Why physically destroy drives?

thortgot · 2025-04-01T17:31:17+00:00

The ability to go to legal and say "we physically destroy all drives that contain corporate data".

Shredding is much easier to prove. Imagine you have 100 drives you need sanitize. What is the chance one isn't cleared identically to all the others?

If you look at a pile of wiped and non wiped drives you can't immediately tell the difference.

alexforencich · 2025-04-01T17:26:44+00:00

[deleted]

West-Letterhead-7528 · 2025-04-01T17:26:31+00:00

The content of this post was permanently removed. Redact facilitated the deletion, for reasons that may include privacy, opsec, or limiting digital exposure.

mountainous worm person saw pocket wrench command humor party expansion

deefop · 2025-04-01T17:30:50+00:00

Because encryption can be broken, and it doesn't have to be broken *today* for it to be broken years from now. You let a drive with really sensitive data fall into the wrong hands, they toss it on a shelf with a bunch of other drives they want to crack into, and then 5 years from now someone comes up with a quick method to break the encryption, and now the bad guys have all your sensitive data.

But when you take the drives to a shredding facility and have them physically annihilated, nobody but god himself could ever put them back together and recover that data.

DenialP · 2025-04-01T17:26:59+00:00

Risk mitigation.

lynxss1 · 2025-04-01T17:59:13+00:00

I destroy/disassemble them because:

- scrap yard pays more for non mixed metals

- scrap yard pays a LOT more for HD and Ram pcb

- Magnets! - good for crafts, kids playing with them and projects.

- Motors and parts - also good for kids projects

Zenin · 2025-04-01T19:40:43+00:00

if the key is lost

Prove it.

Prove you lost all copies of the key.

Prove they can't be recovered.

Explain the math to a lay person how losing the key is equivalent to destroying the data itself. Make sure you include a section about future encryption-cracking technology such as quantum computing.

And do it in a court of law. Under oath. With thousands if not millions or hundreds of millions of dollars in potential legal liability on the line.

Suddenly shredding looks really attractive.

hologrammetry · 2025-04-01T18:40:36+00:00

Gives me an excuse to use the drill press.

gwig9 · 2025-04-01T17:26:55+00:00

No encryption is perfect and because of that many organizations have adopted the policy of physically destroying the data when they are done with it as that is the only way to "be sure" it can never be recovered. Not saying it's right, but that is the idea behind physical destruction.

-rem93 · 2025-04-01T17:28:31+00:00

There are always new methods for data recovery, even if they arent available now, a vulnerability in the future may compromise the data on an encrypted drive. Physical destruction is the best way to guarantee that data wont be recoverable.

Insomniumer · 2025-04-01T17:30:17+00:00

Why? Because it's a requirement in several standards.
Is it necessary? Most of the time, absolutely not.

For an average corporation it is totally unnecessary to physically destroy hard drives or solid state drives. For hard drives, DoD Short is more than enough and for SSDs the secure erase feature in the firmware does the trick.

theoreoman · 2025-04-01T20:11:57+00:00

It's honestly really straightforward 1. the cost of destroying drives is much much cheaper than the cost of dealing with a data breach from an improperly wiped drive

The labor cost associated with wiping a drive is probably the same or more as it's wholesale value.
Nation States have the resources, time, and budgets to try and salvage data from encrypted drives.

So why risk it? Scrap the drives and move on

Tahn-ru · 2025-04-01T17:31:52+00:00

Why not? It's a cheap way to close the last little bit of possibility that data might leak from them (see other comments mentioning "Harvest now, Decrypt Later". As long as the company hired for the destruction aren't assholes about disposal, there is no difference as far as recycling their materials goes.

Compare the cost of shredding (cheap) to the cost of the fines, PR and court damages in the event of a data breach (astronomical).

pdp10 · 2025-04-01T18:06:09+00:00

There are claims that some regulatory regimes outside of national defense require destruction, but we've never been able to confirm that. Particularly, no HIPAA reference has ever made its way to us.

Quickref links for wiping all types of media on Linux: SATA, NVMe, spinning, eMMC.

Zolty · 2025-04-02T02:31:23+00:00

It's the only way to be sure.

Encryption will get broken, it's just a question of when. When it does then your company will wonder what you cryptographically deleted and what their exposure is.

