Five Reasons to Shred Your Old Smartphones
Are you leaving your business’s data at risk, right now?
Smartphones can connect to almost every part of your network, every file and email, dashboards, apps, and all of the proprietary information you have on your network. And, these devices seem to become obsolete every year or so, with customers and staff always demanding the latest and greatest.
Transferring all of the data to those devices and then removing it from these phones are both monumental tasks. A simple reformatting, resetting, or push back to factory settings doesn’t completely erase your smartphone’s hard drive.
You need to shred these devices to properly protect your network. And, if you’re wondering why, here are a few things to keep in mind.
1. Factory Resets Don’t Always Work
Factory resetting is the most commonly prescribed method by carriers, but it doesn’t wipe all of your data. That’s not just us saying it; the identified risk also comes from a thorough review of the policies and procedures across multiple carriers and devices from a Cambridge University team.
In their research, 80% of the time they were able to recover a master token, which a smart hacker could use to recover emails, cloud-storage access, contacts, calendars, and other data that can be downloaded by syncing the device.
The big news here is that manufacturer software doesn’t always wipe Flash storage. It’s incredibly hard and even the top tools tend to fail some of the times.
The only thing to guarantee success is to shred that cell phone.
2. It’s More than Just a SIM
One of the biggest mistakes we see is that people think removing the SIM card from your device will wipe away all of the information from a device. Unfortunately, even for phones where you can access and remove the SIM card, internal components you can’t remove will store a variety of information.
There are a lot of components you’ll have to contend with if you’re trying to remove your information, and ripping all of those away typically means it can’t be reused. Destroying it all yourself can be difficult and harmful to your team, and oftentimes it takes more than just physically disconnecting different elements.
3. A Hammer Isn’t Enough
Recent political scandals and football scandals have prominently featured phones that were destroyed, with reports saying the owner or a staff member took a hammer to the device. That destruction of physical elements doesn’t always mean a true destruction of data.
Eric Brown, a lab manager at the forensic data-recovery firm Flashback Data, says that this type of physical attack may not actually harm the memory chips and other components that need to be destroyed. His company recommends shredding because it prevents the ability for undamaged components to be put in a new phone and have their data accessed.
Use the right tool for the right job, and that means a thorough shredder.
4. People Only Need a Little Information to Hack You
Today’s thieves only need a little bit of information to harm your company. All it takes is access to an email address or a system dashboard to start getting to the heart of your data, whether that’s customer credit cards, bank accounts, contact information, HR documents, and other personal information.
5. Lives Are On Phones
In a world where everything is connected, we’ve got a lot more points of vulnerability. And that vulnerability is for you and your team. Social networks, personal emails to family, photos of children and so much more are going to be on these devices, even if they’re supposed to be used only for work.
Why take the risk that this could fall into the wrong hands? Why risk that liability of loss?
That’s why we at Securis always recommend collecting smartphones and cell phones from your employees when changing devices, and then shredding them to avoid these risks and exposures.