Slashdot Mirror

← Back to Stories (view on slashdot.org)

Not-So-Clean Hard Drives For Sale

Posted by timothy on from the oops dept.

Saeed al-Sahaf writes "The Register is running a story about a security consulting company that as part of a study bought hard drives and laptops on eBay, and then was able to recover highly sensitive data including customer databases, financial information, payroll records, personnel details, login codes, and admin passwords for their secure Intranet site. This is a bit scary considering all of these drives were supposedly formatted and sold for surplus by major companies (although few of us actually use the multiple formatting standards of the DoD). Looks like it's hardly necessary for crooks to get at your private information, although I sure industrial espionage spooks have probably done this for awhile." Shades of the recent post about recovering sensitive contents from swap partitions.

36 of 436 comments (clear)

  1. Oh no... by Snad · · Score: 5, Funny

    To whoever bought my old hard drive on eBay, those pictures were all for research purposes only.

    Sincerely
    Peter Townshend

    1. Re:Oh no... by Ateryx · · Score: 5, Funny

      I swear on my life, every hard drive I've gotten from a garage sale has had some sort of horse porn on it.
      After the 4th out of 5 harddrive I was scanning had horse porn I just figured it'd be better to not look anymore.

      --
      "The truth suffers from too much analysis"
    2. Re:Oh no... by Txiasaeia · · Score: 2, Funny

      Perhaps you should move away from Wisconsin, then!

      --
      Condemnant quod non intellegunt.
    3. Re:Oh no... by Anonymous Coward · · Score: 5, Funny

      I swear on my life, every hard drive I've gotten from a garage sale has had some sort of horse porn on it.
      After the 4th out of 5 harddrive I was scanning had horse porn I just figured it'd be better to not look anymore.

      I remember my first laptop, a 386sx with vga b&w screen. It was so spiffy I wanted some pictures to show it off, any pictures would do. This was the late 1980s and the only gifs you could find on local BBSs were porn. So I got some porn. In dennies I was asked if my computer could display pictures. I said "Sure here's an image of a woman having sex with a horse". The waitress was so impressed, the quality, the detail, yet was somewhat disusted. So not to apear sexist, I showed here another one "here's a picture of a man having sex with a horse". She asked me if I had some pictures without horses, I had to say "No, the only pictures you can get for computers are of people and horses having sex".

    4. Re:Oh no... by mikael · · Score: 2, Funny

      Scary stuff indeed. I had to take our pet our local vet. Very friendly girl, but she had all kinds of animal porn all over the walls of the waiting room; horses, cats, dogs, gerbils, even budgies!!! Even the screensaver of her PC was showing animal porn. The mind boggles...

      --
      Vintage computer adverts: http://www.vintageadbrowser.com/computers-and-software-ads
  2. Hard dives. by Raven42rac · · Score: 4, Funny

    You know, there are signs on pools for this very reason.

    --
    I hate sigs.
  3. Slashdot Spellchecker.... by Papatoast · · Score: 4, Funny

    has taken a "hard dive".

    --
    We were somewhere around Barstow on the edge of the desert when the drugs began to take hold. - HST
    1. Re:Slashdot Spellchecker.... by Brandybuck · · Score: 3, Funny

      Nobody is this bad of a speller. The purpose is beyond my comprehension, but it can only be deliberate. I'm going to go through past stories and try to crack the code. There's got to be a secret buried in the mispellings...

      --
      Don't blame me, I didn't vote for either of them!
    2. Re:Slashdot Spellchecker.... by mdielmann · · Score: 3, Funny

      Here's the code. Take every letter that is missed, and add it to your message. If an extra letter is added to a word, take a letter off your message. Repeat. If you follow it long enough, you will get the following message: "You are a loser with too much time on your hands." Don't ask how I know this.

      --
      Sure I'm paranoid, but am I paranoid enough?
  4. not a joke by real_smiff · · Score: 2, Funny
    Step1: buy used hard drives
    Step2: ???
    Step3: profit

    let's discuss Step2

    --

    This is my Sig, this is my Gun. One is for Slashdot and one is for Fun.