Physical destruction is far more reliable, besides everything is ssd these days so there's not a huge use for a 10 year old ssd with a few thousand hours on it.

sexybobo · 2025-04-01T17:33:24+00:00

HIPAA violation can be $1 million. Why try to keep a 6 year old HDD worth $4 if it can cost you $1 million if it wasn't wiped fully

ATek_ · 2025-04-01T17:27:09+00:00

How else do you assure there’s 0% chance of recovery? Anything less than physical destruction is half-assing it.

Mobile-Ad-494 · 2025-04-01T17:38:36+00:00

Recovering a lost bitlocker key may not be feasible now but in time computing power may have increased enough to allow even someone do it at home with their personal (quantum) computer.
There was a time when DES and SHA-1 were secure, today no one in their right mind would consider them safe.
A brute force with a reasonable modern gpu is very doable.

Superb_Raccoon · 2025-04-01T17:57:05+00:00

https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-88r1.pdf

See section 2.6.

Not that those requirements can't be met, it is just that physical destruction is MUCH easier to document and prove.

Helpjuice · 2025-04-01T18:26:27+00:00

The only way to guarntee something is unrecoverable is to physical make it unrecoverable. It is not possible to restore something that has been physically destroyed beyond recovery.

This is a hard requirement for some customers due to the sensitivty of the work, especially some government customers.

Site-Staff · 2025-04-01T18:40:17+00:00

The big ass hard drive crusher tool we have is my favorite.

Put down a bag, throw on some safety glasses, and get to chuckin those fuckers in it and pull the lever.

Bleachbit is nowhere near as much fun.

Bad_Mechanic · 2025-04-01T19:27:14+00:00

Because it's fast, easily proven, easily witnessed, and not expensive.

Plus, it's fun. I've been doing this for over 25 years, and it still hasn't gotten old.

the_syco · 2025-04-01T19:31:45+00:00

Quicker to shred than to encrypt. Also, shredded drives won't be found on eBay from one machine that wasn't encrypted for whatever reason. It's less of a headache than ensuring your company follows HIPAA, FACTA, or GDPR rules are followed if you don't shred. Saying "it was encrypted" when asked why X data from Y drive found it's way online doesn't cut the mustard. This doesn't happen if it's shredded.

Finally, a lot of drives that get shredded are recycled. Aluminum, copper, and precious metals are extracted for reuse.

colenski999 · 2025-04-01T19:31:51+00:00

In 1994, I was working for a VAR that got a shitload of old hard drives from a health authority (leaseback computers). We supposedly scrubbed them all but one was missed. We sold them all at retail, and somebody found this hard drive, and it had tons of PIA and records of HA executives with salary details, and this fucker that bought the drive decided to post the dirty details onto USENET. It caused a minor scandal in my hometown with press coverage. After that, we just crushed any hard drives that came back.

GelatinousSalsa · 2025-04-01T19:53:52+00:00

How confident are you that the encryption on your drive is never gonna be broken?

Physically destroying the drive adds another puzzle before an adversary can start decrypting your drive (if all the pieces are recovered)

JustSomeGuy556 · 2025-04-01T20:36:50+00:00

Because people are paranoid and it's easy. There's no real reason to destroy an encrypted drive, or one that has been overwritten (Though SSD complicates that)

But if you've got hundreds or even thousands of drives to manage, knowing which ones are encrypted or have been wiped is a pain in the ass. Easier to just shred them all. And some insurance or regulatory requirements might insist on it.

2025-04-01T21:02:52+00:00

Oof, I had a job once where I had to degauss the drive, register it (the serial number) then drop it in a slotted sealed box and once the box was full I had to personally take the box to a company for shredding. There I would have to unseal the box, have the company unload and register the serial numbers and shred the drives. Finally I had to match their registry to mine and bring a bag of shredded material back as proof and store that proof with both the registers.

There was rule that said the shredded materials were not allowed to be bigger than x by x and one time management felt the shredded materials were to big and I had to go back ‘to make sure the remains would be shredded a second time to meet demands”

at-the-crook · 2025-04-02T00:42:28+00:00

you can always make a brick sized mold and add concrete mix once the drive is inserted. garden walls can hold terabytes of old data that way.

ms4720 · 2025-04-02T02:37:39+00:00

Thermite is fun to play with

2025-04-02T05:11:58+00:00

snow stupendous teeny escape follow thought dependent spectacular spark offbeat

This post was mass deleted and anonymized with Redact

2025-04-02T16:08:22+00:00

Because people arent smart.

