Stolen devices are one of the most common causes of data loss, a problem that can create unnecessary e-scrap. | Georgejmclittle/Shutterstock
Stolen devices are a bigger cause of data loss than ransomware and stolen credentials, the response to which could lead to the destruction of reusable devices, according to a report from Blancco Technology Group.
Blancco, a data erasure technology company that provides data wiping software to IT asset disposition firms, released the report this month. It gathered survey responses from cybersecurity and information technology groups and found that stolen devices and drives cause 41% of data-loss incidents, the third most common behind phishing and improper network configurations. The report also evaluated how often IT asset management practices consider sustainability goals.
According to the report, the threat of data loss due to theft often leads companies to throw out or destroy functional devices rather than resell them and risk sensitive data falling into the wrong hands.
The report showed 49% of devices from data centers are destroyed for privacy reasons. Of those destroyed devices, 47% were still functional. Personal devices like smartphones, tablets and computers were unnecessarily destroyed less often, but still over 30% were functional when destroyed.
“Improper data disposal is a hidden risk — and it’s not talked about enough,” said Blancco CEO Lou DiFruscio. “Every business IT leader needs to understand its responsibilities, seek out the best practices that maintain compliance with data privacy regulations, and secure data at the finish line.”
The report also showed that while most data center devices are expected to function from five to 10 years, the average age of devices when destroyed was four. Personal devices were similarly destroyed two or three years before the end of their expected lifespan.
When evaluating sustainability goals in IT, 80% of respondents said there is a close alignment between sustainability and data disposal practices. Only 2% said sustainability was not considered.
“The message is clear: sustainability is now a core consideration in data disposal strategies,” Blancco wrote in the report.
Though it may cause unnecessary e-scrap, the privacy concerns driving premature device destruction can be warranted. The report found 17% of respondents had data leaks when their old devices were refurbished and reused without being properly wiped.
According to the report, destroying devices is not the only solution, however. Companies like Blancco fully wipe devices so they can be safely resold and reused instead of being prematurely destroyed. Blancco also provides services for ITAD companies to check if a device is still controlled by the organization that owned it.