The arrest of a Granada-based hacker for publishing personal details of National Police, Civil Guard, prosecutors, and INCIBE officials reveals a targeted campaign against those enforcing Spain's digital perimeter. While the National Police statement frames this as a large-scale leak threatening harassment and extortion, it overlooks deeper patterns: similar doxxing operations have spiked in Europe since 2022, often tied to activist networks exploiting open-source intelligence from public procurement records and social media. This case follows the unrelated but proximate 2023 bust of a 19-year-old selling 64 million records, hinting at a maturing underground market where government employee data commands premiums on forums. Missed in initial coverage is the potential institutional fallout—officials at INCIBE and the National Security Council may now hesitate on aggressive operations, creating gaps exploitable by state actors or ransomware groups. Drawing on Europol's 2023 Internet Organised Crime Threat Assessment and a parallel incident reported by El País in Catalonia involving leaked judicial emails, the trend points to doxxing as asymmetric retaliation against enforcement rather than random crime. Spain's response, including ongoing forensic work on seized devices, could set precedents for EU-wide data minimization rules for public servants, but only if motives—possibly linked to recent protests over surveillance laws—are fully mapped.