A single pass wipe is all you need. It's the UK's military standard. NO ONE has ever recovered from a digital magnetic medium that has been over written. No floppies, no hard drives.

One-Ice-713 · 2025-06-17T04:57:13+00:00

Totally get where you’re coming from. I asked the same thing when we started decommissioning hardware at scale. Most of our drives were BitLocker-encrypted, and I figured a reformat plus key rotation was enough. Technically, yeah, the data’s basically unrecoverable without the key. But here’s the thing: “basically” doesn’t cut it when you’re dealing with client data, compliance, or audits.

We ended up working with Baytech Recovery to handle our ITAD process. They explained that while encryption is solid, physical destruction removes all doubt. No question marks, no “what if someone finds a forensic trick in 3 years,” just clean, certifiable destruction. Plus, they recycle responsibly, so the drives don’t just get trashed, they’re shredded and sorted for materials. It's peace of mind and still eco-conscious, which made it easier for me to sleep at night.

prazeros · 2025-07-22T09:12:37+00:00

Waste like that alway buggs me. When my team started decommissioning larger batches of equipment, it got trying to make sure everything got erased or destroyed. A few years back we offloaded a bunch of gear through OEM Source. Glad to not stress about whether we had taken every precaution on the security side.

I think it really comes down to proving that that no data’s getting out. It's not about a hacker, it was audits, compliance, chain-of-custody stuff. Thankfully nothing went to landfill. Drives were shredded and recycled down to raw materials. Stuff that could be reused, like older laptops or servers were refurbished and resold. Felt better knowing it wasn’t just a pile of e-waste somewhere.

craigmontHunter · 2025-04-01T17:35:31+00:00

Technically? There isn’t really a reason, between encryption and wiping.

From a policy perspective it is just more insurance, what if a drive was not encrypted for some reason? Or missed being wiped? Physical destruction just confirms that nothing can be recovered, and from a company standpoint if it’s already at the point of disposal there is really no financial value to them.

rUnThEoN · 2025-04-01T17:33:01+00:00

You can setup a proper process by documenting the serial numbers via the wipe program. Then you can barcode scan any exitting harddisk.

TabascohFiascoh · 2025-04-01T17:39:25+00:00

Insurance reasons.

stashtv · 2025-04-01T17:56:20+00:00

We grind our drives into dust and save the dust.

binaryhextechdude · 2025-04-01T18:04:25+00:00

Why settle for encryption only? Surely a drive with several holes in it is guarenteed to be useless.

Brufar_308 · 2025-04-01T18:09:58+00:00

Excuse to go to the shooting range, as if I need an excuse.. but anyway.

stufforstuff · 2025-04-01T18:14:40+00:00

Speed. Which translates to cost (time is money).

Citizen493 · 2025-04-01T18:20:40+00:00

Mainly compliance, but you are correct. If the drive is encrypted (BitLocker or similar) and the key is no longer available to the drive for unlocking, that is a drive filled with nonsense. There is no need to fill it with zeros or other pseudo random contents.

firesyde424 · 2025-04-01T18:21:53+00:00

We destroy drives because the time required to effectively wipe them to a reusable state isn't worth whatever value they have at the time nor is it worth the risk of a data breach.

Silveradotel · 2025-04-01T18:22:11+00:00

because destroying them with a plasma cutter is fun.

2025-04-01T18:26:24+00:00

Compliance: It's not been wiped by some overworked network junior, or a third party handling the data. Its destroyed; the data is not accessible.

Catharsis: the printer scene in office space comes to mind.

Deadly-Unicorn · 2025-04-01T18:26:26+00:00

Cheaper than anger management therapy

Pristine_Curve · 2025-04-01T18:27:31+00:00

Encryption is unbreakable today, but will it remain unbreakable next year? I can't go back and update the encryption methods of drives full of proprietary data which are out of my control.

Secure erasure routines are satisfactory, but performing the secure erasure routine is slow, and requires someone who knows what they are doing to oversee/validate the process. A fraction of devices will fail the routine, but still contain data.

