Newsletters
News & Information for Technology Purchasers NewsFactor Sites:       NewsFactor.com     Enterprise Security Today     CRM Daily     Business Report     Sci-Tech Today  
   
This ad will display for the next 20 seconds. Click for more information, or
Home Enterprise I.T. Cloud Computing Applications Hardware More Topics...
GET RECOGNIZED.
Let an ISACA® certification
elevate your career.

Register today and save
Big Data
Tame your scariest paperwork. Find Out How
Average Rating:
Rate this article:  
'Doxxing' Incidents Highlight Risk of Disclosing Personal Info

By Jennifer LeClaire
March 13, 2013 10:24AM

    Bookmark and Share
"With vast amounts of personal information available about most people online -- much of which is shared voluntarily via social networking sites -- nefarious individuals are finding doxxing to be easier than ever," said security expert Brian Contos. Among those targeted with doxxing were Michele Obama, Britney Spears, Paris Hilton and Ashton Kutcher.
 



Against the backdrop of finger-pointing between the U.S. and China on the cybersecurity front, there's a new security scandal of Hollywood proportions going on. More than a dozen celebrities and officials have witnessed their personal information leaked onto the Internet.

The list of victims reads like a Who's Who and includes Secretary of State Hillary Clinton, Beyonce, First Lady Michelle Obama, Jay-Z, Kim Kardashian, Britney Spears, Ashton Kutcher, U.S. Attorney General Eric Holder, Los Angeles Police Chief Charlie Beck and Paris Hilton. The personal information -- everything from Social Security numbers to dates of birth to phone numbers -- was posted on a Web site called Exposed.su.

Both the LAPD and the FBI are investigating.

"LAPD detectives are investigating the recent disclosure of Chief Beck's personal information. Apparently this is not necessarily a hacking incident. It is called 'doxxing.' This has happened to the chief on two other occasions prior to this in a similar nature, post-Occupy L.A.," the LAPD said in a statement. "We are not at liberty to discuss the others mentioned in the Web post. There will be no further comments or press conferences on this matter."

With doxxing, an individual's persona is tracked online, and through deduction and various information services, data meant to be private is exposed and publicized. This differs from hacking, in which a computer or computers are broken into and information is stolen.

The New Doxxing

Brian Contos, worldwide vice president of field engineering at Solera Networks, said doxxing has moved attacks from targeting nameless, faceless organizations and governments to individuals.

"We've seen examples of this type of incident in Latin America, where hacktivists targeted specific individuals at organizations like police forces and published their names, photos, address, phone numbers, and other personal information," he told us. "With vast amounts of personal information available about most people online -- much of which is shared voluntarily via social networking sites -- nefarious individuals are finding doxxing to be easier than ever."

Wanted: Personal Details

The use and impact of this information isn't just limited to users' personal accounts, Contos said. Attackers increasingly look to obtain personal details about unsuspecting employees to inform advanced targeted attacks that can lead to massive data breaches at companies.

"Exacerbating the situation, many organizations are unaware they've been compromised until it's too late," Contos said. "On average, it's taking companies nearly three months to discover a malicious breach and more than four months to resolve one, according to recent research."

Furthermore, many organizations report they don't have the tools, personnel or funding to pinpoint the root cause of breaches. Contos' conclusion: These high-profile attacks underscore the importance of being careful about the information individuals share in public forums, as well as the need for businesses to have a comprehensive security strategy in place so they can respond swiftly when a breach occurs and minimize its impact.
 

Tell Us What You Think
Comment:

Name:



Salesforce.com is the market and technology leader in Software-as-a-Service. Its award-winning CRM solution helps 82,400 customers worldwide manage and share business information over the Internet. Experience CRM success. Click here for a FREE 30-day trial.


 Big Data
1.   U.K. Wants Data Retention Law
2.   Facebook Experiment Now a Debate
3.   A Thumbs-Up for NSA Internet Spying
4.   NSA's Internet Monitoring Is Legal
5.   Gartner Rates IT Security Companies


advertisement
U.K. Wants Data Retention Law
After citizens right-to-privacy verdict.
Average Rating:
Facebook Experiment Now a Debate
Does it signal a power imbalance?
Average Rating:
A Thumbs-Up for NSA Internet Spying
Dizzying turnabout from privacy board.
Average Rating:
Product Information and Resources for Technology You Can Use To Boost Your Business

Network Security Spotlight
Report: Chinese Hackers Hit U.S. Personnel Networks
Hackers from China broke into the computer networks of the U.S. Office of Personnel Management earlier this year with the intention of accessing the files of tens of thousands of federal employees.
 
Charges: Russian Stole Data from U.S. Restaurants, Zoo
A Russian man arrested on bank fraud and other charges hacked into computers at restaurants in Washington, hundreds of other retail businesses, and even the Phoenix Zoo, authorities say.
 
Another Month, Another IE-Focused Patch Tuesday
Microsoft rolled out 59 vulnerabilities for Internet Explorer in June. But the IE-patching party is not over yet. Redmond published six new security bulletins on Tuesday; two, critical; three, important.
 

Navigation
NewsFactor Network
Home/Top News | Enterprise I.T. | Cloud Computing | Applications | Hardware | Mobile Tech | Big Data | Communications
World Wide Web | Network Security | Data Storage | Small Business | Microsoft/Windows | Apple/Mac | Linux/Open Source | Personal Tech
Press Releases
NewsFactor Network Enterprise I.T. Sites
NewsFactor Technology News | Enterprise Security Today | CRM Daily

NewsFactor Business and Innovation Sites
Sci-Tech Today | NewsFactor Business Report

NewsFactor Services
FreeNewsFeed | Free Newsletters | XML/RSS Feed

About NewsFactor Network | How To Contact Us | Article Reprints | Careers @ NewsFactor | Services for PR Pros | Top Tech Wire | How To Advertise

Privacy Policy | Terms of Service
© Copyright 2000-2014 NewsFactor Network. All rights reserved. Article rating technology by Blogowogo. Member of Accuserve Ad Network.