Advertisement

We need your help now

Support from readers like you keeps The Journal open.

You are visiting us because we have something you value. Independent, unbiased news that tells the truth. Advertising revenue goes some way to support our mission, but this year it has not been enough.

If you've seen value in our reporting, please contribute what you can, so we can continue to produce accurate and meaningful journalism. For everyone who needs it.

Nick Ansell/PA Wire

Turns out a lot of data can be retrieved from a reset phone or tablet

Researchers from Deloitte found that personal and corporate data such as passwords and email could be retrieved, even when the phone was encrypted or “factory wiped”.

RESETTING YOUR PHONE, or making sure it’s encrypted may not be enough to prevent your personal data from being retrieved if it’s lost or stolen, according to new research.

The findings, from the forensics team from Deloitte, found that even when a phone or tablet has been reset, both personal and corporate data could be retrieved from it. Such information could include mobile payment details, emails addresses, contact lists and PPS numbers.

The researchers tested out two scenarios. The first was a simulation of lost or stolen devices and the second was a set of second-hand phones that had been wiped. Mobile devices from Apple, Blackberry, Android, Windows Phone and a number of tablets were tested.

For the first scenario, 50 per cent of the mobile devices were encrypted and 90 per cent were password locked, while for the second scenario, 40 per cent of mobile devices were encrypted.

Under the first scenario, where the phones were stolen, the researchers successfully recovered the owners’ email addresses in 90 per cent of cases. In 75 per cent of cases, it was possible to identify the owner and recover their contacts, while passwords were recovered in 40 per cent of cases.

For 25 per cent of cases, PPS numbers could be identified as they were stored in contacts or SMS messages.

In the second scenario, which involved factory wiped phones, it found that it was possible to access text and chat logs in 85 per cent of cases, while the original owner was identifiable in 70 per cent of cases.

In 60 per cent of cases, it was possible to retrieve contacts and identify the owners’ email addresses. Researchers were able to recover passwords in 30 per cent of cases while PPS numbers were recovered in 15 per cent of cases.

According to Deloitte, the research was to determine what data was retrievable from both first and second-hand phones.

The organisation recommended a number of practices to help protect personal and corporate data in the case of theft or moving to a new device such as encrypting your device, evaluating apps carefully before downloading them, giving it a passcode, and recording the IMEI number on the device which can be used by your service provider to deactivate your phone.

Read: How to keep your smartphone info safe and secure >

Read: Google, Microsoft and co join forces to prevent the next Heartbleed from happening >

Readers like you are keeping these stories free for everyone...
A mix of advertising and supporting contributions helps keep paywalls away from valuable information like this article. Over 5,000 readers like you have already stepped up and support us with a monthly payment or a once-off donation.

Close
22 Comments
    Submit a report
    Please help us understand how this comment violates our community guidelines.
    Thank you for the feedback
    Your feedback has been sent to our team for review.
    JournalTv
    News in 60 seconds