26th Apr 2012, 12:11
|
#1 |
|
Administrator
bit-tech Staff
Join Date: Dec 2011
Posts: 1,009
  |
ICO warns of second-hand data leaks
The Information Commissioner's Office has published a report warning of the risks in selling second-hand hardware.
http://www.bit-tech.net/news/bits/20...s-data-leaks/1 |
|
|
|
26th Apr 2012, 12:21
|
#2 |
|
Supermodder
Join Date: Jan 2010
Location: Sunny Redcar in Cleveland
Posts: 326
|
Bloody ne'er-do-well's
|
|
|
|
|
26th Apr 2012, 13:56
|
#3 |
|
Need's a Holiday!
Join Date: May 2010
Location: Newton Abbot (originally from Wantage)
Posts: 439
|
I always dismantle a customers (faulty) drive and smash the platters to be sure there is no chance of it being recovered.
__________________
Fractal R4/ GA-X58A-UD3R / i7 920@3.8Ghz / Corsair H60 (2013 Model) with 2 x Corsair SP120 / Corsair Force GT 120 SSD /Sapphire 6950 (6970 mod) / 12GB (3x4GB)Corsair Dominator 1600mhz with Airflow Kit / AOC i2757fm 27" IPS Monitor http://www.compu-care.co.uk/ |
|
|
|
|
26th Apr 2012, 14:03
|
#4 |
|
Minimodder
Join Date: Jan 2011
Location: London
Posts: 26
|
It does seem ironic that the one time I was ever asked by a family member to retrieve deleted data, the computer had actually managed to wipe it permanently!
In my first year of Uni, I was housed in halls with a block of Computer Science students and one of the things they used to demonstrate was retrieving data from damaged or wiped hard disk drives. Since then I've always insisted on removing the drives from any old computers family and friends are disposing of. In the end, what we used to do at Uni was actually remove the hard disk platters and use them as coasters on our desks. Over time the heat from mugs of coffees warped the data and rendered it unreadable... ...at least that was the theory!
__________________
Asus Maximus V Gene |Intel Core i5-3570K | BeQuiet Dark Rock Advanced CPU Cooler | 8GB (2x4GB) G.Skill RipjawXF3 | Crucial M4 256GB RAM | Fractal Design Define R3 |
|
|
|
|
26th Apr 2012, 14:23
|
#5 |
|
Freaking printers!
Join Date: Feb 2010
Location: Dublin
Posts: 84
|
I used to use a heavy crowbar to smash the hell out of the drives we used. Done the same on with my own old ones.
|
|
|
|
|
26th Apr 2012, 14:52
|
#6 |
|
Reformed Grumpy Sod..kinda
Join Date: Mar 2010
Location: Standing Here Beside Myself
Posts: 2,813
|
There was a thing on Bang Goes The Theory about this quite recently. Showing some of the more..physical ways of erasing data, or not, depending on what they tried. Didn't tell me anything I didn't already know, but it was interesting none the less.
It's still up on bbc iplayer if anyone is interested. Here.
__________________
-Banana in disc drive error- To win the battle, is to be prepared to die - Miyamoto Musashi |
|
|
|
|
26th Apr 2012, 14:53
|
#7 |
|
Supermodder
Join Date: Aug 2005
Location: The Dark Side
Posts: 451
|
Dban was great...until Hard Drives got so big, now even with the fastest (which is the least secure) wipe, it can take soooooooooo long to wipe Hdrives that are TB's in size.
..Choose the most secure method, and your talking literally days to wipe a disc. |
|
|
|
|
26th Apr 2012, 18:59
|
#8 |
|
A.K.A. YGKtech
Join Date: Jan 2010
Location: Minneapolis, Minnesota. USA
Posts: 237
|
And that kiddies is why you never sell an old hard drive, they are rarely worth enough to justify it. if it still works, add it to a backup array, if it's broken, why are you selling it?
Though those not tech-savvy enough to know how to properly wipe a hard drive are at risk.
__________________
Corsair Carbide 500R ::::: NINE (!) case fans Intel I5 2500K @ 4.5Ghz ::::: AIR cooled (modified tuniq tower 120) Asus P8Z68-V LX ::::: 16GB 1866 9-9-9-27-1T (1.4v) Samsung low profile 30nm's Gigabyte Radeon HD 6870 1GB ::::: 1TB Samsung Spinpoint F3 128GB Intel SSD :::: 2x WD 1TB drives in RAID 1 |
|
|
|
|
26th Apr 2012, 19:28
|
#9 | |
|
Reformed Grumpy Sod..kinda
Join Date: Mar 2010
Location: Standing Here Beside Myself
Posts: 2,813
|
Quote:
__________________
-Banana in disc drive error- To win the battle, is to be prepared to die - Miyamoto Musashi |
|
|
|
|
|
26th Apr 2012, 21:53
|
#10 | |
|
Always planning something...
Join Date: Sep 2004
Location: Birmingham, UK
Posts: 53
|
Quote:
__________________
The Gates of Rock and Roll, Will Never Close on Me...
|
|
|
|
|
|
27th Apr 2012, 08:40
|
#11 |
|
Hypermodder
Join Date: Apr 2006
Location: Leamington Spa
Posts: 935
|
In the words of Jamie Hyneman; When in doubt, C4.
__________________
Current Rig: i7 D0 4.06GHz, X58 Sabertooth, 12GB RAM, GTX 680, Xonar D2X
|
|
|
|
|
27th Apr 2012, 08:48
|
#12 | |
|
WIIGII!
bit-tech Staff
Join Date: Dec 2007
Location: Bradford, UK
Posts: 1,838
|
Quote:
NOTE: Don't make it. It's fun, it's easy, but it's quite likely to result in a visit from the anti-terrorism squad - and while that sort of thing used to get you a slap on the wrist, these days the manufacturing of an "improvised explosive device" (what used to be known as "home-made fireworks") will likely get you a one-way ticket to Gitmo. Also, thermite is pretty vicious stuff - which is great for wrecking hard drives, but not so great for keeping fingers, toes and eyesight intact.
