Remote Data Wipe: What’s In It?

Read about methods of remote data wiping: standard functions of operating systems (Android, Windows) and third-party apps.

The ability to remotely wipe information stored on a mobile device such as a smartphone or a tablet becomes increasingly important the more personal information is stored on the device. Since the early days of high-tech, city legends had it that hackers could penetrate a computer and mess up (or destroy) information.

Remote Data Wipe: What’s In It?

Today’s gadgets are infinitely more complex than those early computers. Unlike old computers, today’s smartphones, tablets and transformers have nearly 100% connectivity, being part of the global network almost all the time.

With high technology spreading to every household and city legends demystified, there are now less concerns about a malicious person deleting the data. There are more people concerned with their personal information getting in the hands of a stranger should their mobile device get lost or stolen. So today everyone can be a hacker wiping their mobile device clean with a push of a button miles away.

Go to view
How to Clean Your Android Smartphone or Tablet PC from Unnecessary Files and Apps 📱❌📝

How to Clean Your Android Smartphone or Tablet PC from Unnecessary Files and Apps 📱❌📝

Erasing User Data Remotely: BlackBerry

Historically, BlackBerry was the first platform offering its users (mostly corporate) the ability to erase information from their phones if the device got lost or stolen. Information could be wiped if the device falls in the wrong hands and the new “owner” entered the PIN code incorrectly several times in a row. In addition, the data could be erased by the command from a remote server. Being parts of BlackBerry’s overall security strategy, these measures were partly accountable for the BlackBerry being the first (and only) mobile device the US president was allowed to carry.

Today, BlackBerry is not all that popular. However, its competitors learned. Today, Android offers means to destroy user data remotely over the Internet with a push of a button. Let’s see how this looks like.

Remote Data Wipe: Android

Android. A free, open, expandable and highly customizable platform with little or no attention spent on data security. With rare exceptions (e.g. some Samsung devices), information stored in Android devices is not encrypted or otherwise protected, and can be obtained from the device easily once it gets into wrong hands.

Go to view
Factory Reset or Hard Reset Your Android Phone: Samsung, Xiaomi, LG, Meizu, Huawei, HTC

Factory Reset or Hard Reset Your Android Phone: Samsung, Xiaomi, LG, Meizu, Huawei, HTC

So what are the options if your phone grows legs? Before August 2013 you could do nothing (unless you used a third-party app, that is). Things have changed when Google released Android Device Manager, an extension of Google Account allowing you to manage all Android devices registered in your account.

In Android Device Manager, you can map the location of your device on Google Maps, ring your phone even if it has a new SIM card, lock it with a password or erase user data by performing a full system reset.

These features are not a given. You have to activate them before your phone or tablet goes missing by turning the feature on and responding to the request sent to your mobile device. After you’ve done that, you are protected.

Now, if your mobile device gets lost or stolen, you can map the device on Google Maps, Ring your phone, Lock it, or Erase its content. In this article, we are more interested in how Erase works rather than the rest of it.

In Android, remote data wipe is not a 100 per cent secure. Granted, user data stored in the phone’s memory gets lost rather reliably (at least there is no easy way for an ordinary computer user to recover that data). On Android 2.3+ devices, the command also erases the content of the SD card, if installed.

However, when it comes to data stored on an SD card, there are quite a few limitations listed in Android documentation.

Namely:

  • SD card wipe is not activated on Android devices running Android 2.2 and earlier;

  • SD card wiping is not available on some devices (e.g. Motorola Xoom, Galaxy S4);

  • If more than one SD card is installed, only the primary card is wiped;

  • The wipe is performed with fast erase and not a secure erase, which makes the data susceptible to routine recovery;

  • Finally, read-only SD cards cannot be wiped.

Recovering Erased Data

So what happens if you get your device back after erasing its data? The internal storage is pretty much clean at this stage, and there is no easy way of getting the data back. (There might be no way to get it back physically, too.)

Go to view
How To Recover Deleted Data From Android Smartphone: photos, contacts, aps 💥 🥇 ⚕️

How To Recover Deleted Data From Android Smartphone: photos, contacts, aps 💥 🥇 ⚕️

However, any data removed from the SD card can still be recovered because Android performs a fast erase instead of using a secure method.

Partition Recovery™ 4.9
The tool recovers data from any devices, regardless of the cause of data loss.
Download

To recover information erased from the SD card, you’ll need a data recovery tool such as Hetman Partition Recovery. Make sure to take the SD card out and connect it to your PC by insert it to a card reader. Launch the program and choose the SD card from the list of available devices. Run the recovery process, and you’ll see the list of deleted files.

Hard Drive Data Recovery Software

But what about the data stored in the device memory? This information is gone. However, you can still recover it from the cloud backup if you ever created one (you should). Configuration and management of backup copies goes beyond the scope of this article, but we strongly recommend exploring this opportunity and using this functionality on a regular basis.

