October is Cyber Security Awareness Month.
We annually post topics to help the community understand the risks associated with sharing personal and organizational information, and keeping that data secure.
This week’s topic is “What is Doxxing?”
Doxxing is the act of revealing identifying information about someone or an organization online, such as their real name, home address, workplace, phone, financial, and personal information. That information is then circulated to the public — without the victim’s permission.
Originating in the 1990s, rival hackers would decide to “drop docs” on somebody else, who had previously only been known as a username or alias, revealing their identity to law enforcement.
The definition of doxxing has expanded beyond the hacker world community and now refers to personal information exposure. Doxxing has become a tool in the culture wars, with attackers doxxing those who have different views politically or personally. These are done for multiple reasons such as cyber bullying, extortion, harassment, or retaliation. Doxxers aim to escalate their conflict with targets, revealing information which could include:
- Home addresses
- Workplace details
- Personal phone numbers
- Social security numbers
- Bank account or credit card information
- Private correspondence
- Criminal history
- Personal photos
- Embarrassing personal details
- Organizational data
Individuals can protect themselves by reflecting on the personal information they share online. The four “R’s” should be considered:
- Restrict access to what you share
- Review what has been shared
- Remove what is not necessary
- Revise on a regular basis
Please contact ITSSecurity@coloradocollege.edu if you feel you’ve been a victim of doxxing for more information. |