Best utility to securely wipe specific files from flash drives?


Baeolophus

Well-known member
Member
Local time
10:27 AM
Posts
164
OS
macOS Sequoia
When sharing flash drives with others, I want to make sure I'm securely erasing old files—not just removing them from the directory, but completely wiping their actual contents.

What utility software would you recommend for this?

Ideally, I need a tool that:
  • Securely deletes every single block of the targeted files.
  • Does not erase any more than necessary, in order to conserve the flash media's write cycles.
 

My Computer My Computer

At a glance

macOS SequoiaM1 Max Apple Silicon32 GB
OS
macOS Sequoia
Computer type
Laptop
Manufacturer/Model
Apple
CPU
M1 Max Apple Silicon
Memory
32 GB
I think you're obsessing way to much about the FLASH media life. Just do a wipe with any of the many utilities, problem solved. I can't imagine you'll use up the drive write cycles before you die of old age! I think almost any currently shipping FLASH drive should do at least 10,000 write cycles. Also, any FLASH drive you're giving away or sharing is doubtless not a super high capacity 1TB drive, so the possibility of a $20 drive failing is not exactly a financial catastrophe.
 

My Computers My Computers

  • At a glance

    Win 11 Pro 25H2, Build 26200.8737Intel Core i5 1450064GB DDR4GeForce RTX 4060
    OS
    Win 11 Pro 25H2, Build 26200.8737
    Computer type
    PC/Desktop
    Manufacturer/Model
    Home Brew
    CPU
    Intel Core i5 14500
    Motherboard
    Gigabyte B760M G P WIFI
    Memory
    64GB DDR4
    Graphics Card(s)
    GeForce RTX 4060
    Sound Card
    Chipset Realtek
    Monitor(s) Displays
    LG 45" Ultragear, Acer 24" 1080p
    Screen Resolution
    5120x1440, 1920x1080
    Hard Drives
    Crucial P310 2TB 2280 PCIe Gen4 3D NAND NVMe M.2 SSD (O/S)
    Silicon Power 2TB US75 NVMe PCIe Gen4 M.2 2280 SSD (backup)
    Crucial BX500 2TB 3D NAND (2nd backup)
    Seagate 4TB Ironwolf, rotating HDD archive files
    External off-line backup Drives: 2 NVMe 4TB drives in external enclosures
    PSU
    Thermaltake Toughpower GF3 750W
    Case
    LIAN LI LANCOOL 216 E-ATX PC Case
    Cooling
    Lots of fans!
    Keyboard
    Microsoft Comfort Curve 2000
    Mouse
    Logitech G305
    Internet Speed
    Verizon FiOS 1GB
    Browser
    Firefox
    Antivirus
    Malware Bytes & Windows Defender Security
  • At a glance

    Win 11 Pro 25H2, Build 26200.8655Intel Core i5 1440032GB DDR5Intel 700 Embedded GPU
    Operating System
    Win 11 Pro 25H2, Build 26200.8655
    Computer type
    PC/Desktop
    Manufacturer/Model
    Home Brew
    CPU
    Intel Core i5 14400
    Motherboard
    Gigabyte B760M DS3H AX
    Memory
    32GB DDR5
    Graphics card(s)
    Intel 700 Embedded GPU
    Sound Card
    Realtek Embedded
    Monitor(s) Displays
    27" HP 1080p
    Screen Resolution
    1920x1080
    Hard Drives
    Crucial P310 2TB 2280 PCIe Gen4 eD NAND PCIe SSD
    Samsung EVO 990 2TB NVMe Gen4 SSD
    Samsung 2TB SATA SSD
    PSU
    Thermaltake Smart BM3 650W
    Case
    Okinos Micro ATX Case
    Cooling
    Fans
    Keyboard
    Microsoft Comfort Curve 2000
    Mouse
    Logitech G305
    Internet Speed
    Verizon FiOS 1GB
    Browser
    Firefox
    Antivirus
    Malware Bytes & Windows Defender Security
  • Nimo N171 17" Laptop, (Intel i3-1215U, 16GB RAM, 2TB NVMe, Win11 Pro)
    Acemagic Vista Mini PC V1 (Intel N150, 16GB RAM, 1TB NVMe, Win11 Pro)
    HP ENVY h8-1540t, (24GB RAM, 2TB SSD, 2TB HDD, Win11 Pro)
No off-the-shelf security tool exists, because of how SSD's handle wear leveling. An OS writes to a set of logical blocks, but the SSD's onboard controller decides the mapping of logical blocks to physical blocks (or cells).

Normally to securely erase a file on a non-SSD device, you overwrite the file's assigned data blocks with junk data. This works because the mapping of logical to physical blocks never changes on a HDD (with the exception of remapped failed disk blocks).

When you write junk data to a file on a SSD, the onboard controller writes that data to a different set of physical blocks and updates the logical mapping so the OS thinks the file is securely wiped. But the original data is untouched on the drive. To get around this behavior, you would need special firmware in the SSD to make sure wear leveling isn't obeyed. There's no industry standard for that on consumer drives.

Some SSD's have tools where you can trigger a secure wipe of the entire drive, but not for individual files or volumes.

You can share data in encrypted ZIP files. This way using a data recovery tool doesn't help someone recover your deleted files, because they're encrypted in the first place.
 

My Computer My Computer

At a glance

Windows 7
OS
Windows 7
Back
Top Bottom