Remote Data Wipe and Windows

In the Windows world, remote data wipe has long been the privilege of malware, viruses and Trojans. However, end-user solutions allowing to remotely wipe information off a laptop or desktop PC do exist.

Go to view
How to Delete Files Without the Opportunity to Restore Them – Software Encryption 📁🚫⚕️

How to Delete Files Without the Opportunity to Restore Them – Software Encryption 📁🚫⚕️

Windows is a much more complex system compared to Android, and much larger storage capacities are involved. As a result, performing a secure data wipe remotely is not that easy. Generally speaking, the only truly secure way to destroy information on a laptop is by using a model equipped with an encrypting disk controller. Destroying the decryption key only takes a brief moment while rendering the entire device effectively unreadable. What’s best, this can be performed while Windows is still running, without requiring a reboot.

If the disk was not using an encrypting controller, another option would be setting up an encrypted volume (such as TrueCrypt) and making it dismantle automatically every time the computer sleeps, shuts down or sits idle for a certain period of time. Without the encryption key, getting access to information stored on that volume would not be possible.

So let’s have a look on how modern mobile devices running Windows handle remote data destruction.

Let’s take, for example, the latest and newest transformer, Lenovo Helix. This model is equipped with an SSD drive, but has no pre-installed tool to allow remote data wipe. If being able to erase user data remotely is what you’re after, Lenovo offers LANDesk Management Suite which can be purchased separately. This toolkit contains Lenovo Mobility, a tool that can be configured to set up remote data wipe. Bear in mind that such configuration must be performed before the computer goes missing; otherwise it’s too late.

Deleting information from Lenovo Helix is a much easier task when having physical access to the device. Lenovo Helix carries an SSD drive; different models may be supplied with regular and encrypting SSD controllers. Lenovo provides a tool to securely destroy information called Lenovo Secure Data Disposal. The user must download the tool and launch it manually. The tool will reliably destroy information, but can take several hours to complete.

It’s important to note that SSD drives can be instantly wiped with a simple Quick Format operation. If certain conditions are observed (the formatting is performed in Windows 7 or Windows 8, and the new volume is NTFS), then the disk’s built-in garbage collector will begin physically erasing blocks of data immediately after receiving the TRIM command. While the actual wipe will take some unpredictable time, any attempt to read information from a quick-formatted disk will return zeroes regardless of whether or not the data is still physically available. That’s how the combination of TRIM and SSD garbage collection works in most models. If you are interested on how SSD drives handle deleted information and what can be done to recover it, read our previous articles “Recovering Information from SSD Drives: Myths and Reality” and “Securely Destroying Information: The Issue of Solid-State Drives”.

Cleaning a disk equipped with an encrypting controller is generally a much simpler, faster and more reliable endeavor. If an encrypting controller is in use, it is enough to destroy the decryption key to render the complete content of the device effectively inaccessible. Lenovo Helix users can enable this feature via the ThinkPad Setup Menu Extension Utility. Alternatively, this feature is available via the ThinkPad Setup application. Of course, it’ll only work in models equipped with drives featuring encrypting controllers.

Conclusion

The ability to wipe user data from mobile phones and tablets is a regular feature of Android devices since August 2013. For Windows users, there is no easy answer. With huge variety in hardware, fast and secure remote data wipe may be or may not be possible. Either way, third-party software is required to perform the task.

Oleg Afonin

Author: , Technical Writer

Oleg Afonin is an expert in mobile forensics, data recovery and computer systems. He often attends large data security conferences, and writes several blogs for such resources as xaker.ru, Elcomsoft and Habr. In addition to his online activities, Oleg’s articles are also published in professional magazines. Also, Oleg Afonin is the co-author of a well-known book, Mobile Forensics - Advanced Investigative Strategies.

Vladimir Artiukh

Editor: , Technical Writer

Vladimir Artiukh is a technical writer for Hetman Software, as well as the voice and face of their English-speaking YouTube channel, Hetman Software: Data Recovery for Windows. He handles tutorials, how-tos, and detailed reviews on how the company’s tools work with all kinds of data storage devices.

  • Updated:
  • Evaluations:
  • 18
  • /
  • :

Share

Questions and answers

  • What is remote data wiping?

    Remote data wiping is a process in which data is permanently deleted from a device remotely. This process is often used by organizations to ensure that confidential or sensitive data is not accessed by unauthorized individuals. It can also be used to wipe a device after it has been lost or stolen.

  • Why would someone want to remotely wipe data from a device?

    Someone might want to remotely wipe data from a device if the device has been stolen or lost, or if the user wants to erase all of their personal data from the device before selling it or giving it away. Remote wiping helps ensure that sensitive information is not accessible to unauthorized users.

  • What types of devices can be remotely wiped?

    Most types of electronic devices that are connected to the internet can be remotely wiped. This includes computers, laptops, tablets, smartphones, and other types of mobile devices.

  • How does remote data wiping work?

