Secondhand item came with previous owner's files on the SD card, do I return the card or format it?

𝒍𝒆𝒎𝒂𝒏𝒏@lemmy.dbzer0.com · edit-2 7 months ago

Secondhand item came with previous owner's files on the SD card, do I return the card or format it?

BassTurd@lemmy.world · 7 months ago

It doesn’t have to be about someone stealing your data. I had a situation where a user got some malware on their USB drive that deleted other user files when plugged in and replaced them with porn or something. It’s just good practice to not plug unknown devices into your computer all willie nillie.

Skull giver@popplesburger.hilciferous.nl · 7 months ago

It’s important to be careful and to treat storage devices like their contents came off the internet. I wouldn’t be opposed to some kind of (non-identifying) machine marker on partitions so the OS can track whether or not the disk has been inserted before, to treat the files on those disks the same way it treats downloaded files (i.e. apply the Mark of the Web) unless the disk is marked as trusted.

That said, this “only insert storage devices into an offline Linux laptop that you light on fire afterwards” type of advice doesn’t apply to moet people most of the time.

Never insert an unknown storage device into a computer you don’t own (i.e. a work machine), probably because there’s some kind of contract with repercussions for that sort of thing, but you’re probably free to look around it you think before you click.

This only applies if you update your stuff and reboot your computer when asked, off course. Treat any file from any source like toxic waste if you can’t be bothered to install updates.

Big P@feddit.uk · 7 months ago

Windows doesn’t autorun by default these days iirc, I don’t think there’s any zero interaction remote code execution bugs that are unpatched either. The only way you would get compromised is by running something or if the usb device pretended to be a keyboard which I don’t think is commercially available in sd card format