Or that man who was wrongly identified as the Boston Marathon bomber?
These were all examples of how making someone’s personal, and sometimes private, information public on the internet led to intense harassment.
Today, each of the cases could easily be termed a form of doxxing — short for “dropping documents.” In the last few years, doxxing has increasingly been used as an online weapon to attack people. People’s “documents” — records of their addresses, relatives, finances — get posted online with the implicit or explicit invitation for others to shame or hector them.
But while doxxing may seem both creepy and dangerous, there is no single federal law against the practice. Such behavior has to be part of a wider campaign of harassment or stalking for it to be against the law.
This week I wrote about “doxxing” among the more extreme elements of the country’s political left and right, a world of zealotry and paranoia and anger and worry. Over the course of my reporting, the subject of my article got doxxed herself.
It was all fascinating and disturbing, and I think leaves people, myself included, with a lot to think about concerning doxxing, its effectiveness and appropriateness both. Reporters, after all, have been doing a form of doxxing for decades.
But to hope of thinking clearly about doxxing, it always helps to better understand it and its practitioners.
So, how do doxxers dox? They use public records, like property records, tax documents, voter registration databases; they scour social media, real estate websites and even do real-life surveillance to gather information. Then, they publish the information online.
For some, doxxing is morally troubling. Law professor Danielle Citron is one. “It provides a permission structure to go outside the law and punish each other,” she says. “It’s like shaming in cyber-mobs.”
Then, there is the matter of doxxing the wrong person.
Here’s an example: After the infamous “Unite the Right” protest in Charlottesville, an attendee wearing an “Arkansas engineering” shirt was identified as Kyle Quinn, a professor at the University of Arkansas. Except Kyle Quinn wasn’t in Charlottesville. That didn’t stop the internet, and so when “Kyle Quinn” was doxxed as one of those torch — bearing protesters in Charlottesville, Quinn spent a weekend in hiding due to the amount of online abuse he subsequently received. The real protester, a former engineering student named Andrew M. Dodson, later apologized.
In some cases, people doxxed after taking part in white supremacist marches have been arrested, lost their jobs or allegedly been disowned by their families.
Other experts question whether doxxing white supremacists is a useful tactic. “Is this an effective means of challenging racist views?” ask Ajay Sandhu and Daniel Marciniak, researchers at the University of Essex in the United Kingdom. They argue that doxxing simply isolates people, forcing them into smaller parts of the internet. “You don’t really challenge them, you allow them to exist in those isolated spaces,” Sandhu says.
Some tips on how to protect yourself from doxxing
The short answer is: You probably can’t fully. But we have a few tips that will help make the information you want kept private more secure.
Two-factor authentication adds another level of security for online accounts. You should set this up for your social media, online banking, and any account connected to your credit cards (Venmo, PayPal, Amazon), and things with recurring payments that have credit card info like Netflix. For social media, here’s a how-to from Facebook on enabling two-factor authentication for your Facebook account, and here’s one from Twitter.
Increase privacy on your social media accounts
There may be, and probably is, personal information that is viewable by the public on your social media accounts. Or your social media accounts are completely public. It’s worth looking at the privacy of those. Here are a few things to do to button those up:
For Facebook, you can adjust your privacy settings here. Some boxes to check:
- Set your profile so it can’t be searched.
- Set your friends list to private.
- Set any older content to private, which you can do in bulk.
- Set all past profile pictures to private.
Also helpful to reduce personal information in your public profile:
- Remove your header image.
- Remove any featured photos.
- Consider removing your profile picture, or making sure it’s something professional/benign in case it gets copied and pasted elsewhere.
- Check profile pictures and remove or update these images to make sure it’s something professional/benign in case it gets copied and pasted elsewhere.
- Check who can follow you and/or see your posts.
- Check account security settings; like Facebook, each platform has privacy/security settings.
- Consider making Instagram feeds private, as even un-geotagged photos can provide a lot of useful location information.
How strong are your passwords?
Computer-generated passwords are best. Services like 1Password can help you create strong passwords. Some accounts will show you if your password is strong or weak. If it’s “weak,” don’t use it. Here are some more detailed practices for creating strong passwords.
Protect your email accounts
Where is your email address located out on the internet? Do you want it there? If not, remove your personal email address from personal websites, social media accounts or wherever else it might be.
