--- title: "Life & Times of Kevin Mitnick, The World's Most Wanted Hacker | Phish Protection" description: "Life & Times of Kevin Mitnick, The World" image: "https://phishprotection.com/images/og-default.png" canonical: "https://phishprotection.com/kevin-mitnick/" --- # Life & Times of Kevin Mitnick, The World's Most Wanted Hacker ## Life & Times of Kevin Mitnick, The World’s Most Wanted Hacker [Get Free Access to Phishing Protection Best Practices ](#) ![Mitnick Kevin Tech Overlay](https://media.mailhop.org/phishprotection/images/2019/04/mitnick-kevin-tech-overlay.jpg) ### Life Snapshot Kevin Mitnick, “The World’s Most Famous Hacker,” was born in Los Angeles, CA in 1963\. In the late 80s and early 90s, Mitnick used social engineering to hack the computer systems of various companies. According to his[ Wikipedia page](https://en.wikipedia.org/wiki/Kevin%5FMitnick), in 1999, Mitnick pleaded guilty to four counts of wire fraud, two counts of computer fraud and one count of illegally intercepting a wire communication. He would go on to serve five years in prison followed by three years of supervised release during which time he was forbidden to use a computer. Today Mitnick runs[ Mitnick Security Consulting LLC](https://www.mitnicksecurity.com/), a computer security consultancy and is part owner of[ KnowBe4](https://www.knowbe4.com/), a provider of security awareness training, that also provides [anti phishing software](/content/anti-phishing-software-block-harmful-attacks/) like PhishProtection.com. He does computer security consulting and penetration testing for Fortune 500 companies as well as the FBI. > #### ”At the end of the day, my goal was to be the best hacker.”, Kevin Mitnick ``` **Did you know, ** Kevin Mitnick is the radio station voice in the 2004 video game Grand Theft Auto: San Andreas. ``` ### Kevin’s Books [![Mitnicks Book Art Of Deception](https://media.mailhop.org/phishprotection/images/2019/04/Mitnicks-Book-art-of-deception.jpg)](https://www.amazon.com/Art-Deception-Controlling-Element-Security/dp/076454280X/ref=sr%5F1%5F1?crid=3AL9CL8T0M55O&keywords=the+art+of+deception&qid=1555399513&s=gateway&sprefix=the+art+of+de%2Caps%2C319&sr=8-1) --- [The Art of Deception](https://www.amazon.com/Art-Deception-Controlling-Element-Security/dp/076454280X/ref=sr%5F1%5F1?crid=3AL9CL8T0M55O&keywords=the+art+of+deception&qid=1555399513&s=gateway&sprefix=the+art+of+de%2Caps%2C319&sr=8-1) [![Mitnicks Book Art Of Intrusion](https://media.mailhop.org/phishprotection/images/2019/04/Mitnicks-Book-art-of-intrusion.jpg)](https://www.amazon.com/Art-Intrusion-Exploits-Intruders-Deceivers/dp/0471782661/ref=sr%5F1%5F1?crid=3VIB504FEUQ7R&keywords=the+art+of+intrusion&qid=1555399772&s=gateway&sprefix=the+art+of+intr%2Caps%2C322&sr=8-1) --- [The Art of Intrusion](https://www.amazon.com/Art-Intrusion-Exploits-Intruders-Deceivers/dp/0471782661/ref=sr%5F1%5F1?crid=3VIB504FEUQ7R&keywords=the+art+of+intrusion&qid=1555399772&s=gateway&sprefix=the+art+of+intr%2Caps%2C322&sr=8-1) [![Mitnicks Book Ghost In The Wires](https://media.mailhop.org/phishprotection/images/2019/04/Mitnicks-Book-ghost-in-the-wires.jpg)](https://www.amazon.com/Ghost-Wires-Adventures-Worlds-Wanted/dp/0316037729/ref=sr%5F1%5F1?crid=3U8Q3KPY4HO3&keywords=ghost+in+the+wires&qid=1555399702&s=gateway&sprefix=ghost+in+the+wir%2Caps%2C320&sr=8-1) --- [Ghost in the Wires](https://www.amazon.com/Ghost-Wires-Adventures-Worlds-Wanted/dp/0316037729/ref=sr%5F1%5F1?crid=3U8Q3KPY4HO3&keywords=ghost+in+the+wires&qid=1555399702&s=gateway&sprefix=ghost+in+the+wir%2Caps%2C320&sr=8-1) [![Mitnicks Book Art Of Invisibility](https://media.mailhop.org/phishprotection/images/2019/04/Mitnicks-Book-art-of-invisibility.jpg)](https://www.amazon.com/Art-Invisibility-Worlds-Teaches-Brother/dp/0316380504/ref=sr%5F1%5F1?crid=164S4I7WD86UH&keywords=the+art+of+invisibility&qid=1555399800&s=gateway&sprefix=the+art+of+invis%2Caps%2C330&sr=8-1) --- [The Art of