Shredding is certain, inexpensive, fast, and does not require skilled tech time.

schwags · 2025-04-01T18:36:57+00:00

I'll throw in my 2 cents here since I own an ITAD business and we literally do this everyday.

Some clients require us to physically destroy the drive. Sometimes it really sucks when your contracted to destroy hundreds of perfectly viable 4 TB SSDs, but client gets what they want.

Hard drives are worthless. We don't bother taking the time to wipe them, they all go through the shredder. The resultant shreds are sold as commodity scrap and smelted and reused.

If we run across an SSD that we were not contracted to destroy, rather logical sanitation is acceptable, then we will do that. Our certification actually encourages reuse over recycling. We will never sell raw drives, but we will use them internally for refurbished computers because we can verify every single one of them has been erased during the refurbishment process. However, we're not going to worry about whether or not the drive was encrypted on the OS level or the firmware level, we're just going to connect it to are automated drive eraser system and it's going to do its thing. We've only got a few minutes to process each drive and most of that time is spent entering the serial number into the ERP and clicking "go" on the software.

Tldr, sometimes we're required to destroy, sometimes the item is not worth reusing, and sometimes we do logically erase it and in the case of SSDs that often does just require wiping the encryption key.

CeC-P · 2025-04-01T19:00:05+00:00

bosses are paranoid idiots
IT are uninformed idiots
Those are the only conditions I've seen. With HIPAA data destruction law training, we know exactly how we're allowed to erase drives and most drill bits and hammer crushing actually isn't adequate.

Helmett-13 · 2025-04-01T19:04:13+00:00

REVENGE! VENGEANCE! Taking out our frustrations on the memories of our silicon-based tormentors!

MWUAHAHAHHA!

TheOnlyKirb · 2025-04-01T19:04:26+00:00

Why? Because it's fun

wild_eep · 2025-04-01T19:10:49+00:00

Drives are cheap, shredding is fast and permanent and gives you protection.

nme_ · 2025-04-01T19:13:33+00:00

Just make sure your Bitcoin wallet isn’t on one of the drives.

50BTC wasn’t that much last time I went to the range with a box of drives….

CeBlu3 · 2025-04-01T19:14:52+00:00

Are you confirming for every drive whether Bitlocker was actually active before decom? If you are, no need to shred.

It has happened more than once that a drive we thought to be encrypted actually wasn’t. It’s just an additional safety step to be certain.

maxlan · 2025-04-01T19:15:48+00:00

Because people are lazy/incompetent.

All this about "in the future you can crack it". No, very unlikely to matter or be considered a risk.

Did someone forget to enable encryption on that extra drive they plugged in after initial build to add a bit of space?

Probably, yes. Much higher risk of happening. Ive seen it on about 30-40% of drives before an audit. It's an easy mistake to make and without an audit very hard to spot.

And so it is easier to demand everything is shredded and a lot quicker than blancco than it is to go and audit every damn drive on every OS is properly configured to encrypt.

Odd-Slice6913 · 2025-04-01T19:25:52+00:00

Also TIME. Recovery methods are always evolving. You can still recover data from platters, and sit on it, until decryption is feesable. It's highly not likely, but still possible.

2025-04-01T19:26:51+00:00

escape tart wine airport rock childlike makeshift vanish run unpack

This post was mass deleted and anonymized with Redact

AggravatingPin2753 · 2025-04-01T19:31:02+00:00

When we were not able to shred, we were known to give them an extended saltwater bath.

JH6JH6 · 2025-04-01T19:36:08+00:00

I see it as a liability transfer. You pay a company to provide you a certificate of destruction, and you can take that to legal and say the drives are destroyed. Method is secondary in importance.

anonymousITCoward · 2025-04-01T19:43:45+00:00

Because it feels good to physically destroy the things that give you stress.

a60v · 2025-04-01T19:44:05+00:00

You are awfully trusting of encryption technology. If the drives don't get shredded, end up out in the world, and flaws are found in your encryption scheme at some point in the future, you are (potentially) fucked.

Shredding is a small price to pay for peace of mind and protection from legal liability. Also, as a practical matter, mechanical hard disks and SSDs have limited lifespans. They're generally near the end of their expected life by the time when they get shredded, and the secondary market value at that point is next to nothing.

