Human beings are social animals, and most of us like to connect with others. In doing so, we tend to share personal data. In an age where that personal data is often digital, this opens the door to exploitation. Doxxing is a term used to describe the outing of online personas by connecting their pseudonymous identity with real personal data.
This process is also used by cybercriminals intent on using personal and corporate data to commit cyberattacks, including phishing and business email compromise (BEC). By turning doxxing on its head, an IT team can use the process of self-doxxing to help mitigate cyberattacks and ensure security hygiene is maintained.
What is doxxing?
Doxxing was led by the Anonymous movement to punish enemies and is a process by which personal data, such as name, address, phone number and more are located and then posted online for all to see. The tactic goes back to the early days of the internet where hackers would post a rival’s information in “docs” which eventually became known as “dox.” Hence, doxxing someone.
Doxxing is often associated with harassment and used by internet users to reveal the people behind illegal or extremist groups. Reddit, for