Newsletters
News & Information for Technology Purchasers NewsFactor Sites:       NewsFactor.com     Enterprise Security Today     CRM Daily     Business Report     Sci-Tech Today  
   
This ad will display for the next 20 seconds. Please click for more information, or scroll down to pass the ad, or Close Ad.
Home Enterprise I.T. Cloud Computing Applications Hardware More Topics...
Vblock™ Systems:
Advanced converged infrastructure
increases productivity & lowers costs.

www.vce.com
Network Security
24/7/365 Network Uptime
Average Rating:
Rate this article:  
'Doxxing' Incidents Highlight Risk of Disclosing Personal Info

By Jennifer LeClaire
March 13, 2013 10:24AM

    Bookmark and Share
"With vast amounts of personal information available about most people online -- much of which is shared voluntarily via social networking sites -- nefarious individuals are finding doxxing to be easier than ever," said security expert Brian Contos. Among those targeted with doxxing were Michele Obama, Britney Spears, Paris Hilton and Ashton Kutcher.
 


Against the backdrop of finger-pointing between the U.S. and China on the cybersecurity front, there's a new security scandal of Hollywood proportions going on. More than a dozen celebrities and officials have witnessed their personal information leaked onto the Internet.

The list of victims reads like a Who's Who and includes Secretary of State Hillary Clinton, Beyonce, First Lady Michelle Obama, Jay-Z, Kim Kardashian, Britney Spears, Ashton Kutcher, U.S. Attorney General Eric Holder, Los Angeles Police Chief Charlie Beck and Paris Hilton. The personal information -- everything from Social Security numbers to dates of birth to phone numbers -- was posted on a Web site called Exposed.su.

Both the LAPD and the FBI are investigating.

"LAPD detectives are investigating the recent disclosure of Chief Beck's personal information. Apparently this is not necessarily a hacking incident. It is called 'doxxing.' This has happened to the chief on two other occasions prior to this in a similar nature, post-Occupy L.A.," the LAPD said in a statement. "We are not at liberty to discuss the others mentioned in the Web post. There will be no further comments or press conferences on this matter."

With doxxing, an individual's persona is tracked online, and through deduction and various information services, data meant to be private is exposed and publicized. This differs from hacking, in which a computer or computers are broken into and information is stolen.

The New Doxxing

Brian Contos, worldwide vice president of field engineering at Solera Networks, said doxxing has moved attacks from targeting nameless, faceless organizations and governments to individuals.

"We've seen examples of this type of incident in Latin America, where hacktivists targeted specific individuals at organizations like police forces and published their names, photos, address, phone numbers, and other personal information," he told us. "With vast amounts of personal information available about most people online -- much of which is shared voluntarily via social networking sites -- nefarious individuals are finding doxxing to be easier than ever."

Wanted: Personal Details

The use and impact of this information isn't just limited to users' personal accounts, Contos said. Attackers increasingly look to obtain personal details about unsuspecting employees to inform advanced targeted attacks that can lead to massive data breaches at companies.

"Exacerbating the situation, many organizations are unaware they've been compromised until it's too late," Contos said. "On average, it's taking companies nearly three months to discover a malicious breach and more than four months to resolve one, according to recent research."

Furthermore, many organizations report they don't have the tools, personnel or funding to pinpoint the root cause of breaches. Contos' conclusion: These high-profile attacks underscore the importance of being careful about the information individuals share in public forums, as well as the need for businesses to have a comprehensive security strategy in place so they can respond swiftly when a breach occurs and minimize its impact.
 

Tell Us What You Think
Comment:

Name:



APC has an established a reputation for solid products that virtually pay for themselves upon installation. Who has time to spend worrying about system downtime? APC makes it easy for you to focus on business growth instead of business downtime with reliable data center systems and IT solutions. Learn more here.


 Network Security
1.   Fund Seeks To Head Off Heartbleeds
2.   Lessons from Verizon's Threat Report
3.   Verizon Report Exposes Cyberthreats
4.   How Are Web Sites Post-Heartbleed?
5.   White House Updating Privacy Policy


advertisement
How Are Web Sites Post-Heartbleed?
Questions on open source, security.
Average Rating:
Heartbleed Exploit Could Cost Millions
But it could have been prevented.
Average Rating:
Michaels: Nearly 3M Cards Breached
But the hack has been contained.
Average Rating:
Product Information and Resources for Technology You Can Use To Boost Your Business

Network Security Spotlight
Tech Giants Fund Initiative To Prevent Future Heartbleeds
Can more funding prevent Heartbleed vulnerabilities in future open-source software? A new Core Infrastructure Initiative at the Linux Foundation is attempting to find out.
 
What Verizon's Data Breach Report Can Teach Enterprises
It’s probably not a jaw-dropper, but cyberespionage is officially on the rise. And the use of stolen or misused credentials is still the leading way the bad guys gain access to corporate information.
 
Top Cyberthreats Exposed by Verizon Report
Beyond Heartbleed, there are cyberthreats vying to take down enterprise networks, corrupt smartphones, and wreak havoc on businesses. Verizon is exposing these threats in a new report.
 

Navigation
NewsFactor Network
Home/Top News | Enterprise I.T. | Cloud Computing | Applications | Hardware | Mobile Tech | Big Data | Communications
World Wide Web | Network Security | Data Storage | Small Business | Microsoft/Windows | Apple/Mac | Linux/Open Source | Personal Tech
Press Releases
NewsFactor Network Enterprise I.T. Sites
NewsFactor Technology News | Enterprise Security Today | CRM Daily

NewsFactor Business and Innovation Sites
Sci-Tech Today | NewsFactor Business Report

NewsFactor Services
FreeNewsFeed | Free Newsletters | XML/RSS Feed

About NewsFactor Network | How To Contact Us | Article Reprints | Careers @ NewsFactor | Services for PR Pros | Top Tech Wire | How To Advertise

Privacy Policy | Terms of Service
© Copyright 2000-2014 NewsFactor Network. All rights reserved. Article rating technology by Blogowogo. Member of Accuserve Ad Network.