Invisibility](https://www.amazon.com/Art-Invisibility-Worlds-Teaches-Brother/dp/0316380504/ref=sr%5F1%5F1?crid=164S4I7WD86UH&keywords=the+art+of+invisibility&qid=1555399800&s=gateway&sprefix=the+art+of+invis%2Caps%2C330&sr=8-1) ``` **Did you know -** One of Kevin's aliases while on the run was Eric Weiss, the real name of his favorite magician, [Harry Houdini](https://en.wikipedia.org/wiki/Harry_Houdini). ``` ![Houdini](https://media.mailhop.org/phishprotection/images/2019/04/Houdini.jpg) ### Kevin Recommends Kevin is a big advocate of personal privacy online. He advocates the following measures to maintain online privacy: #### Encrypted emails For maximum privacy, emails should be encrypted end-to-end using a publicly available encryption algorithm. Using a public algorithm ensures it has been “vetted for weaknesses.” He believes that if an app or service doesn’t use end-to-end encryption, you should choose another one. In support of encrypted emails, private key management is very important. A private key should never be shared with anybody. Also, protecting metadata is required to become truly invisible in the digital world. > #### ”The hacker mindset doesn’t actually see what happens on the other side, to the victim.”, Kevin Mitnick ![Kevin Mitnick Most Wanted Hacker](https://media.mailhop.org/phishprotection/images/2019/04/kevin_mitnick-most-wanted-hacker.jpg) #### Defend your anonymity In order to remain anonymous online, several basic steps are required: - **Hide your true IP address.** One way to do that is to use a service known as an anonymous remailer, which will mask your email’s IP address for you. Another tactic is to use the onion router for browsing the web. Tor works by changing the path between you and your target website constantly. - **Obscure your hardware and software.** If you decide to use Tor, you should not run it in the same physical device that you use for general browsing. In other words, have a laptop for browsing the web and a separate device for Tor. - **Create a new account.** You will need to create a new, anonymous account for using Tor so that the IP address setting up the account is not associated with your real identity in any way. - **Isolate activities.** You should never perform any internet searches while logged in to an anonymous email account. You might inadvertently search for something that is related to your true identity. > #### ”I saw myself as an electronic joy rider.”, Kevin Mitnick ![Mugshot 1](https://media.mailhop.org/phishprotection/images/2019/04/Mugshot-1.jpg) ### How to Troll the FBI According to Kevin At the time of his arrest in 1995, Kevin Mitnick was the most wanted cyber criminal in the United States. The arrest marked the end of an intense two-and-a-half-year electronic manhunt, a game of cat and mouse that Mitnick likens to a video game. “I was a little bit insane,” Mitnick admits. “Why I did this psychologically is I loved putting myself in dangerous situations and then trying to work my way out of them.” [Read More](https://youtu.be/Nn3O8XD1z0w) ``` **Did you know -** When Kevin Mitnick began hacking back in the 1970s there were no laws against it. ``` > #### ”A hacker doesn’t deliberately destroy data or profit from his activities.”, Kevin Mitnick ### Kevin Mitnick Quiz [QUIZ START](/heroes/kevin-mitnick) ![Kevin Mitnick6](https://media.mailhop.org/phishprotection/images/2019/04/kevin-mitnick6.jpg) ``` **Did you know -** Kevin's business card is metal and includes a tool to pick a lock. ``` ![Mitnick Bus Card](https://media.mailhop.org/phishprotection/images/2019/04/Mitnick-Bus-Card.jpg) ``` **Did you know -** In an effort to evade detection by the law, Kevin put pebbles in one shoe, which made it hurt to walk and changed his gait. ``` > #### ”I was addicted to hacking, more for the intellectual challenge, the curiosity, the seduction of adventure; not for stealing, or causing damage or writing computer viruses.”, Kevin Mitnick ### Kevin’s Hacks ![Timeline Of Kevin Mitnick