Information Technology Services LMU.edu
Apply Visit Give
Apply Visit Give
Information Technology Services LMU.edu
Apply Visit Give
Apply Visit Give

Protecting Yourself from Being Doxed

In today’s digital age, the threat of doxing—where personal information is maliciously published online—has become a significant concern. Doxing can lead to severe consequences, including harassment, identity theft, and even physical danger. Here’s how you can protect yourself and mitigate the risks. 

The Extent of PII Online

Personal Identifiable Information (PII) is surprisingly easy to find online. Public records, social media profiles, and data breaches contribute to the vast amount of PII available. For example:

  • Social Media: Many people share personal details such as birthdays, addresses, and phone numbers on platforms like Facebook, Twitter, and LinkedIn.
  • Data Breaches: High-profile data breaches have exposed millions of records, including email addresses, passwords, and even social security numbers.
  • Public Records: Information such as home addresses, phone numbers, and even property ownership details can often be found through public records and online databases.

Given the amount of PII available online, it’s crucial to take proactive steps to protect your information and reduce the risk of being doxed. 

Understanding Doxing 

Doxing involves the unauthorized release of personal information such as home addresses, phone numbers, email addresses, and even financial details. This information can be used to harass or intimidate individuals. For faculty and leadership, the stakes are higher due to their public profiles and the sensitive nature of their work. 

Real-Life Scenarios

  • Student's Controversial Comments made on Social Media: A college student posted a controversial comment online about a sensitive political issue. The post went viral, sparking intense debate. In response, someone doxed the student, sharing their personal information. This led to harassment and threats, highlighting the serious consequences of making controversial comments online.
  • Faculty Member Targeted for Research: A professor conducting controversial research might become a target for doxing by individuals or groups opposing their work. For instance, a climate scientist might be doxed by climate change deniers, leading to threats and harassment.
  • University Administrator Under Scrutiny: A university president or dean involved in a high-profile decision, such as budget cuts or policy changes, might be doxed by disgruntled students or staff. This can result in personal information being shared on social media, leading to a barrage of unwanted attention and threats.
  • Public Speaker at a Conference: Anyone who speaks at a conference might be doxed by activists who disagree with their views. This can lead to protests and security concerns, both online and offline. 
  • Breakups or Falling out with Friends: Personal conflicts, such as breakups or falling out with friends, can lead to revenge doxing. Revenge doxing can be a former partner or friend who might share personal information to embarrass or harm the student.

How to Protect Yourself

  • Limit Personal Information Online: Be mindful of the information you share on social media and professional websites. Avoid posting your home address, posting external photos of your home, phone number, or other sensitive details.
  • Use Privacy Settings: Adjust the privacy settings on your social media accounts to control who can see your information. Limit access to your posts and personal details to trusted friends and colleagues.
  • Use Strong, Unique Passwords: Ensure all your online accounts are protected with strong, unique passwords. Consider using a password manager to keep track of them.
  • Enable Two-Factor Authentication (2FA): Add an extra layer of security to your accounts by enabling 2FA. This makes it harder for attackers to gain access even if they have your password.
  • Monitor Your Digital Footprint: Regularly search for your name online to see what information is publicly available. Use tools like Google Alerts to stay informed about new mentions of your name.
  • Educate Yourself and Your Team: Stay informed about the latest cybersecurity threats and best practices. Conduct regular training sessions for yourself and your team to ensure everyone is aware of the risks and how to mitigate them.
  • Secure Your Devices: Ensure all your devices are protected with up-to-date antivirus software and firewalls. Regularly update your operating systems and applications to protect against vulnerabilities.
  • Be Cautious with Emails and Links: Be wary of phishing emails and suspicious links. Verify the sender’s identity before clicking on any links or downloading attachments. 

If You Find Your Information is Out There

  • Contact the Platform: If your personal information is posted on a specific platform or website, contact the site administrators to request its removal. Most reputable sites have policies against doxing and will take action to remove such content. However, please note that some of these websites may be scams and may not be willing to remove your information.  
  • Report to Authorities: Report the doxing incident to local law enforcement and provide them with all relevant information. They can help investigate and take appropriate action.
  • Notify LMU: Inform LMU Information Technology Services and Information Security departments at servicedesk@lmu.edu to provide support and take measures to protect your information and mitigate further risks.
  • Change Your Passwords Immediately: Change the passwords for all your online accounts. Use strong, unique passwords and enable two-factor authentication to enhance security.
  • Monitor Your Accounts: Keep a close eye on your financial and online accounts for any suspicious activity. Consider placing a fraud alert on your credit reports to prevent identity theft.
  • Seek Legal Advice: Consult with a legal professional to understand your rights and explore potential legal actions against the perpetrators. 

Guidance for LMU Reporting Doxing Related Incidents

Doxing scams are a serious threat that requires proactive measures to protect yourself, especially in the higher education sector. By being vigilant and taking steps to secure your personal information, you can reduce the risk of being doxed and ensure your safety and privacy.

Stay safe and informed! If you have any specific concerns or need further assistance, feel free to reach out to ITS Service Desk at servicedesk@lmu.edu. If the doxing results in the publication of your home address and you are at risk of potential harm, please notify LMU Public Safety and local law enforcement.  

If you have any questions or need more detailed advice, ITS Information Security Team are here to help!

The following resources from Cybersecurity & Infrastructure Security Agency (CISA) provide additional guidance on doxing prevention.