—nobody likes it.

As a notorious figure Mitnick is a good target for hackers who wish to bolster their status and for people seeking to prove their abilities.[5] Also, sites supporting Mitnick have proven to be targets too, as evidenced by an attack three years earlier to one such site.[citation needed]

Zone-H reports that in one occasion, there was a struggle between different black hat and white hat hackers when some defacers put their nicks on Mitnick's site and fans who were replacing the vandalized copy with an original unmodified one. This went on for a full day.[6]

[edit] Recent activity

  • Mitnick offers security consulting services through his company Mitnick Security Consulting, LLC and has co-authored two books on computer security. The books are The Art of Deception (2002), which focuses on social engineering, and The Art of Intrusion (2005), focusing on real stories of security exploits.
  • He has also co-authored (with Alexis Kasperavicius) a social engineering prevention training course and certification: CSEPS.
  • On Aug 20, 2006, A Syrian editor, Nidal Maalouf, accused Mitnick of stealing his domain name (Syria-news.com), He falsely claimed that Mitnick is the FBI's No.1 wanted person for illegal acts against a number of internet sites. Maalouf was interviewed by the local newspaper "Bourses & Markets", and the interview was quoted by Al-Ayham Saleh on his personal website.[7]
  • Mitnick usually makes semiannual appearances on the popular late night radio show Coast to Coast AM. Mitnick has also hosted the show with interviews including Steve Wozniak (on April 30, 2006).
  • Kevin Mitnick has been invited to be a speaker at many events. He was the keynote speaker at the IAPP (International Association of Privacy Professionals) Privacy Academy in Las Vegas, October, 2005, Kevin Mitnick was also a speaker at the National Youth Leadership Forum on Technology in San Jose, CA, in the summer of 2004 as well as a keynote speaker at The Fifth H.O.P.E. in New York, NY, July, 2004. One of his first appearances was at ITESM Monterery Tec, on February 2003 where he was also the keynote speaker, and spoke to a sellout at the campu's auditorium, Auditorio Luis Elizondo. He was scheduled to speak at the sixth H.O.P.E. in 2006, but was unable to attend after becoming ill while vacationing in Colombia.
  • Kevin Mitnick was a "surprise guest" in the 40th TWiT podcast when, while in Las Vegas for a conference, he ran into Steve Wozniak at a table outside a Starbucks coffee store. Wozniak was on the line with fellow TWiT hosts via Skype on his notebook computer, and Mitnick remained with Wozniak for much of the remainder of the show.
  • Kevin Mitnick appeared on "Thebroken", an online videozine marketing itself as 'borderline legal.' He appeared on the third episode of the show, but was given mention in the first.
  • Mitnick guest starred in a first season episode of Alias. The casting was an in-joke, since Mitnick played a CIA hacker. Due to the conditions of his parole, however, the computer he used in the scene was a prop.
  • Kevin Mitnick has recently appeared on the South African actuality programme "Carte Blanche".
  • On 2 March 2007, the WELL declined his application for admission, refunding his membership fee. [2][3]
  • Kevin Mitnick now resides in Las Vegas, Nevada.

[edit] In popular culture

  • Mitnick is referenced by a fictional radio caller in the video game Grand Theft Auto III. The crazy caller rants and raves about the National Security Agency's ECHELON system and government conspiracies. At the end, he is asked if he wants to say anything else and answers "yes", and then shouts "FREE KEVIN!", but is immediately cut off. "Free Kevin" is a reference to the controversy over Mitnick's trial and incarceration.
  • Kevin Mitnick is mentioned in episode 18 of the anime "Black Lagoon".
  • The video game "Vampire: The Masquerade - Bloodlines" features a Nosferatu hacker named Mitnick.
  • Mitnick is played by actor Skeet Ulrich in the movie Takedown.
  • Mitnick's voice can be heard in the video game "Grand Theft Auto: San Andreas". During WCTR's "Area 53" conspiracy theory show, an unnamed caller talks about being kept in solitary confinement for 8 months because 'I can launch nuclear missiles by just whistling into a phone!'. The caller is none other than Kevin Mitnick himself. The host of the show, Marvin Trill, asks if the caller can blow up all the other radio stations in town, to which Mitnick replies 'Hey, I don't do that anymore. I only use my powers for good.'.

[edit] References

[edit] See also

[edit] External links