Hacks](https://media.mailhop.org/phishprotection/images/2019/04/Timeline-of-Kevin-Mitnick-Hacks.jpg) ``` **Did you know -** In spite of having easy access to credit cards, social security numbers, and proprietary software, Mitnick never spent a dime of other people's money. ``` ### Kevin Mitnick Wanted ![Mitnick Wanted](https://media.mailhop.org/phishprotection/images/2019/04/mitnick-Wanted.jpg) ``` **Did you know -** In 1993, realizing he was being investigated for alleged break-ins at Pacific Bell, Kevin began wiretapping the agents on his case. ``` > #### ”You can never protect yourself 100%. What you do is protect yourself as much as possible and mitigate risk to an acceptable degree. You can never remove all risk.”, Kevin Mitnick ### Takedown [![Takedown](https://media.mailhop.org/phishprotection/images/2019/05/takedown.jpg)](https://www.amazon.com/Takedown-Pursuit-Capture-Americas-Computer/dp/0786889136) The book “Takedown” details the pursuit of Kevin Mitnick that led to his capture. It was written Tsutomu Shimomura (Stanford) with contributions by John Markoff. Shimomura who led the mission and has written the book from his experiences. Of course, there are many who say that the events in the book are biased and innacurate and Shimomura has spiced up many of the events and changed the perspectives. ### Kevin Mitnick Busted One of the worlds Top-Best most famous number one hacker Kevin Mitnick shares his FBI bust story on an interviewed ``` **Did you know -** Kevin spent his first year in prison in solitary confinement because the prosecutor told the judge that if he got to a phone he could connect to NORAD and somehow launch an ICBM. ``` > #### ”I was hooked in before hacking was even illegal.”, Kevin Mitnick ### Kevin Gets Released ![Mitnick Out Of PrisonK](https://media.mailhop.org/phishprotection/images/2019/04/Mitnick-out-of-PrisonK.jpg) ``` **Did you know -** Mitnick said he initially became a computer hacker because he loved magic. ``` ### X-Hacker ![Kevin Mitnick Im A Hacker](https://media.mailhop.org/phishprotection/images/2019/04/Kevin-Mitnick-Im-a-hacker.jpg) ``` **Did you know -** After he was released from prison, Kevin obtained the license plate "X HACKER" for his Nissan. ``` > #### ”The best thing to do is always keep randomly generated passwords everywhere and use a password tool to manage it, and then you don’t have to remember those passwords at all, just the master password that unlocks the database.”, Kevin Mitnick ### Kevin on 60 Minutes 60 Minutes segment on Kevin Mitnick. ``` **Did you know -** The hack Kevin's most proud of is the Motorola hack in which he convinced an employee to send him the code of the MicroTAC Ultra Lite cell phone. ``` ### Kevin Mitnick Live at CeBIT He is the most famous hacker of the world, and at CeBIT Global Conferences 2015 he performs a hack live on center stage: Kevin Mitnick. ``` **Did you know -** Kevin chose to hide in Denver, CO because it was as far away as he'd ever been from home at that time. ``` > #### ”My argument is not that I shouldn’t have been punished, but that the punishment didn’t fit the crime.”, Kevin Mitnick ### Ghost in the Cloud, Strictly Mobile Once one of the FBI’s Most Wanted because he hacked into 40 major corporations just for the challenge, Kevin is now a trusted security consultant to the Fortune 500 and governments worldwide. Kevin and The Global Ghost Team™ now maintain a 100 percent successful track record of being able to penetrate the security of any system they are paid to hack into using a combination of technical exploits and social engineering. As CEO and chief “white hat” hacker at one of the most advanced boutique security firms in the world, Kevin mentors leaders, executives, and staff on both the theory and practice of social engineering, [Read More](https://www.youtube.com/watch?v=76yrWGzScgI) ``` **Did you know -** The first DefCon conference in 1993 had a few hundred attendees. The most recent year at DefCon