Kevin Poulsen: Dark Dante and the Radio Station Hack
Zusammenfassung
Kevin Poulsen hacked Pacific Bell’s switching infrastructure, accessed FBI wiretap databases, and — most famously — seized control of every telephone line into a Los Angeles radio station to guarantee he would be the winning caller in a contest for a Porsche 944. He was the most technically sophisticated American hacker of his era, spent seventeen months as a fugitive, and received the longest sentence yet handed to a hacker when he was caught. After prison, he became a journalist and eventually senior editor at Wired, where he used the same analytical skills that had made him a criminal to identify 744 registered sex offenders on MySpace — a story that led to arrests. His trajectory — from the most wanted hacker in America to the journalist who held platforms accountable — is one of the more unusual second acts in computing history.
Early Career: ARPANET and Pacific Bell
Kevin Poulsen was born in 1965 and grew up in Pasadena, California. He began exploring computer systems as a teenager in the early 1980s, accessing ARPANET through connections he had no authorization to use. His technical interests centered on telephone switching systems — the infrastructure of the phone network itself, not just the consumer-facing services running on top of it.
By his early twenties, Poulsen had developed extraordinary knowledge of Pacific Bell’s internal systems. He accessed switching computers that controlled telephone routing across California, understanding the network from the inside in a way that few legitimate employees could match. This access was not incidental — Poulsen systematically mapped Pacific Bell’s infrastructure, a project that had both technical fascination and practical implications he would eventually exploit.
He was caught and charged in 1983 for his early ARPANET intrusions. As a minor, he faced minimal consequences. The experience did not deter him.
In the late 1980s, under federal investigation for his Pacific Bell activities, Poulsen briefly worked as a contractor for SRI International, a Stanford-connected research institute with government contracts. The legitimate employment provided cover and access; it also gave federal investigators evidence of his capabilities when they eventually built their case.
Going Underground
In 1989, facing imminent indictment, Poulsen became a fugitive. He evaded the FBI for seventeen months — not by fleeing the country, but by living quietly in Southern California, supporting himself through odd jobs and continuing to exploit his knowledge of telephone systems.
During his time as a fugitive, Poulsen’s most audacious operation occurred. KIIS-FM in Los Angeles was running a contest: the 102nd caller would win a Porsche 944 S2. Poulsen wanted the Porsche. The problem was obvious: guaranteeing being the 102nd caller in a random public contest is impossible through legitimate means.
Poulsen’s solution: he accessed Pacific Bell’s switching computers and took control of all eighteen telephone lines into KIIS-FM’s contest lines. By controlling the switching infrastructure, he could block all incoming calls, allow exactly 101 calls through from legitimate callers (to establish the contest’s authenticity), and then place the 102nd call himself. He did this not once but multiple times across different contests, winning the Porsche, $20,000 in cash, and two Hawaiian vacations.
He also accessed FBI databases containing information about federal wiretaps on organized crime investigations — learning which phones were tapped and, presumably, which ones he should avoid using.
The Technical Achievement
Controlling a telephone switch remotely in 1990 required knowledge of the switch’s maintenance protocols, remote access mechanisms, and command language — information that Pacific Bell did not publish and that Poulsen had assembled through years of patient exploration. The intrusion into the radio station’s phone lines was not a simple hack; it required understanding the physical routing of those lines through Pacific Bell’s network, identifying the relevant switching equipment, and manipulating it in real time during the contest. Security researcher Tsutomu Shimomura, who later pursued Kevin Mitnick, described Poulsen as the more technically sophisticated of the two.
Capture and Prosecution
Poulsen was captured in April 1991 when he was recognized at a supermarket in San Jose by a customer who had seen his profile on Unsolved Mysteries, a television program on which the FBI had featured him. He did not attempt to flee.
The subsequent legal proceedings were complex. Poulsen was charged with wire fraud, computer fraud, money laundering, and obstruction of justice — the obstruction charge arising from alleged interference with FBI investigations during his fugitive period. He also faced charges related to accessing the FBI wiretap database, which raised national security concerns that delayed proceedings for years.
In 1994, Poulsen pleaded guilty and was sentenced to 51 months in federal prison — at the time, the longest sentence imposed on a hacker in the United States. He was also prohibited from using computers or the internet for three years following his release, a prohibition that became increasingly unusual as the internet became essential infrastructure.
He served his full sentence and was released in 1995.
Poulsen and Shimomura: The Other Famous Hacker Pair
The most celebrated hacker episode of the mid-1990s was not Poulsen’s capture but the pursuit of Kevin Mitnick by security researcher Tsutomu Shimomura — a pursuit that ended in Mitnick’s arrest in February 1995 and was dramatized in the book and film Takedown. Poulsen and Shimomura intersected in the public narrative of 1990s hacking, and Shimomura’s assessment of Poulsen — quoted in the infobox above — ranked him higher technically than Mitnick.
The comparison was not merely journalistic. Poulsen’s telephone switching intrusions required a level of infrastructure knowledge that Mitnick’s social engineering and account manipulation, however sophisticated, did not demand. To control a physical switching office remotely — to understand which trunk lines served which radio stations, which maintenance interfaces were exposed, which commands would route calls — required either insider access or years of patient mapping. Poulsen had built that knowledge from outside, through technical exploration, before any of his later crimes.
Shimomura went on to assist the FBI in Mitnick’s capture by tracking his modem connections through cellular telephone signals. Poulsen went on to become a journalist who covered computer crime. The symmetry of their later careers — one assisting law enforcement, one covering it — reflects the period’s ambivalence about where the line between hacker and security professional lay.
The Second Act: Journalism
Poulsen’s post-prison career was improbable. He began writing about technology and security for various publications, eventually joining SecurityFocus as a journalist covering computer crime. He was later hired by Wired News (wired.com), where he eventually became a senior editor.
The work was a natural extension of his hacker sensibility. He had spent years understanding systems by looking for what they weren’t designed to do; journalism about technology requires the same analytical instinct applied to organizations and information rather than software.
In 2006, Poulsen undertook what became his most widely cited journalistic achievement. Using data analysis of publicly available MySpace information and state sex offender registries, he identified 744 registered sex offenders who had active MySpace profiles. The story prompted MySpace to implement age verification and matching against sex offender registries — a direct policy consequence from a piece of data journalism that used no special access — only the tools Poulsen had learned to apply in a context where they caused public benefit rather than criminal exposure.
SecureDrop and the Whistleblower Infrastructure
In 2013, working with Aaron Swartz and programmer James Dolan, Poulsen helped develop SecureDrop — an anonymous whistleblower submission system allowing sources to transmit documents to journalists without exposing their identity or location. The architecture used Tor for anonymization and a physically isolated server (an “air-gapped” machine, not connected to the internet except through the Tor network) to receive submissions.
Swartz died in January 2013 before SecureDrop’s public release, and Dolan made the implementation public under the Freedom of the Press Foundation, which took over its development. The Foundation subsequently hired security engineers to audit and harden the system. SecureDrop was adopted by the New York Times, the Washington Post, The Guardian, Der Spiegel, Le Monde, and dozens of other major news organizations. As of the early 2020s it is the primary infrastructure through which government and corporate whistleblowers communicate with investigative journalists.
The arc of Poulsen’s career traces the boundary between what made someone a criminal and what made someone a security engineer in the 1980s and 1990s: identical technical skills, applied to unauthorized rather than authorized targets, separated by the presence or absence of permission. The system he helped build protects exactly the category of unauthorized access — the exposure of information systems’ secrets — that once made him a fugitive. The difference was institutional: he now worked for journalists whose legal exposure to sources’ material was protected, rather than for himself.