Sponsored by Recovering Confidential Data from a Re-Formatted Hard Drive; How to Really Erase Data © 2015 Monterey Technology Group Inc.
Sponsored byRecovering Confidential Data
from a Re-Formatted Hard Drive; How to Really Erase Data
© 2015 Monterey Technology Group Inc.
Thanks to
Made possible by
Jonathan BrewFredrik Forslund
© 2015 Monterey Technology Group Inc.
Preview of key points
Recovering “deleted” files Recovering formatted drive How to erase data
Enterprise management
Recovering “permanently” deleted files
1. Start with normal PC with various files2. “Permanently” delete some files3. Recover
Recovering formatted drive
4. Format entire drive5. Data recovered with deeper scan6. Restored data confirmed
Real data erasure
7. Individual files erased with Blancco File8. Files unrecoverable9. Entire drive erased with Blancco 510.Files unrecoverable
Bottom line
Deleted data is recoverable Joint Study by Kroll Ontrack and Blancco available
October 7 http://
www2.blancco.com/leftovers-data-security-study Erasing one drive
Fairly easy with free tools Enterprise questions
How do you inventory all your storage devices globally for entire organization?
How do you erase, really erase it, Inexpensively Without destroying good hardware
How do you centrally and remotely manage erasure?
How do you verify? How do you prove for compliance?
© 2015 Monterey Technology Group Inc.
What is it all about?
Data leaks cost billions every year.
Threats!
Unless you proactively erase data in your environment, external or internal attackers as well as malware can maliciously perform data recovery that lead to data leaks.
Data erasureincreasingly important
National Data Protection
LawEU Data
Protection Regulation
2015
„Right to
Erasure“ISO Standard 27001,
27040 etc.Sarbanes-
Oxley
HIPAA(Health
Insurance Portabiltiy
and Accountability
)
Credit Card Industry PCI-DSS
What is Certified Data Erasure?
Format or Delete Data Erasure
Auditable Erasure Reports
absolute key
NIST Special Publication 800-88
“Following sanitization, a certificate of media disposition should be completed for each piece of electronic media that has been sanitized.”
“One to rule them all”
One standardized process for all your data erasure needs.