RutSum


July 22nd, 2009

How To Keep Your Data Safe On A Stolen Netbook/Laptop


So I was reading this interesting story on Slashdot, and amidst the usual (Score:5, Funny) comments, I could find loads of amazing ideas to actually protect your data in case your netbook/laptop gets stolen.

The thing with physical theft is that the thief has physical access to your hard drive, and so if their intention is to steal data, they can pop out the hard disk from the machine, and then use a variety of software/hardware/machine based methods to scrape off your personal data from it. This leaves you with only 2 options – either make the hard disk inaccessible to the thief (can be achieved by rigging it with C4, and a remote detonation device), or a much easier way – encrypt the data.

For this, the most suggested tool to use was TrueCrypt, which is a free and open source on-the-fly encryption tool for Windows, Mac OS X, and Linux. It encrypts your partitions transparently, and has a very amazing feature of plausible deniability where you can create a hidden volume to show to someone who is forcing you to let out the password at gunpoint. Check out the link for more juicy details.

One of the smarter commenters suggested that no matter how smart the thief may be, if its data they’re going after, they use basic easier methods first to try and hack into the system used by machine’s owner. This being the case, one can create 2 accounts – here’s the interesting part – 1 for normal usage, and another fake account. Password protect your normal account, and keep the other account open for all. Then rig the fake account with a script to automatically wipe out everything on your normal account (doing this is much easier than it sounds) or if you’re even more paranoid, then completely shred your hard disk. Clever idea, but flawed.

Other things that I got to know was the existence of things such as AbsoluteSoftware’s Lojack for Laptops. Its sits in the BIOS and allows you to remotely monitor the usage of your laptop, delete data on your hard drive, and may even help you recover a stolen laptop. It has the advantage of being impervious to hard drive formats or replacement.

Another interesting suggestion was made, which was flawed as it was dependent on the thief using the machine along with an internet connection, but was very interesting anyway. I’m quoting the comment here as it is -

1. Set up multi-boot config.
2. Create a bootable partition that has enough OS on it to run the drive and network, name it something interesting like ‘Confidential’.
3. Get the BIOS flash utils for your netbook, create a corrupt bios image that will still pass muster enough to install.
4. Set up a boot time process on the netbook that does a ‘wget’ from a web site that you control. If it gets a file, quietly flash the BIOS with what it downloads.

If you ever get ripped off, move the nasty BIOS image to the file location on your web site and bask in the glow of pure wickedness…

You can test this with a valid BIOS image, but don’t look at me if something terrible happens, you’re playing with fire here.


All these should be more than enough to keep your data safe from a possible data mining thief.


If you liked this post, or found it useful, don't forget to subscribe to my RSS feeds. Or you can get my posts delivered to your inbox directly, by subscribing to my feeds by email. Or maybe you'd like to know what I'm doing right now, by following me at Twitter.

Posted in I Am My Technology by Apoorv Khatreja | Random Post



There are 5 Comments on this post. You can leave a comment, or trackback from your own site.

Leave a Comment

5 Comments on “How To Keep Your Data Safe On A Stolen Netbook/Laptop”

  1. Abhishek NandakumarNo Gravatar  Says:
    July 22nd, 2009 at 8:46 pm

    If you have access to a bootloader like grub, you have access to all the user accounts on that computer. No matter what you do, your data isn’t safe once someone else has physical access to the machine. The first thing I would do if I had to access information is remove the hard disk and connect it as a secondary disk on another computer. No boot loaders to load, break the permissions(easy) and access the information.

    You can of course use encrypt your files using an app but having the app running to access all your files will be a pain in the arse for people using that app.

  2. Apoorv KhatrejaNo Gravatar  Says:
    July 22nd, 2009 at 9:42 pm

    I think you didn’t read the post. The first thing that was suggested was ENCRYPTION, a good one, through TrueCrypt. I don’t think TrueCrypt runs all the time, it probably would have a daemon running in the background to encrypt/decrypt files on-the-fly. People who have used the app have reported that they did not notice/observe any memory or CPU hog by the application.

    The other suggestions were for petty thieves looking only to sell the machine for its hardware or just snoop around the operating system to find some data related to financial stuff, such as credit card numbers, or passwords to online payment services. For the n00b thief, the above methods would work awesomely.

  3. Abhishek NandakumarNo Gravatar  Says:
    July 22nd, 2009 at 10:01 pm

    I did read it. I would find running a daemon cumbersome. Nothing like not losing your notebook.

  4. Ankur BanerjeeNo Gravatar  Says:
    July 23rd, 2009 at 1:22 pm

    …or you could simply install Adeona (http://adeona.cs.washington.edu/) and have it ‘phone home’ when it’s stolen.

  5. Ankur BanerjeeNo Gravatar  Says:
    July 23rd, 2009 at 1:24 pm

    Personally, I’d never choose to encrypt my hard drive. If an “Oops, there was a bug” happens you’re screwed.

Tags: , , , , , , , , , ,

This entry was posted on Wednesday, July 22nd, 2009 at 1:30 pm and is filed under I Am My Technology. You can follow any responses to this entry through the RSS 2.0 feed.

People who read this post also read :

No related posts