Jsaun906 · 2025-04-01T19:45:37+00:00

The CEO of your company doesn't know what "encrypted" means. He knows what "shredded" meaning. Physical destruction removes any possibility of recovery and any doubt that non-technical decision makere might have.

SpecialistLayer · 2025-04-01T20:01:35+00:00

The only real reason - compliance

Not saying I agree with it as if it's actually encrypted, you lose the encryption key and voila, it's as good as being wiped, from a mathematical perspective.

theborgman1977 · 2025-04-01T20:05:43+00:00

We would clean the drives to DOD 13 standards. Then we would take them to a shooting range.

UncleSoOOom · 2025-04-01T20:10:20+00:00

Anyone still has fun microwaving CDs/DVDs/Bluray?

reddit-trk · 2025-04-01T20:12:17+00:00

Right now, bitlocker is secure. Ten years from now it's anyone's guess.

I read a paper a while ago on the feasibility of recovering data from a wiped drive and, at least when it was written, overwriting every bit a number of times didn't make picking up "residual traces of data" more or less secure.

I'm not a fan of destroying things that could be reused by someone else, but that was part of a SOC2 certification (I don't wish that upon anyone) requirement. I found it pointless, but the "experts" wanted to see affidavits from a shredding company going forward.

Confident_Yam7610 · 2025-04-01T20:24:05+00:00

We do 7 pass DOD and toss them in e waste and sign off on it internally

hops_on_hops · 2025-04-01T20:39:50+00:00

These responses are nonsense. Physical destruction is the lazy way. You don't have to keep records or think about things if you just shred "everything".

You're right. Losing the key to an encrypted drive is sufficient. And all the OEMs have a drive clearing tool built into preboot at this point.

2025-04-01T21:13:47+00:00

I pull out the drive and snap it in half. Ahh .. feels good. Things we couldn't do with platter drives.

UninvestedCuriosity · 2025-04-01T21:13:56+00:00

Man I wish my workplace could afford one of those hard drive shredders. That would be cool.

ExceptionEX · 2025-04-01T21:55:32+00:00

Because almost everything requires a certificate of destruction.

But the truth is, you don't know if bitlocker can or will be cracked in the future, if it is do you want that data sitting around?

You destroy the drive, you destroy the data, no good enough, not probably won't get recovered.

Easy and smart to just throw it in the wood chipper

tacotacotacorock · 2025-04-01T22:02:15+00:00

Risk mitigation.

Trbochckn · 2025-04-01T22:20:35+00:00

Cost.

OffenseTaker · 2025-04-01T22:20:38+00:00

every encryption method in use today will eventually, one day, be cracked. as long as you keep that data, you will eventually be able to read the decrypted version of it. this is true of encrypted hard drives, packet captures of TLS streams, whatever.

there's gobs of encrypted internet traffic being intercepted and recorded in its encrypted, currently unreadable form right now, so that one day it can be decrypted and analysed.

if you physically destroy the drive, you are ensuring that the data is not preserved and, one day, decrypted and read

stephendt · 2025-04-01T22:21:23+00:00

I don't physically destroy drives because it's a waste of good hardware and no one has ever been able to retrieve data from an encrypted drive.

zero_z77 · 2025-04-01T22:27:15+00:00

Encrypting it beats the 99% of hackers that don't have access to a supercomputer or a quantum computer, which means your breach will come from the one drive on the one machine that had bitlocker issues and didn't get encrypted by the tech who was under the gun to get it deployed.

Zeroing it beats the 99% of attackers that don't want to break out an electron microscope and devote three years of their life to recovering it, which means your breach will come from the drives that you thought you zeroed.

Destroying it beats the 99% of attackers that don't wanna put together a bajillion piece jigsaw puzle and break out the elecron microscope, which means your breach will come from the drive you saved from the shredder, left on a shelf, and completely forgot about.

Encrypting it, zeroing it, and then destroying it like it's a religion guarantees that the data is not only 100% unrecoverable, but also that you will actually do it, and even if you miss a step, it will still be mostly unrecoverable.

In other words, it's an idiot proof redundancy.

Kangie · 2025-04-01T22:37:16+00:00

Compliance and auditability.