had over 16,000 attendees. ``` > #### ”Hacking was the only entertainment that would occupy my mind, like a huge video game, but with real consequences. I could have evaded the FBI a lot longer if I had been able to control my passion for hacking.”, Kevin Mitnick ### Kevin Talks at Google Kevin Mitnick visits Google’s NYC office to discuss his book “Ghost in the Wires: My Adventures as the World’s Most Wanted Hacker” with Eran Feigenbaum, Google’s Director of Security for Google Apps. This event took place on August 17, 2011, as part of the Authors@Google series. Kevin Mitnick was the most elusive computer break-in artist in history. He accessed computers and networks at the world’s biggest companies-and however fast the authorities were, Mitnick was faster, sprinting through phone switches, computer systems, and cellular networks. [Read More](https://youtu.be/aUqes9QdLQ4) > #### ”As a young boy, I was taught in high school that hacking was cool.”, Kevin Mitnick ## What Kevin’s Been Up to Lately [Tweets by kevinmitnick](https://twitter.com/kevinmitnick?ref%5Fsrc=twsrc%5Etfw) ## Kevin Mitnick Shares the Newest “Shocking” Security Exploits ### Outlook Exchange Exploit In a recent[ webinar](https://blog.knowbe4.com/kevin-mitnick-demos-outlook-exchange-exploit), Kevin demonstrated how a bug in[ Microsoft Exchange](https://www.thezdi.com/blog/2018/12/19/an-insincere-form-of-flattery-impersonating-users-on-microsoft-exchange) “allowed anyone on an Exchange server to impersonate anyone else on that Exchange server.” In the webinar Kevin simulates gaining access to Jeff Bezos’ (Amazon) account and sends an email from Jeff to the accounting department at KPMG requesting that they change wiring instructions. ### Password Hack, No Click or Attachment Necessary In another[ webinar](https://blog.knowbe4.com/kevin-mitnick-demos-password-hack-no-link-click-or-attachments-necessary), Kevin “shows how hackers can steal a user’s password hash without the user having to click a hyperlink or open an attachment.” This really is the scariest of all phishing scenarios, and perhaps shouldn’t even be thought of as phishing. Afterall, phishing is really duping someone into doing something they don’t want to do. With this new password hack, the victim doesn’t even have to be complicit and they can still get exploited. ### WhatsApp Hack Facebook admitted to a major security breach of its WhatsApp messaging system. The flaw enables hackers to install surveillance spyware in the application itself. It affects both iPhone and Android devices. In an interview with Kevin,[ Canadian Broadcasting](https://www.youtube.com/watch?v=Zzz3fSiBaGE) asked him how something like this could happen. Kevin said, “A lot of these applications are developed by application developers using millions of lines of code and people make mistakes. And what happens is security researchers find these flaws and they’re able to develop exploit code to take advantage of these flaws and do exactly what was done in this case.” He went on to say, “It’s pretty scary because all an adversary would have to do is ring your phone over WhatsApp and then they would have the ability to install malware. So, it’s a huge wakeup call that these threats actually exist.” The scariest thing of all is that none of these exploits require interaction from the user. [60-Day Free Trial](https://portal.duocircle.com/cart.php?a=add&pid=101&brand=phishprotection) ## Protect your inbox from phishing attacks Start your 60-day free trial - no credit card required. [Start Free Trial](https://portal.duocircle.com/cart.php?a=add&pid=101&brand=phishprotection) ```json {"@context":"https://schema.org","@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com","logo":{"@type":"ImageObject","url":"https://phishprotection.com/images/phishprotection-logo.png"},"description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","parentOrganization":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138883901","name":"DuoCircle