Sensitive Information on Used Hard Drives
A research team bought over a hundred used hard drives for about a thousand dollars, and found more than half still contained personal and commercially sensitive information—some of it blackmail material.
People have repeated this experiment again and again, in a variety of countries, and the results have been pretty much the same. People don’t understand the risks of throwing away hard drives containing sensitive information.
What struck me about this story was the wide range of dirt they were able to dig up: insurance company records, a school’s file on its children, evidence of an affair, and so on. And although it cost them a grand to get this, they still had a grand’s worth of salable computer hardware at the end of their experiment.
Ckwop • March 2, 2005 9:55 AM
Anybody interested in how to clear this computer of junk before selling a harddrive should go to here:
http://dban.sourceforge.net/
It’s a free (as in beer and as in speech) product and obliterates any data from your hard-drive. It overwrites the disk with random looking data, although it isn’t cryptographically secure.
Even this simple countermeasure would be enough to seriously ramp up the cost to a woodbie attacker.
Simon.