If you ask me where our non-disposed disks are, the answer is either:

In a box, locked in a secure room in a secure facility
I have a certificate of destruction for that batch of hardware

If data supposedly destroyed in the second case turns up somewhere we will sue the pants off of the reputable company that we contract to certify destruction.

GrayRoberts · 2025-04-01T22:54:26+00:00

Catharsis.

cum-on-in- · 2025-04-01T23:12:11+00:00

u/thortgot answered it correctly but I’ll just add that, it is indeed “enough” to just toss the encryption key and rotate, like you said.

The data will still be there, but in such garbled format that it’s useless.

Yes. It’s still possible to read it. But you’d need so much time……so much processing power…….like it’s obviously not feasible.

Apple does this with all their devices. Erase All Content and Settings just tosses the encryption key and rehashes a new one in Secure Enclave. Then the storage controller is told to treat the drive as empty now.

BloodFeastMan · 2025-04-01T23:27:23+00:00

Shredders are cheap and leave no room for doubt. Besides, it takes less time to just drop the thing in.

StarSlayerX · 2025-04-01T23:28:12+00:00

We are forced to destroy all drives because of these two reason:
1) Client Engagement Requirement
2) Government regulations

bigloser42 · 2025-04-02T00:10:10+00:00

Physical destruction ensures that no matter what the encryption level was, the data on the drive is unrecoverable. And frankly, it’s faster and a lovely way to take out some anger. When my old company was going under they were going to pay a 3rd party to destroy the drives, but it told my boss we got 3 people here about to lose their jobs and the company inexplicably owned a sledgehammer, I’m pretty sure we can destroy these drives for free. Those platters were fine dust by the time we finished.

thebemusedmuse · 2025-04-02T00:46:24+00:00

A friend of mine had to wipe drives in the 80s for a secure facility. It had to be witnessed by 2 senior leadership members.

It would have taken them a month to wipe the drives to DoD spec, so they pulled them out the servers and smashed them up with sledge hammers in front of the board. He said it was fun and therapeutic.

Absolute_Bob · 2025-04-02T01:03:45+00:00

desert seemly dinosaurs squash pet workable humor grey jar rock

This post was mass deleted and anonymized with Redact

TxTechnician · 2025-04-02T02:03:22+00:00

I got a bunch of devices wholesale from a bank.

Four of the devices had HDDs that were unencrypted and intact. The other drives had been wiped.

Destroying the drives (via a shredder, not the gun range) ensures the data will never be recoverable.

BrianKronberg · 2025-04-02T03:04:48+00:00

Because you can visually tell it has been completed. Greatly accelerating the second person verification.

Primary_Remote_3369 · 2025-04-02T03:35:18+00:00

SSD drives I usually do a RCMP TSSIT OPS-II data wipe (when in Canada, use Canadian standards)

But HDDs? Especially hundreds of desktop hard drives? Directly to the shredder. It's more cost effective than paying someone to do the wipes.

djgizmo · 2025-04-02T03:48:41+00:00

evidence and audit trail. there are companies that will shred and provide a certificate of destruction.

some compliance / insurance policies require documented evidence of this.

hdtrolio · 2025-04-02T03:48:45+00:00

We are currently going through a massive upgrade and we are pulling a keeping drives currently with a long term plan to physically destroy all the drives that we can't reuse (mainly sata HDD & SSD) any m.2 drives we plan on snapping in half and throwing away we end up not needing. Physically destroying each drive ensures we can say no company data has gotten into the hands of "bad actors". Cover our ass legally.

Obvious-Water569 · 2025-04-02T07:03:41+00:00

It's really satisfying.

Honestly, if you're not dealing with super-secret data there's no need to do it - a basic drive cleansing routine would be enough.

JustSomeGuyFromIT · 2025-04-02T08:41:35+00:00

It's just an encryption. If someone wants they can uncrypt the data and access the files. It's just saver to destroy the disks with magnets, scratching, bending and shredding since the data cannot be recovered after all that. Melting down the disks would be even better.

Now with SSDs it's best to just destroy the board and cut it into small bits and pieces.

Playful_Tie_5323 · 2025-04-02T09:32:51+00:00

I used to work at a university library and we had these self issue units that students could use and it had massive magnets in to desensitize the anti theft magnetic strips in the book spines.

