Information diving is the practice of recovering technical data, sometimes confidential or secret, from discarded material. In recent times, this has chiefly been from data storage elements in discarded computers, most notably recoverable data remaining on hard drives. Those in charge of discarding computers usually neglect to erase the hard drive. It is often in such circumstances for an information diver to copy installed software (e.g., word processors, operating systems, computer games, etc.). Other data may also be available, such as credit card information that was stored on the machine. Companies claim to be especially careful with customer data, but the number of data breaches by any type of entity (e.g., education, health care, insurance, government, ...) suggest problems for them as well. In the UK, information diving has been referred to as "binology."
In earlier times, the available discarded data included printed manuals and design records. In a famous case, a student, Jerry Schneider, discovered some discarded manuals for a telephone system ordering / shipping system and was able to build a business selling 'surplus' gear ordered from the telephone company as though for an internal company department.
Today, files, letters, memos, photographs, IDs, passwords, credit cards, and more can be found in dumpsters. Many people do not consider that sensitive information on items they discarded may be recovered. Such information, when recovered, is sometimes usable for fraudulent purposes (see also "identity theft" and physical information security) Two MIT students purchased a large number of obsolete computers at yard sales and the like and found everything from credit card information to tax return data. They published a paper, Remembrance of Things Past, documenting their discoveries.
Supposedly, information diving was more common in the 1980s due to lax security; when businesses became aware of the need for increased security in the early 1990s, sensitive documents were shredded before being placed in dumpsters. There is still considerable Internet activity on the subject of dumpster diving, so it is unlikely to have stopped with the widespread introduction of document shredding. Security mythology has it that curious hackers or malicious crackers commonly use this technique.
Dumpster diving is commonly practiced by "watchdog" organizations seeking information on groups they are investigating. The Trinity Foundation successfully used this technique to report on the activities of televangelist Robert Tilton, and has also obtained information on Benny Hinn using this practice. It is also sometimes used by attorneys or their agents when seeking to enforce court-ordered money judgments: the judgment debtor's trash may contain information about assets that can then be more-readily located for levying.
- binology - Oxford Reference
- Leveson inquiry: Nick Davies, Paul McMullan and Richard Peppiatt appear - theguardian.com - 29 November 2011
- Leveson inquiry: Piers Morgan gives evidence - theguardian.com - 20 December 2011
- Garfinkel, Simson (1 April 2001). "Remembrance of Things Past". Retrieved 16 August 2015.
- "Robert Tilton the greedy televangelist This MAn Rips Off Millions From Gullible Followers: The Desperate, Lonely, Forgotten, Afraid, Elderly, Religious and Others Fort Lauderdale Florida". 3 October 2006. Retrieved 16 August 2015.
- "How To Dumpster Dive". Retrieved 16 August 2015.
|This computer security article is a stub. You can help Wikipedia by expanding it.|