Browse Definitions :
Definition

doxing

Contributor(s): Ivy Wigmore

Doxing is the act of gathering information about a target individual or organization and making it public. The term is hacker-speak for documenting. As a rule, the data gathered is sensitive information that the target doesn’t want broadly known, for any of a number of reasons including customer privacy, compliance requirements and reputation management. The information may be gathered from publicly-available sources, through social engineering or through a hacking exploit.

Doxing is sometimes used for a type of extortion in which an attacker accesses the target’s sensitive data and threatens to make it public unless demands – usually for money – are met. Malware known as doxware or extortionware is often used to facilitate the exploit. Doxing is also sometimes used for legitimate purposes, such as aiding law enforcement. Other motives include cyberbullying, industrial espionage and harrassment, as well as the gray area of social and political activism.

The word doxing entered the broader public domain in 2011, when the hacktivist group Anonymous released information about 1500 users of child pornography sites. That same year, Anonymous published information about 7,000 law enforcement personnel in retaliation for investigations into the group’s hacking activities.

This was last updated in January 2017

Continue Reading About doxing

Start the conversation

Send me notifications when other members comment.

Please create a username to comment.

SearchCompliance

  • risk assessment

    Risk assessment is the identification of hazards that could negatively impact an organization's ability to conduct business.

  • PCI DSS (Payment Card Industry Data Security Standard)

    The Payment Card Industry Data Security Standard (PCI DSS) is a widely accepted set of policies and procedures intended to ...

  • risk management

    Risk management is the process of identifying, assessing and controlling threats to an organization's capital and earnings.

SearchSecurity

SearchHealthIT

SearchDisasterRecovery

  • call tree

    A call tree is a layered hierarchical communication model that is used to notify specific individuals of an event and coordinate ...

  • Disaster Recovery as a Service (DRaaS)

    Disaster recovery as a service (DRaaS) is the replication and hosting of physical or virtual servers by a third party to provide ...

  • cloud disaster recovery (cloud DR)

    Cloud disaster recovery (cloud DR) is a combination of strategies and services intended to back up data, applications and other ...

SearchStorage

Close