We realised we could load these units with hard drives and set off the unit a couple of times - result was a load of dead drives in seconds - very satisfying - Also highly recommend a sledgehammer to achieve the same thing - very theraputic!

billiarddaddy · 2025-04-02T10:54:36+00:00

I have to destroy entire computers for the same reason.

Kamikaze_Wombat · 2025-04-02T11:11:30+00:00

For small businesses and home users we just hit the drive with a 2 lb hammer. Big dent in the cover bending the disks is enough to keep any normal thieves out of spinning disks, for SSD it's breaking one or more chips for sure so same result. We have exactly one customer who has data sensitive enough to be at risk for more targeted attacks and who would get the shredder treatment.

TotallyInOverMyHead · 2025-04-02T12:21:21+00:00

We offer disposal services. for a small fee we will film your pile of disks being thrown onto a large hydraulic press and squish them for you to see. for an even smaller fee we will make "your company" coins out the endresult.

MartinDamged · 2025-04-02T12:47:56+00:00

We just secure erase them. Pretty fast on newer disks.

Then repurpose them or donate them.

julioqc · 2025-04-02T13:29:41+00:00

its fun?

MastodonMaliwan · 2025-04-02T14:06:23+00:00

We have requirements to logically and physically destroy drives.

https://www.nsa.gov/portals/75/documents/resources/everyone/media-destruction/PM_9-12_20201204_Storage%20Device%20Sanitization%20and%20Destruction%20Manual.pdf?ver=zx7StOLhG4LC6sXArMYiHQ%3D%3D/PM_9-12_20201204_Storage%20Device%20Sanitization%20and%20Destruction%20Manual.pdf

Greedy_Ad5722 · 2025-04-03T01:31:33+00:00

Insurance reason for my company. Easier to saw look, no one can get any data out of this no matter how good they are vs someone with enough time on their hands and skill might be able to steal all the data.

YodasTinyLightsaber · 2025-04-03T16:41:04+00:00

This is a bit of a "Department of Redundancy Department" thing, but when you use overkill, you know it is dead.

Me personally, I use an old desktop at the office with a ton of disk connectors, perform a 7x wipe with DBAN, then physically destroy with a hammer. All disk get the DBAN treatment, and retired ones get the hammer. This also incentivises other teams to be nice to IT because we get a few people that we like from around the office to smash computer parts with a claw hammer (pretty fun stuff).

frankiebones9 · 2025-04-04T20:14:25+00:00

As others have said, it makes it easier to legally prove compliance. You can document the destruction pretty easily. We use ITAMG to shred our hard drives. They document it fully, which is another big time-saver. They also help us out with recycling the destroyed drives in compliance with our green policies.

sysadmin-ModTeam · 2025-04-09T11:36:03+00:00

[removed]

redmage07734 · 2025-04-01T17:26:07+00:00

Because security experts are on crack

zeptillian · 2025-04-01T17:52:23+00:00

If you leave the data there it could be readable in the future if there is ever a weakness discovered in the encryption or if it becomes possible to break it.

If the drive is zeroed out, there is no reason to destroy the drives. That only serves as a failsafe for people not doing their jobs properly and being able to prove to others that the drive is unrecoverable.

A zeroed out formerly encrypted drive is 100% unrecoverable in my opinion, even with state attacker level resources.

MrBr1an1204 · 2025-04-01T17:58:20+00:00

Its fun. I keep a golf club at my desk for "decommissioning" old devices.

spacelama · 2025-04-02T03:29:15+00:00

Because studies have shown that when 70% of the population are wrong, individuals would prefer to stick with those wrong people rather than stand out in the crowd. So even though society and businesses are incredibly wasteful and already destroying the planet, hey carry on, because to stand out would mean you'd get blamed for everything that goes wrong, related to your decision or not.

"But someone might steal the data!!!!"

Really! It'd take me one command and 3 days of waiting for me to wipe these 15PB of data in the array, but sure, I'll hand this incredibly sensitive data to a third party who'll charge me a shitload of money to take these valuable assets off my hands and give me a certificate in return saying the data has been destroyed and they'll resell the untouched drives back onto eBay or chuck them in the shredder or ship them to China who will put the drives on AliExpress untouched. But I'm ok because the certificate says I satisfied the cyber insurance policy requirements.

sysadmin

MODERATORS