On-Call-IT Assists In Government Data Destruction 163
covaro writes "Seems those on-site computer services may be helping to cover up government dirty deeds these days. The Wall Street Journal reports: 'Investigators learned that [Office of Special Counsel head Scott Bloch, who has been under investigation since 2005] erased all the files on his office personal computer late last year. They are now trying to determine whether the deletions were improper or part of a cover-up, lawyers close to the case said ... Bypassing his agency's computer technicians, Mr. Bloch phoned for Geeks on Call, the mobile PC-help service ... Bloch had his computer's hard disk completely cleansed using a "seven-level" wipe: a thorough scrubbing that conforms to Defense Department data-security standards. The process makes it nearly impossible for forensics experts to restore the data later.'"
Re:Why not just by a new hard disc (Score:3, Informative)
Sledge hammer applied repeatedly.
Industrial shredder.
Thermite.
Persistant application of a grinding wheel.
Personally tossing in a large crucible of molten steel.
Fuming sulfuric acid.
We may not all have the resources to do all of the above, but I'd bet most of us can find a way to physically reduce a HDD to very very small chunks, if not completely dissolving/melting it at a molecular level.
Re:Hire someone??? (Score:3, Informative)
Replace the HDD and somebody somewhere would know and think I stole the disk or data, wipe it and I just say I was removing porn. Porn would get me fired, stealing the HDD or data would get me fired and thrown in jail.
Re:Why not just by a new hard disc (Score:5, Informative)
BTW, nitric acid would likely be more effective than sulphuric. And a mix of nitric and hydrochloric (commonly known as aqua regia) will probably do an even better job. The nitric acts as an oxidizing agent while the hydrochloric can help complex some of the resulting metal ions making the mixture more effective. Sulphuric would probably just get rid of some of the organic coatings in the time that it would take the aqua regia to chew through all the metals.
Re:Why not just by a new hard disc (Score:1, Informative)
Re:Why not just by a new hard disc (Score:3, Informative)
Just in case you are wondering what I was trying to hide, it was bank account details from about ten years ago.
Re:Exactly as I suspected (Score:3, Informative)
Also I wonder if this does not hasten the death of the drives it is used on.
Most new HDDs have intenral "secure wipe" function (Score:2, Informative)
Takes a few minutes, and is allegedly more secure than DBAN but still not as secure as physical destruction.
You're welcome.
Re:Why not just by a new hard disc (Score:3, Informative)
Re:Exactly as I suspected (Score:3, Informative)
Re:Security depends on attack capabilities (Score:4, Informative)
[PDF] Recovering Unrecoverable Data [actionfront.com]
Unless the company has made great advances in the product they advertise at the end of the paper, you can be sure that two passes are more than enough to prevent anyone from recovering your data. Intelligence agencies are more likely to kidnap and torture you than invest the extraordinary time and money to get your bits back.
"Overwriting Everything" is surprisingly hard (Score:3, Informative)
So if you want to overwrite everything on a disk, you may need to talk to the disk controller at a lower-than-usual level rather than using your regular OS tools, and there still may be blocks that the controller can't successfully overwrite.