Remove yourself from people search sites
Here’s how to remove yourself from many popular people search sites. These sites can reveal relatives, phone numbers, addresses (old and new), etc., that can be used by angry internet trolls to harass you and your family. Some of these sites are more obnoxious than others to opt out of, but if you go through all of them, it will take you out of most of the common online search services. Also, never provide sensitive information like your credit card number of social security number while opting out. Each of the links below will take you to the current opt-out page or instructions on how to opt out:
- PeopleFinders: Search yourself in any states you’ve lived in and click “This is me” to have it removed.
- Intelius: You need to scan your ID and scratch out your photo and DL number. Within a few days, they should remove you.
- Whitepages (non-Premium): Search your name on whitepages.com and copy the URL. Then go to the address linked here and paste it in. You’ll need to give them a phone number and then they call and read you a code.
- Whitepages Premium: Frustratingly, Whitepages Premium results will still show up for you if you remove yourself from whitepages.com. You’ll need to file a ticket with their support staff, but in our experience they’re pretty quick to remove you. Just search for your name in Whitepages Premium, copy the link, and fill out this form.
- Spokeo: Much like whitepages.com, search yourself on Spokeo and copy the profile URL. Then paste it into the opt-out form here.
- BeenVerified: This site is very particular about the spelling and form of names. For example, a search result came up for Kenneth Schwencke but not Ken Schwencke. But once you’ve located your name, or versions of your name, opt out here.
- Other sites: Once you’ve scrubbed the above listings, it’s a good idea to Google your name and the words “address” or “phone number” and see what comes up. If something does, find a way to manually opt out of each one of those sites.
Worth remembering here: Due to the nature of these services, your name might pop back up on them again. It’s worth it to re-check every few months to see if you’re still listed.
A step further: Data brokers
The sites above often get your information from data brokers. To ensure that your data doesn’t pop back up in other types of “PeopleFinders,” you have to go directly to the data brokers. This, however, can take time and sometimes be complicated. Here’s a list of some of the biggest data brokers and their opt-out pages:
A note on voter files
Voter files are public records in nearly every state, but some states block the release of information for certain people. For example, Florida conceals voter registrationinformation for individuals participating in the state’s Address Confidentiality Program for victims of domestic violence and stalking. It’s worth checking with your local or state election authority to see how your state operates.
If you want more, here are some guides we are particularly fond of:
Tips and advice compiled by: Mike Tigas, Ken Schwencke, Jeff Larson, Derek Willis, Julia Angwin and Terry Parris Jr.
Do you have any tips, advice or guides not listed here? Email [email protected].
By Decca Muldowney, ProPublica
The truth about Bernie Sanders’ medical records: They’re encouraging — but a key detail is missing
When Sen. Bernie Sanders (I-VT) landed in the hospital at the beginning of October 2019 after suffering a heart attack, it became guaranteed that his health would be an issue in the 2020 Democratic primary. The 78-year-old is known for his passionate rallies and reveling in the rigors of the campaign, but a candidate's health condition can change the course of an election, and a serious medical crisis like a heart attack puts into question his ability to do the job.
To help allay these concerns, Sanders assured voters that he would release "comprehensive" medical records. But he hasn't, and now it seems he doesn't plan on doing it. Instead, he released three letters in December from doctors describing his health positively and vouching for his ability to handle the campaign trail and potentially, the presidency.
How the question of who killed JFK emerged in an unexpected way on the 2020 campaign trail
On Monday night in Fairfax, Virginia, Donald Jeffries, author and talk radio host, asked Democratic presidential candidate Tulsi Gabbard about a book she was seen carrying, “JFK and the Unspeakable.” Published in 2008, the book is a Catholic philosopher’s meditation about the assassination of liberal president John F. Kennedy on November 22, 1963, one of the great historical crimes of American politics.
Gabbard replied she had not finished the book, but “from what I have read, it… speaks to what happened [on November 22] in a way that I haven’t seen anywhere else.”
Trump whines about losing the Time ‘Man of the Year’ award he lost to a teenage girl
President Donald Trump goaded his audience into booing a teenager during a campaign rally in Colorado Springs on Thursday.
Trump said, "I got beaten up by Greta" -- in reference to Swedish climate change activist Greta Thunberg, who recently celebrated her 17th birthday.
The leader of the free world went on to complain about Thunberg being declared TIME magazine's "Person of the Year" award in 2019.
He said that many women wish it was still "Man of the Year" and suggested separate categories by gender, which would prevent him from competing against European teenage girls.