    Remote data wiping is a process that erases data from a device remotely. It is typically done by sending a command to the device over the internet, which then deletes the data from the device. This process can be used to wipe data from a single device or from an entire network of devices. The process typically involves overwriting the existing data with random characters or zeroes, making it impossible to recover. It is important to note that data wiping does not necessarily delete the data permanently, as it may still be stored on a backup device or in the cloud.

  • What are the risks associated with remote data wiping?
    1. Data Loss: Remote data wiping can result in the permanent loss of important data if the wrong files are targeted or if the process is not executed properly.
    2. Security Risks: Remote data wiping can open up a system to security risks if malicious actors gain access to the system.
    3. Legal Implications: Remote data wiping can have legal implications if it is not done in accordance with local laws and regulations.
    4. Privacy Issues: Remote data wiping can potentially compromise the privacy of individuals if sensitive information is wiped without their knowledge or consent.

Comments (12)

  • Hetman Software: Data Recovery
    Hetman Software: Data Recovery 27.04.2018 11:37 #
    Read about remote data wipe in android and windows devices. If you do have any questions, don't hesitate to contact our technical support service - we will be happy to help you.
    Reply
  • Emil Fendley
    Emil Fendley 13.02.2014 02:45 #
    How can individuals and businesses protect themselves against unauthorized remote data wiping?
    Reply
    • Hetman Software
      Hetman Software 13.02.2014 03:03 #
      Use a strong password: Use a strong, unique password for each device and change it regularly. Use encryption: Encrypting your data makes it much more difficult for unauthorized users to access it. Use two-factor authentication: Two-factor authentication adds an extra layer of security to your accounts by requiring you to enter a code sent to your phone or email address in addition to your password. Install security software: Install antivirus and anti-malware software on all devices to help protect against malicious attacks. Backup regularly: Backing up your data regularly helps ensure that you have a copy of your data in case of an attack or accidental deletion. Monitor activity: Monitor your devices for unusual activity and be sure to investigate any suspicious activity.
      Reply
  • Wyndham Freeland
    Wyndham Freeland 13.02.2014 00:35 #
    What are some alternatives to remote data wiping?
    Reply
    • Hetman Software
      Hetman Software 13.02.2014 01:04 #
      1. Physical Destruction: Physically destroying the hard drive or device is one of the most secure ways to ensure data is not recoverable.
      2. Encryption: Encrypting the data with a strong encryption algorithm is an effective way to protect data from unauthorized access.
      3. Data Masking: Data masking is a process of obscuring sensitive data in a way that makes it unreadable to unauthorized users.
      4. Tokenization: Tokenization is a process of replacing sensitive data with non-sensitive equivalents, such as randomly generated numbers or characters.
      5. Data Erasure: Data erasure is the process of overwriting existing data with random data to make it unrecoverable.
      Reply
  • Charley Reynolds
    Charley Reynolds 12.02.2014 20:24 #
    Can remote data wiping be used to erase data from stolen devices?
    Reply
    • Hetman Software
      Hetman Software 12.02.2014 20:54 #
      Yes, remote data wiping can be used to erase data from stolen devices. Remote data wiping is a process in which all the data stored on a device is securely erased from a remote location. This process can be used to protect sensitive data from falling into the wrong hands if a device is lost or stolen.
      Reply
  • Morty Scoggins
    Morty Scoggins 12.02.2014 17:40 #
    What are some common scenarios in which remote data wiping is used?
    Reply
    • Hetman Software
      Hetman Software 12.02.2014 17:59 #
      1. When an employee leaves a company and needs to have their data removed from the company’s systems.
      2. When a device is lost or stolen and needs to be wiped clean of any sensitive data.
      3. When a company is disposing of old hardware and needs to ensure that all data is wiped from the device before it is sold or recycled.
      4. When a user needs to reset their device to factory settings and wants to make sure all personal data is removed.
      5. When a company wants to securely delete sensitive data from their servers.
      Reply
  • Bobby Dickinson
    Bobby Dickinson 12.02.2014 13:30 #
    Is it possible to recover data after it has been remotely wiped?
    Reply
    • Hetman Software
      Hetman Software 12.02.2014 14:05 #
      In some cases, it may be possible to recover data after it has been remotely wiped. However, the chances of success depend on the type of remote wipe and the amount of time that has passed since it was performed. In most cases, the best way to ensure data is not lost is to create regular backups.
      Reply
  • Hetman Software: Data Recovery
    Hetman Software: Data Recovery 27.04.2018 11:38 #
    Read about remote data wipe on android and windows devices. If you do have any questions, don't hesitate to contact our technical support service - we will be happy to help you.
    Reply
Post comment
User
Leave a reply
Your email address will not be published. Required fields are marked *

Recommended For You
This website uses cookies to improve your experience. Description
Hello! This is AI-based Hetman Software virtual assistant, and it will answer any of your questions right away.
Start Chat