I just happened upon a CBS News video that gave me pause for thought.This once posted back in April however
I missed it until now.
The video talks about the fact that modern digital copy machines, those sold after 2002, contain a hard
drive.These hard drives store the images copied. These machines are traded in for new models and then
refurbed and resold.However, the hard drives more than likely are not getting scrubbed to remove the content.
One of the copy machines in the video notonly contained content on the hard drive but also still had documents
left on the copy bed.
This brings up some interesting discussions. What is on your copymachine hard drive? When it is sent in for
repair what information may be gleaned from a quick glance at the drive? Is your copy machine another potential
target to aid in identity theft?
Food for thought. Should there be processes and procedures in place for the disposal of these devices? Do you
know what other devices in your organization contain a hard drive or other storage device?Is there a process
for cleaning before disposal?
Let me know what you think? What does your company do if anything to ensure that no confidential data is
leaked by disposal of old equipment?
Deb Hale Long Lines, LLC
(c) SANS Internet Storm Center. http://isc.sans.org Creative Commons Attribution-Noncommercial 3.0 United States License.