What is Doxing? How to Protect Yourself?

Jorge Felix  - Cybersecurity Expert
Last updated: January 8, 2024
Read time: 11 minutes
Share

Doxing is one of the new privacy risks every internet user could face. This article explains what doxing is, how it works, examples, and how to fight it.

THE TAKEAWAYS

The word “doxing” refers to a type of privacy threat in which a malicious actor reveals private information about a victim. Unfortunately, the current digital environment in which so many users share heaps of information on social media platforms facilitates a wrongdoer’s work. However, there is plenty that an average user can do to prevent becoming a doxing victim.

The word “doxing” is an abbreviation for “dropping documents (dox).” It refers to a hacker or other malicious actor who researches another person or organization and then publishes his findings without permission. Over the last few years, we have seen how influencers, politicians, and celebrities get doxed. They are high-profile targets, of course, but anybody can become a doxing victim.

The specific information that a perpetrator chooses to publish depends on their goals. For example, it can go from home address to contact or banking information.

This article will explain in full detail what doxing is and how it happens. Understanding it will help you protect yourself successfully. As often happens with digital security, awareness is the first defense line.

So, how does doxing work?

Doxing (also “doxxing”) is a malicious act performed by an actor who aims to expose somebody else’s identity or digital activities to somebody who would remain anonymous and private instead. It’s all about harassment and/or humiliation.

Today, our personal information is floating around the digital ether more than we would like (or are aware of). Thus, a doxer can get much information to drop on their victims without using criminal resources.

Have you ever uploaded a CV to a job-hunting website? Such a document would probably expose your email address, home address, and phone number to anybody who could find it online. Something similar applies if you own a domain name or have previously registered one. These are just two examples, but think about your Facebook, Instagram, Twitter, and other accounts and how much they reveal about you.