Is physical data destruction completely secure?

Cybersecurity is a paramount issue facing businesses in the digital world. The average costs of a successful cybercrime in 2017 were roughly $1.3 million for large enterprises and $117,000 for small- to medium-sized businesses, according to Kaspersky Lab. These figures include the cost of data theft but do not encompass the additional potential price of a damaged reputation and ensuing legal action. Data also indicates that cyberattacks will become only more expensive and damaging in the coming years.

Defending an organization against cybercrime requires a multi-channel approach. Companies should be open to software solutions, employee training and hardware upgrades whenever necessary. However, another avenue for cybercrime is occasionally overlooked. Physical theft of connected mobile devices, laptops and even desktop computers can lead to an open pathway for cyberattacks. In addition, some businesses simply sell their used electronics without first doing a proper data cleanse.

But can information to completely and permanently removed from a hard drive?

Hard drives are traditional data collection units that can be altered in a number of ways. However, the question is "can data be permanently removed."Hard drives are traditional data collection units that can be altered in a number of ways. However, the question is “can data be permanently removed?”

The levels of data destruction
Deleting data is not as secure as some might assume. In actuality, when information on a computer is “deleted,” the files themselves are not immediately removed. Instead, the pathing to that information is expunged. The data is also designated as open space, so the computer will eventually overwrite it. However, until this rewrite occurs, it is relatively easy for the information to be restored and accessed by any tech-savvy user.

Fortunately for organizations trying to permanently dissolve their data, deletion is only the first step of the process. Lifewire recommended three additional methods to ensure that information remains lost.

First comes software – using a data destruction program on the hard drive. This method has been met with approval from the National Institute of Standards and Technology as a secure way to permanently remove information from a hard drive, according to DestructData. However, drawbacks include resource consumption, as this can be a time-intensive process. In addition, some overwriting tools can miss hidden data that is locked on the hard drive.

The most secure method to completely remove data is degaussing. Hard disk drives operate through magnetic fields, and degaussers alter those waves. The result is a drive that can never be read again. In fact, the computer will not even register it as a hard drive from that moment on. However, the downside in this process is twofold: One, the drive is useless after degaussing. Two, this method can on only hard disk drives. Solid state drives and flash media do not use magnetism in the same way, so a degausser will be ineffective.

The final option is to physically destroy the data drive. While many people think that this task can be done with patience and a hammer, it is unfortunately not that simple. Hard drives can be rebuilt with the right tools and expertise. According to the Computer World, NASA scientists were able to recover data from the charred wreckage of the Columbia shuttle after its disastrous explosion and crash in 2003.

Computers that are simply thrown out can still possess classified data, which can return to haunt the company.

The resiliency of hard drives
In short, it can be difficult to permanently expunge data from a hard drive. This reality is in part why businesses are opting for less internal data centers and more dependency on cloud solutions. According to TechTarget, cloud solutions represent a more secure method of data organization than traditional IT infrastructure.

While data can be safely deleted, the reality is, unless a degausser is used, there is always some chance of information recovery. Cybercriminals are becoming more sophisticated, and given the expensive nature of dealing with data breaches, it is understandable why the cloud is becoming the preferred solution.

Webinar: Data Protection Fundamentals To Strengthen Your Cybersecurity Strategy

The tournament may be crazy. But what’s crazier is the number of businesses that don’t have a solid cybersecurity strategy. That’s why we’re dedicating the month of March to helping as many organizations as we can strengthen their defense against modern security threats. We call it Security Madness.

In this webinar, you’ll learn the latest security landscape and current concerns, how to utilize the NIST Security Framework in your security strategy , how data backups fit into your security strategy and five steps to keeping your systems protected.

5 reasons why you need a backup service, even if you’re using Office 365

Enterprises around the world continue to move key applications to the cloud. But the speed and scope of migration presenting new challenges regarding data protection, service delivery, and compliance.

While most organizations have developed robust on-premises backup solutions, the failure to protect cloud data and ensure the availability of key services is widespread and incredibly alarming.

Contrary to popular belief, Office 365 and other software as a service (SaaS) models provide no real internal backup solutions.