__________________
Co-author, Raspberry Pi User Guide, Meet the Raspberry Pi | gareth.halfacree.co.uk | twitter bit-tech news correspondent, Custom PC columnist I'm a filthy freelancer! Hire me! Last edited by Gareth Halfacree; 27th Apr 2012 at 14:19. |
|
|
|
|
|
27th Apr 2012, 08:58
|
#13 |
|
Hypermodder
Join Date: Apr 2006
Location: Leamington Spa
Posts: 935
|
TBH, if I'm retiring a drive, hammer and nail does the job pretty well. No melty or boom, but a lot safer and much more legal.
__________________
Current Rig: i7 D0 4.06GHz, X58 Sabertooth, 12GB RAM, GTX 680, Xonar D2X
|
|
|
|
|
27th Apr 2012, 08:59
|
#14 |
|
Minimodder
Join Date: Apr 2012
Posts: 28
|
I always zero my drives, do a deep scan just in case, then securely delete if it found anything (it never does.)
The kind of people with the tools to get past a zero write and actually be able to do something with the information are not likely to be buying up drives off eBay for their nefarious purpose, so I am pretty confident I've nothing to worry about. That said, at least most people at least attempt to delete the data. I bought a PS3 hard drive that was clearly someone's porn storage device and even worse a Samsung Galaxy that spent a large amount of it's life producing amateur porn! I swiftly deleted it all after watching it. |
|
|
|
|
27th Apr 2012, 14:16
|
#15 | |
|
You are always where you want to be
Join Date: Sep 2008
Posts: 517
|
Quote:
Im currently using a Recuva to rescue some data from a formatted drive. Takes an age to scan but once its finished its amazing what you can find. This drive had been re-formatted re-partitioned and a fresh copy of windows and all his app installed. id say I've found about 85% of the original content! |
|
|
|
|
28th Apr 2012, 20:09
|
#16 | |
|
Minimodder
Join Date: Jul 2011
Location: United Kingdom
Posts: 21
|
Quote:
The hard drives own internal secure erase feature is also a lot quicker than the methods DBAN uses. IIRC, I wiped a 2TB drive in approx. 1 hour using HDDErase. |
|
|
|
|
|
28th Apr 2012, 20:23
|
#17 |
|
I Mod, Therefore I Own
Join Date: Jun 2004
Location: Eastbourne ,East Sussex ,UK
Posts: 3,006
|
try googling for the swedish company that can recover data from any drive - they boast recovering data from hard drives that have been driven over by lorries , smashed to pieces and set on fire.
the US government approved method of destroying a data hard drive? dropping into acid till it melts. Overwriting xxx amount of times can still be read with enough effort.
__________________
i have a 3dfx voodoo5 6000 |
|
|
|
|
29th Apr 2012, 03:20
|
#18 |
|
Minimodder
Join Date: Jan 2006
Location: San Luis Obispo, CA, USA
Posts: 25
|
I usually use hdparm to erase drives. The only tricky thing: modern BIOSes tend to send the "freeze security state" command before handing control to the OS boot loader. You'll often either have to hotplug the drive (works fine for AHCI), or use a secondary SATA controller that doesn't send the "freeze" command.
Commands to run (using a random drive as an example, and replacing the serial number with "serialnumberhere"): hdparm -I /dev/disk/by-id/ata-ST9500420AS_serialnumberhere Capital i, not lowercase L. That will tell you something like this at the bottom: Security: Master password revision code = 65534 supported not enabled not locked not frozen not expired: security count supported: enhanced erase 102min for SECURITY ERASE UNIT. 102min for ENHANCED SECURITY ERASE UNIT. Then: hdparm --security-set-pass SOMEPASSWORDHERE /dev/disk/by-id/ata-ST9500420AS_serialnumberhere time hdparm --security-erase SOMEPASSWORDHERE /dev/disk/by-id/ata-ST9500420AS_serialnumberhere You can instead do --security-erase-enhanced, if the drive supports it. I run it through "time" -- if the thing takes way longer than it states it should, I'd imagine the drive is unhealthy. (One time I saw two different drives drives report a 30-minute erase, with me present, as taking 450 minutes -- likely due to clock changes.) EDIT: Also, there is an hdparm for Windows, but nowadays Windows sends the "freeze" command to all drives, as well -- even on alternate SATA controllers, I believe. Hence, you need the Linux hdparm. Last edited by DanaG; 29th Apr 2012 at 03:29. |
|
|
|
|
30th Apr 2012, 00:50
|
#19 |
|
Multimodder
Join Date: Oct 2009
Posts: 197
|
Well, wouldn't it be easier to just encrypt the whole drive and be done with it? Set the key to be as long as possible and just bash away at the keyboard like Shakespeare's monkeys. If anyone's going to throw that much resources at recovering your data, you're screwed either way.
|
|
|
|
|
1st May 2012, 21:05
|
#20 | |
|
Hypermodder
Join Date: Jun 2010
Location: Oxford, UK
Posts: 885
|
Quote:
|
|
|
|
|
 |
«
Previous Thread
|
Next Thread
»
| Thread Tools | |
|
|
All times are GMT. The time now is 10:11.
Powered by: vBulletin Version 3
Copyright ©2000 - 2013, Jelsoft Enterprises Ltd.
Powered by: vBulletin Version 3
Copyright ©2000 - 2013, Jelsoft Enterprises Ltd.
