Peachy Posted September 16, 2003 Share Posted September 16, 2003 In another one of those stories that make you blanch, a couple of servers that were being auctioned on eBay were pulled after six hours when the seller realised the hard drives on one of them contained confidential bank customer info such as credit card numbers, home address and phone numbers. This should be a cautionary tale about how human error, indeed, low tech at that, can be the Achilles' Heel of information security. Quote Link to comment Share on other sites More sharing options...
Jeber Posted September 16, 2003 Share Posted September 16, 2003 2 thoughts:I hope the bank buys him a brand new, top of the line server for being so honest. I'm so glad that wasn't my bank! Quote Link to comment Share on other sites More sharing options...
Peachy Posted September 16, 2003 Author Share Posted September 16, 2003 If you read to the end, it says the bank bought him a couple of hard drives for his troubles. Quote Link to comment Share on other sites More sharing options...
nlinecomputers Posted September 16, 2003 Share Posted September 16, 2003 IMHO Banks should be require to destory old hard drives. No reselling allowed. Quote Link to comment Share on other sites More sharing options...
Peachy Posted September 16, 2003 Author Share Posted September 16, 2003 That, I'd agree with! Quote Link to comment Share on other sites More sharing options...
littlebone Posted September 16, 2003 Share Posted September 16, 2003 If you read to the end, it says the bank bought him a couple of hard drives for his troubles. Toronto StarHe contacted the bank late Friday afternoon, and a computer security team was dispatched to his house on Saturday to seize the hard drives. Both executives thanked Ellis, who was given new hard drives, for reporting the computers. I would say they just replaced the drives they seized. Quote Link to comment Share on other sites More sharing options...
Jeber Posted September 16, 2003 Share Posted September 16, 2003 I noticed that...but still say they owe him a new server for being so honest. Heck, think of the positive PR. It may help their members forget that their bank almost gave away their personal info. Quote Link to comment Share on other sites More sharing options...
epp_b Posted September 18, 2003 Share Posted September 18, 2003 IMHO Banks should be require to destory old hard drives. No reselling allowed.Either that or low level formatting them and checking them redundantly by several people to make absolute sure that no data is recoverable. Quote Link to comment Share on other sites More sharing options...
nlinecomputers Posted September 18, 2003 Share Posted September 18, 2003 epp_b,A low level format is useless, I've got plenty of tools that will undo such a format. Even some of the more sophisticated eraser tools can be circumvented by someone with the correct tools. There is too much valuable data on a bank hard drive to trust ANY method of wiping the data. Bank hard drives should visit a good old fashioned metal chipper or a furnace once they are “retired.†Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.