While Microsoft has sound internal security and is capable of managing Office 365 infrastructure, third-party services are needed to ensure comprehensive data protection and compliance. Let’s take a look at 5 key reasons why you need a dedicated backup service when you’re using Office 365.

  1. Protection against internal accidents and threats

Regardless of how careful you are with your data, accidents can and do happen. Whether it’s the accidental deletion of a user, the incorrect merging of fields, or the failure of a key service, accidental deletion can be replicated across an entire network and lead to serious problems.

Simple accidents have been responsible for serious damage over the last few years, with an outage on Amazon Web Services costing up to $150 million dollars in 2017.

A backup service can restore data and services quickly and with minimum disruption, either to the on-premise Exchange or the Office 365 cloud network. In addition, dedicated backup services can protect you against internal security threats and manage the risk of malicious data loss or destruction.

  1. Protection against external security threats

Along with internal security threats, many businesses have experienced a rise in malware, viruses, data theft and other security threats from the outside.

Kaspersky blocked almost 800 million attacks from online resources across the globe in the first quarter of 2018 alone.

While Microsoft 365 and other cloud suites do have some security controls, they’re not robust or reliable enough to handle every case scenario. Having access to a high-grade, third-party backup service is the best way to reduce your exposure and manage the risks associated with data loss and destruction.

  1. Retention and recovery management

Cloud-based services are popular for many reasons, with Office 365 and other solutions featuring better integration between applications, more efficient data exchange and delivery, and the ability to utilize transparent services regardless of location.

Many of these benefits come at a cost, however, with enterprises losing control over data retention and recovery.

While Office 365 does have its own retention policies, they are ever-changing and difficult to manage. In fact, confusing and inaccessible data retention is one of the reasons why so many businesses refuse to move to the cloud.

You can have the best of both worlds with backup solutions that provide you with complete control over data retention and recovery management.

  1. Legal and compliance obligations

In addition to running a business and ensuring access to key data and services, organizations have a responsibility to meet certain legal and compliance obligations.

A cloud backup service allows you to retrieve important data instantly and with minimal disruption to critical business systems.

Whether it’s retrieving user data for law enforcement, accessing your mailbox during a legal action, or meeting regulatory compliance standards, dedicated cloud backup makes it easier to meet your responsibilities.

  1. Managing the migration process

With more businesses moving to the cloud all the time, the migration process is often presented as a seamless and natural transition.

While the benefits of SaaS are valid and well-known, managing hybrid email deployments and other critical services during migration can be more challenging than Microsoft would have you believe.

Whether you want a dedicated cloud solution or a mix of Office 365 and on-premises services, backup solutions like Veeam (our recommended solution) allow you to protect and manage your data during and after the transition in a way that makes the source location irrelevant.

The post 5 reasons why you need a backup service, even if you’re using Office 365 appeared first on ISG Technologies.

Source: my isg

Client Testimonial: Freddy’s Frozen Custard

Technology partnership helps fuel the growth of Freddy’s Frozen Custard

Industry: Food & Beverage
Client: Freddy’s Frozen Custard

swatch

In Partnership with

THE CHALLENGE

Enlisted by Freddy’s, ISG was tasked with transitioning the client’s infrastructure to a more secure and flexible system. The initial findings highlighted a few opportunities:

  • Evaluated the health of the client’s network security to find at risk data. If a server were to fail under the original network system, data would have been lost and unrecoverable.
  • Discovered the company was poised for growth, but infrastructure was unable to keep up with needs and goals.
  • Determined the transition to the new network had to take place outside of business hours.

 

THE SOLUTION

  • Utilized leading backup solution to migrate the company’s data to the cloud
  • Migrated an aging small business server to a updated and upgraded exchange server
  • Provided an internal SQL consultation
  • Deployed Cisco Meraki Technology across locations

 

RESULTS

Freddy’s is now ready for tremendous future growth with the flexibility and security of ISG’s cloud solution with our straightforward approach to implementation and willingness to execute outside of business hours, ensuring both client satisfaction and business success.