  5. old computer by keadie · · Score: 2, Funny

    I bought a old computer once that had a database of about 200 names, address, phone numbers, DOBs and SSNs. They didn't delete anything on the hard drive. It had NT on it, I just used linux to check what was on it for grits and shingles. That company is lucky that I'm not evil...any opening bids?

  6. In other news... by Nicholas+Evans · · Score: 4, Funny

    In other news, SCO recently purchased a used PC from eBay containing its IP and e-mails sent by Linus Torvalds proving that he stole SCO's IP for the linux kernel, and that he didn't actually write the linux kernel.

    What? Troll, am I? Well, it's slashdot. Someone had to poke fun at SCO. Sue me.

    --
    The Yasashii Syndicate ||
  7. hard DIVES? by spir0 · · Score: 1, Funny

    timothy... you just took one buddy.

    --
    The reason girls and Windows users don't understand UNIX is because all the documentation is in Man files.
  8. Re:If you're really paranoid about your data... by nomadic · · Score: 5, Funny

    Rather than make a few tens of dollars selling an old drive, take it apart, and burn the platters until they're nothing more than dust. Problem solved.
    ...then mix the dust with concrete and water, let it harden into several small chunks, charter a ship around the world, and drop each chunk in a different spot in the ocean.

  9. Re:pr0n by martinX · · Score: 2, Funny

    My homemade pr0n is very unsafe. Don't try this one at home unless you're a trained professional!

    --
    When they came for the communists, I said "He's next door. Take him away. Goddam commies."
  10. I know I'm OK! by Anonymous Coward · · Score: 3, Funny

    Stories like this really scare me, but I know I'm ok - I format my hard drive with my licenced Microsoft Windows XP CD, so I know there's no sensitive data left to be found! That's one of the many benefits of running secure and professionally developed software like windows.

    1. Re:I know I'm OK! by Anonymous Coward · · Score: 1, Funny
      You hear that LOAD ROAR?

      The deafening SONIC BOOM?

      Feel the HURRICANE FORCE WINDS?

      That's the Joke flying right over your head.

  11. Re:Similar to MIT students in Jan 2003 by Snad · · Score: 5, Funny

    buy some hard drives on eBay and you could end up with some cool data!

    Of course you are more likely to buy some hard drives on eBay and end up with the entire history of some guy's girlfriend's medical problems in old e-mails, a small collection of old cached Slashdot pages, and some rather naff Flash animations.

  12. Why SlashDot keeps posting dupes! by kidMike · · Score: 5, Funny

    Maybe someone bought the old hard drives from a /. server, grabbed the admin passwords for the site, and keeps posting the old articles they recover! It makes perfect sense. Surely the admins can't keep making these mistakes over and over... err, nebbermind. kM

    --
    -- You can't drink all day. (Unless you start in the morning...)
  13. These people obviously weren't by Anonymous Coward · · Score: 0, Funny

    using a state of the art solution from JBoss, otherwise they would not have been in this situation in the first place. Only with patented technology from JBoss can you truly get rid of sensitive data on your hard drive. No competition can compare to the advanced solutions offered by JBoss. Nothing even comes close. I do not work for JBoss.

  14. PowerPoint presentations? by pyrrhonist · · Score: 5, Funny
    15 Microsoft PowerPoint presentations containing highly sensitive company information.

    Well, that's BS. Nothing even remotely important gets put into a PowerPoint presentation.

    I know, I've been to meetings. God, have I been to meetings...

    --
    Show me on the doll where his noodly appendage touched you.
  15. Re:Eraser (GPL) by Exiler · · Score: 5, Funny

    Label it? You mean, something like "Windows Installation" or "Intrarnet Access" and leave it laying around school?

    --
    Banaaaana!
  16. Um... by Dwonis · · Score: 5, Funny
    Naked horses != horse porn...

    Horses don't normally wear clothes, you know.

    1. Re:Um... by jpetts · · Score: 5, Funny

      Naked horses != horse porn...

      Horses don't normally wear clothes, you know.

      You are so wrong!

      --
      Call me old fashioned, but I like a dump to be as memorable as it is devastating - Bender
  17. Re:If you're really paranoid about your data... by prockcore · · Score: 5, Funny

    then mix the dust with concrete and water, let it harden into several small chunks, charter a ship around the world, and drop each chunk in a different spot in the ocean.

    Damn. You're the guy responsible for every Adventure game ever.

    Now I gotta go collect this guy's harddrive and reassemble it so I can get the Master Sword.

  18. Skeet shooting. by EmbeddedJanitor · · Score: 2, Funny
    Take out the platters and load up the shotgun.

    Geek hint: Do this in that mythical place called "outide", unless you have a very understanding landlord/mother.

    --
    Engineering is the art of compromise.
  19. Re:May or may not help... by hool5400 · · Score: 2, Funny

    Do all that, and then smash it with a hammer into bit size pieces. And then throw those pieces to the bottom of various oceans.

    Then you are safe...maybe.

    --

    Remember, it takes 42 muscles to frown and only 4 to pull the trigger of a sniper rifle.
  20. Re:A Large Multinational Bank had this problem by irokitt · · Score: 4, Funny

    Yep, found a computer in my school parking lot-someone didn't want to pay the nifty $50 fee San Diego residents are required to fork out to recycle old computers. Hey Kyle, if you're reading this, your data is safe with me;)

    --
    If my answers frighten you, stop asking scary questions.
  21. Re:Little bits of metal == the only way to go by real_smiff · · Score: 5, Funny
    phew, good thing you dissolved that platter dust! otherwise, obviously, we'd have terrorists glueing the bits* back together and getting the data back. i mean, if you'd stopped after grinding them down with the belt sander, i dread to think where we'd be..

    *excuse the pun, but it's kind of fitting. but please note the sarcasm.

    --

    This is my Sig, this is my Gun. One is for Slashdot and one is for Fun.

  22. A use for all those pictures full of pink bits. by B.D.Mills · · Score: 4, Funny

    Or you can do the following:
    (1) wipe the drive with ones
    (2) wipe the drive with zeroes
    (3) fill the drive with p0rn
    (4) wipe the drive with ones
    (5) wipe the drive with zeroes

    When they get to the p0rn layer, the chances are good that they will stop looking further. Once they find all those goodies you planted at step 3, they won't look for all those financial records.

    --

    The only thing necessary for the triumph of evil is for good men to do nothing. - Edmund Burke
  23. Re:Just Destroy The fucking Things! by Anonymous Coward · · Score: 1, Funny

    Are companies really so desperate for money that X?

    Yes (for almost any value of X).

  24. Re:Active KillDisk by DMUTPeregrine · · Score: 2, Funny

    Hmm. Well, I format, change partition type, overwrite the entire disk contents several times, then format again. If I'm really feeling paranoid I install windows, and hook it up to the internet without a firewall or any patches. If there is any data left on it after a day, i'd be quite surprised.

    --
    Not a sentence!
  25. Re:Darik's Boot 'n' nuke by Junior+J.+Junior+III · · Score: 2, Funny

    I always thought it was funny to see the phrase "industrial-strength steel" -- as though there was steel on the market that *wasn't* produced by heavy industry... "Oh yeah, sure, I have a little smelter in my basement, but I only use that for light applications, you wanna do this job right you gotta use industrial strength steel!"

    --
    You see? You see? Your stupid minds! Stupid! Stupid!
  26. Re:Low level it. by Anonymous Coward · · Score: 1, Funny

    And let's not forget about Dihydrogen Monoxide. That stuff is everywhere and very lethal to inhale.

  27. Re:Low level it. by binary+paladin · · Score: 2, Funny

    My friends and I take our old drives out for target practice. Some .357 and .308 usually do the trick. If someone can get my chat logs off of that then more power to them.

    That's what I call a format.

  28. Re:Low level it. by Lancer · · Score: 2, Funny
    Phone handsets or doorknobs are generally *far* worse from a sanitary perspective than just about anything else.

    No kidding! I once read about the population of an entire planet that was killed off due to a particularly nasty virus contracted from a filthy telephone, embarassingly after they had sent off all of their telephone sanitizers to colonize a new world.

    You can't make stuff like that up...

    --
    Outside of a dog, a book is man's best friend. Inside a dog it's too dark to read. - Groucho Marx