1. Couldn’t the defendant have just erased his financial information instead of replacing the entire hard drive?

    • I personally have seen in Cisco networking academy material that the best way to destroy data permanently is hammering it. Lol. They could’ve used some forensic recovery tools to pull the data back even though it was “deleted”

  2. They could have deleted the files, but they could be recovered. If they had erased the files, then wiped the unused areas with random data and then defragged the disk, then it might be recoverable. This of course is presuming that it is a hard drive, not a SSD.

  3. Matt

    Very interesting. I’m sure he didn’t delete any information belonging to the company, and more than anything, returned the computer in closer-to its original condition than it would have been. Wild case.

Comments are closed.

Did you enjoy this post? Then please share it with your friends and colleagues: