Beware of the risks of selling old hardware

Beware of the risks of selling old hardware

Sunday, 12 May, 2019

Consumers and businesses are inadvertently putting themselves at risk from cybercriminals when selling storage drives and other devices in the second-hand hardware market, according to a new report.

The report, catchily titled ‘Privacy for Sale – Data Security Risks in the Second-Hand IT Asset Marketplace’, was produced by Blancco Technology Group. It outlined the extent to which devices still contained sensitive information that could be exploited by cybercriminals even after wiping them.

Blancco, in conjunction with Ontrack analysed 159 leading brand drives that had been bought on eBay in the US, UK, Germany and Finland and found that almost half still held sensitive data.

A substantial 15% still held personally identifiable information such as birth certificates, photographs, names and email addresses, despite the fact that many sellers had used the proper data sanitisation methods that supposedly ensured they were wiped clean.

Among the data recovered from second-hand drives Blancco found a drive from a software developer that had high-level government security clearance still contained scanned passports, CVs and financial records. Another contained more than 32,000 photos, while a travel company’s still held 5GB of email conversations.

Blancco said that this was extremely worrying as it showed that while sellers are doing their bit the methods of sanitisation were clearly inadequate.

As we all know deleting data can be extremely difficult. Most deletion systems tend only remove pointers to the data and not the data itself. And destruction of the hardware doesn’t necessarily remove the data either. While it may be difficult to read the data from the damaged hardware and the media may not be able to be plugged in easily it doesn’t mean the data has gone away.

Those in the know recommend getting a professional to do the wiping for you. But this can be expensive. Instead they suggest you should wipe and rewrite every trace of data at least three-times. This may seem like overkill, but it is a necessary task to have peace of mind that the data you have will be truly removed.

Experts recommend you use secure data erasure software. Some overwrite an entire drive with meaningless random characters. They also recommend you try disk encryption software such as Apple FileVault and Microsoft BitLocker, which will secure the drive with hard-to-guess password.

TG Bamford author picture


A veteran freelance journalist writing extensively on internet news and cybersecurity.

News What's the story?

Keep up with the latest developments in UK broadband.

UK 5G network goes live – are you up to speed?

Here's everything you need to know about the new mobile broadband network.

UK 5G network goes live – are you up to speed? Read more

TalkTalk offers exclusive £80 reward to new fibre customers

The huge bonus is available to anyone signing up for a 'Faster Fibre' bundle through

Read more

TikTok ‘gifts’ empty kids piggy banks

Children are most vulnerable to 'influencer' donation pleas

Read more

Netflix ruins 90’s cartoon, enrages internet

The streaming giant came in for criticism for 'straightwashing' Japanese cult classic anime.

Read more

Porn-block pushed back by clerical errors

Further delays to the child-protection measure, with the process mocked as an 'utter shambles'.

Read more

How to watch Wimbledon online for free

How to make sure you don't miss out on the action from your favourite sports stars.

How to watch Wimbledon online for free Read more

Fast fines for ISPs could end the “Loyalty Penalty”

But could the proposed measures mean worse deals for those who shop around?

Read more

Boris Johnson mocks full-fibre roll-out plans

The likely next PM boasts plans to beat current targets by 8 years, but is it all just hot air?

Read more

Broadband and phone companies to put Fairness first

Telecoms providers commit to raising standards.

Read more

UK to get legal right to decent and affordable broadband

New legislation will ensure minimum speeds for every UK household.

Read more

GDPR – One year on

The landmark legislation gave people the ‘right to know’ when their data had been hacked.

Read more

Help Learn with us

Make the most of the internet with our broadband library.

How to childproof your home broadband

How to childproof your home broadband Read more

Why Ofcom’s USO is more than pie in the sky

Read more

Protecting your small business against cyber attacks

Read more

Could 5G end fixed-line home broadband?

Read more

How broadband availability varies across the UK

Read more

Which social media platforms should I be on?

Read more

Will you get online on holiday?

Stay connected during your get-away.

Will you get online on holiday? Read more

Make the most of your broadband overnight

Read more

The main causes of slow internet connections

Slow broadband can be more than just an irritant - but what causes it, and what can we do to fight back?

Read more

Do you need to ramp up your broadband controls?

Read more

The different types of home computer

Read more
Back To Top