Doxing (or doxxing) refers to maliciously gathering and publishing personal information online without consent, often to harass, threaten, or retaliate against someone. In this scenario, the hacker stole an employee's health records and posted them online as revenge, which clearly constitutes doxing.
* Privacy Rights & Data Protection (HIPAA, GDPR, CCPA) - Unauthorized disclosure of health records violates legal and ethical privacy standards.
* Cyber Ethics & Harassment (ACM & IEEE Codes of Ethics) - Doxing is considered a cybercrime and an unethical digital practice.
* Cybersecurity & Retaliatory Attacks - Ethical hacking principles condemn doxing as a form of online harassment.
* Deontological & Virtue Ethics - Publishing private information violates personal dignity and trust, making it ethically unacceptable.
Relevant Ethical References in Technology:Thus, the correct answer is B. Doxing, as the hacker exposed private health records online for revenge.

The Gramm-Leach-Bliley Act (GLBA) governs the collection, protection, and disclosure of personally identifiable financial information (PII) by financial institutions, including credit reporting agencies.
Why GLBA applies to this case:
* Credit reporting agencies handle sensitive consumer financial data, making them subject to GLBA regulations.
* The Financial Privacy Rule under GLBA dictates how financial institutions must collect and disclose PII.
* The Safeguards Rule requires companies to appoint a Data Protection Officer (DPO) to oversee data security practices.
* A. Securities Exchange Act - Governs stock trading and financial disclosures, not PII protection.
* B. Sarbanes-Oxley Act (SOX) - Focuses on corporate financial reporting and accounting fraud, not data privacy.
* D. Bank Secrecy Act (BSA) - Primarily deals with money laundering and financial crime detection, not consumer data protection.
Why Not the Other Options?Thus, the correct answer is C. Gramm-Leach-Bliley Act (GLBA) as it regulates the collection and protection of financial PII.
* Gramm-Leach-Bliley Act (1999), 15 U.S.C. §§ 6801-6809.
* Federal Trade Commission (FTC) Guide on GLBA Compliance.
* Solove, D. J. (2020). The Privacy Law Fundamentals.
References in Ethics in Technology: