Browse Definitions :
Definition

doxing

Ivy Wigmore
By

Doxing is the act of gathering information about a target individual or organization and making it public. The term is hacker-speak for documenting. As a rule, the data gathered is sensitive information that the target doesn’t want broadly known, for any of a number of reasons including customer privacy, compliance requirements and reputation management. The information may be gathered from publicly-available sources, through social engineering or through a hacking exploit.

Doxing is sometimes used for a type of extortion in which an attacker accesses the target’s sensitive data and threatens to make it public unless demands – usually for money – are met. Malware known as doxware or extortionware is often used to facilitate the exploit. Doxing is also sometimes used for legitimate purposes, such as aiding law enforcement. Other motives include cyberbullying, industrial espionage and harrassment, as well as the gray area of social and political activism.

The word doxing entered the broader public domain in 2011, when the hacktivist group Anonymous released information about 1500 users of child pornography sites. That same year, Anonymous published information about 7,000 law enforcement personnel in retaliation for investigations into the group’s hacking activities.

This was last updated in January 2017

Continue Reading About doxing

SearchCompliance
  • smart contract

    A smart contract is a decentralized application that executes business logic in response to events.

  • compliance risk

    Compliance risk is an organization's potential exposure to legal penalties, financial forfeiture and material loss, resulting ...

  • information governance

    Information governance is a holistic approach to managing corporate information by implementing processes, roles, controls and ...

SearchSecurity
  • threat modeling

    Threat modeling is a procedure for optimizing application, system or business process security by identifying objectives and ...

  • social engineering

    Social engineering is an attack vector that relies heavily on human interaction and often involves manipulating people into ...

  • distributed denial-of-service (DDoS) attack

    A distributed denial-of-service (DDoS) attack is one in which multiple compromised computer systems attack a target, such as a ...

SearchHealthIT
SearchDisasterRecovery
  • change control

    Change control is a systematic approach to managing all changes made to a product or system.

  • disaster recovery (DR)

    Disaster recovery (DR) is an organization's ability to respond to and recover from an event that affects business operations.

  • risk mitigation

    Risk mitigation is a strategy to prepare for and lessen the effects of threats faced by a business.

SearchStorage
  • storage security

    Storage security is the group of parameters and settings that make storage resources available to authorized users and trusted ...

  • cloud storage

    Cloud storage is a service model in which data is transmitted and stored on remote storage systems, where it is maintained, ...

  • cloud data management

    Cloud data management is a way to manage data across cloud platforms, either with or instead of on-premises storage.

Close