LLC","url":"https://www.duocircle.com","sameAs":["https://www.wikidata.org/wiki/Q138883901","https://www.crunchbase.com/organization/duocircle-llc","https://www.linkedin.com/company/duocircle","https://github.com/duocircle"],"subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]},"sameAs":["https://www.linkedin.com/company/duocircle","https://x.com/duocirclellc","https://www.facebook.com/duocirclellc","https://github.com/duocircle"],"aggregateRating":{"@type":"AggregateRating","ratingValue":"4.8","reviewCount":"21","bestRating":"5","worstRating":"1","url":"https://www.g2.com/products/phish-protection/reviews"},"contactPoint":{"@type":"ContactPoint","contactType":"customer support","url":"https://phishprotection.com/contact/"},"knowsAbout":["Phishing Protection","Email Security","Anti-Phishing","Business Email Compromise","Ransomware Protection","Time of Click Protection","Office 365 Email Security","Advanced Threat Defense"]} ``` ```json {"@context":"https://schema.org","@type":"WebSite","name":"Phish Protection","url":"https://phishprotection.com","description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","publisher":{"@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com","logo":{"@type":"ImageObject","url":"https://phishprotection.com/images/phishprotection-logo.png"},"description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","parentOrganization":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138883901","name":"DuoCircle LLC","url":"https://www.duocircle.com","sameAs":["https://www.wikidata.org/wiki/Q138883901","https://www.crunchbase.com/organization/duocircle-llc","https://www.linkedin.com/company/duocircle","https://github.com/duocircle"],"subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]}}} ``` ```json {"@context":"https://schema.org","@type":"Article","headline":"Life & Times of Kevin Mitnick, The World's Most Wanted Hacker","description":"Life & Times of Kevin Mitnick, The World's Most Wanted Hacker: Life & Times of Kevin Mitnick, The World's Most Wanted Hacker Kevin Mitnick, \"The World's.","url":"https://phishprotection.com/kevin-mitnick/","dateModified":"2020-03-18T11:53:21.000Z","author":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection"},"publisher":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://phishprotection.com","logo":{"@type":"ImageObject","url":"https://media.mailhop.org/phishprotection/images/phishprotection-logo.png"},"description":"Enterprise-grade email security that protects businesses from phishing, ransomware, and email fraud with real-time threat detection and multi-layered protection.","parentOrganization":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138883901","name":"DuoCircle LLC","url":"https://www.duocircle.com","sameAs":["https://www.wikidata.org/wiki/Q138883901","https://www.crunchbase.com/organization/duocircle-llc","https://www.linkedin.com/company/duocircle","https://github.com/duocircle"],"subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://phishprotection.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"}]},"sameAs":["https://www.wikidata.org/wiki/Q138897912","https://www.linkedin.com/company/duocircle","https://x.com/duocirclellc","https://github.com/duocircle","https://www.crunchbase.com/organization/duocircle-llc"],"contactPoint":{"@type":"ContactPoint","contactType":"customer support","url":"https://phishprotection.com/contact/"},"knowsAbout":["Phishing Protection","Email Security","Anti-Phishing","Ransomware Protection","Business Email Compromise","Time of Click Protection","Advanced Threat Defense","Email Fraud Prevention","Phishing Awareness Training","Office 365 Email Security"]},"image":"https://media.mailhop.org/phishprotection/images/og-default.png"} ``` ```json {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https://phishprotection.com/"},{"@type":"ListItem","position":2,"name":"Kevin Mitnick","item":"https://phishprotection.com/kevin-mitnick/"}]} ```