Best utility to securely wipe specific files from flash drives?


Baeolophus

Well-known member
Member
Local time
11:35 AM
Posts
164
OS
macOS Sequoia
When sharing flash drives with others, I want to make sure I'm securely erasing old files—not just removing them from the directory, but completely wiping their actual contents.

What utility software would you recommend for this?

Ideally, I need a tool that:
  • Securely deletes every single block of the targeted files.
  • Does not erase any more than necessary, in order to conserve the flash media's write cycles.
 

My Computer My Computer

At a glance

macOS SequoiaM1 Max Apple Silicon32 GB
OS
macOS Sequoia
Computer type
Laptop
Manufacturer/Model
Apple
CPU
M1 Max Apple Silicon
Memory
32 GB
I think you're obsessing way to much about the FLASH media life. Just do a wipe with any of the many utilities, problem solved. I can't imagine you'll use up the drive write cycles before you die of old age! I think almost any currently shipping FLASH drive should do at least 10,000 write cycles. Also, any FLASH drive you're giving away or sharing is doubtless not a super high capacity 1TB drive, so the possibility of a $20 drive failing is not exactly a financial catastrophe.
 

My Computers My Computers

  • At a glance

    Win 11 Pro 25H2, Build 26200.8737Intel Core i5 1450064GB DDR4GeForce RTX 4060
    OS
    Win 11 Pro 25H2, Build 26200.8737
    Computer type
    PC/Desktop
    Manufacturer/Model
    Home Brew
    CPU
    Intel Core i5 14500
    Motherboard
    Gigabyte B760M G P WIFI
    Memory
    64GB DDR4
    Graphics Card(s)
    GeForce RTX 4060
    Sound Card
    Chipset Realtek
    Monitor(s) Displays
    LG 45" Ultragear, Acer 24" 1080p
    Screen Resolution
    5120x1440, 1920x1080
    Hard Drives
    Crucial P310 2TB 2280 PCIe Gen4 3D NAND NVMe M.2 SSD (O/S)
    Silicon Power 2TB US75 NVMe PCIe Gen4 M.2 2280 SSD (backup)
    Crucial BX500 2TB 3D NAND (2nd backup)
    Seagate 4TB Ironwolf, rotating HDD archive files
    External off-line backup Drives: 2 NVMe 4TB drives in external enclosures
    PSU
    Thermaltake Toughpower GF3 750W
    Case
    LIAN LI LANCOOL 216 E-ATX PC Case
    Cooling
    Lots of fans!
    Keyboard
    Microsoft Comfort Curve 2000
    Mouse
    Logitech G305
    Internet Speed
    Verizon FiOS 1GB
    Browser
    Firefox
    Antivirus
    Malware Bytes & Windows Defender Security
  • At a glance

    Win 11 Pro 25H2, Build 26200.8655Intel Core i5 1440032GB DDR5Intel 700 Embedded GPU
    Operating System
    Win 11 Pro 25H2, Build 26200.8655
    Computer type
    PC/Desktop
    Manufacturer/Model
    Home Brew
    CPU
    Intel Core i5 14400
    Motherboard
    Gigabyte B760M DS3H AX
    Memory
    32GB DDR5
    Graphics card(s)
    Intel 700 Embedded GPU
    Sound Card
    Realtek Embedded
    Monitor(s) Displays
    27" HP 1080p
    Screen Resolution
    1920x1080
    Hard Drives
    Crucial P310 2TB 2280 PCIe Gen4 eD NAND PCIe SSD
    Samsung EVO 990 2TB NVMe Gen4 SSD
    Samsung 2TB SATA SSD
    PSU
    Thermaltake Smart BM3 650W
    Case
    Okinos Micro ATX Case
    Cooling
    Fans
    Keyboard
    Microsoft Comfort Curve 2000
    Mouse
    Logitech G305
    Internet Speed
    Verizon FiOS 1GB
    Browser
    Firefox
    Antivirus
    Malware Bytes & Windows Defender Security
  • Nimo N171 17" Laptop, (Intel i3-1215U, 16GB RAM, 2TB NVMe, Win11 Pro)
    Acemagic Vista Mini PC V1 (Intel N150, 16GB RAM, 1TB NVMe, Win11 Pro)
    HP ENVY h8-1540t, (24GB RAM, 2TB SSD, 2TB HDD, Win11 Pro)
No off-the-shelf security tool exists, because of how SSD's handle wear leveling. An OS writes to a set of logical blocks, but the SSD's onboard controller decides the mapping of logical blocks to physical blocks (or cells).

Normally to securely erase a file on a non-SSD device, you overwrite the file's assigned data blocks with junk data. This works because the mapping of logical to physical blocks never changes on a HDD (with the exception of remapped failed disk blocks).

When you write junk data to a file on a SSD, the onboard controller writes that data to a different set of physical blocks and updates the logical mapping so the OS thinks the file is securely wiped. But the original data is untouched on the drive. To get around this behavior, you would need special firmware in the SSD to make sure wear leveling isn't obeyed. There's no industry standard for that on consumer drives.

Some SSD's have tools where you can trigger a secure wipe of the entire drive, but not for individual files or volumes.

You can share data in encrypted ZIP files. This way using a data recovery tool doesn't help someone recover your deleted files, because they're encrypted in the first place.
 

My Computer My Computer

At a glance

Windows 7
OS
Windows 7
As Garlin said, overwrite with junk data or, with low cost of flash drives being what it is, if you are that concerned purchase new drives before sharing. You make it sound like the data you are "sharing with others" is top secret information. First thing I thought of when I read this is smoke coming out of Mr. Phelps recorder and hearing "This drive will self destruct in 5 seconds."
Sounds like much ado about nothing to me.
 

My Computers My Computers

  • At a glance

    Windows 11 Pro 25H2 26200.8655i9-10900 10 core 20 threads32 gbnone-Intel UHD Graphics 630
    OS
    Windows 11 Pro 25H2 26200.8655
    Computer type
    PC/Desktop
    Manufacturer/Model
    Dell Optiplex 7080
    CPU
    i9-10900 10 core 20 threads
    Motherboard
    DELL 0J37VM
    Memory
    32 gb
    Graphics Card(s)
    none-Intel UHD Graphics 630
    Sound Card
    Integrated Realtek
    Monitor(s) Displays
    Benq 27
    Screen Resolution
    2560x1440
    Hard Drives
    2x1tb Solidigm m.2 nvme /External drives 512gb Samsung m.2 sata+2tb Kingston m2.nvme
    PSU
    500w
    Case
    MT
    Cooling
    Dell Premium
    Keyboard
    Logitech wired
    Mouse
    Logitech wireless
    Internet Speed
    so slow I'm too embarrassed to tell
    Browser
    #1 Edge #2 Firefox
    Antivirus
    Defender+MWB Premium
  • At a glance

    Windows 11 Pro 24H2 26200.8457AMD Ryzen 7 6800U32 gbintegrated
    Operating System
    Windows 11 Pro 24H2 26200.8457
    Computer type
    PC/Desktop
    Manufacturer/Model
    Beelink Mini PC SER5
    CPU
    AMD Ryzen 7 6800U
    Memory
    32 gb
    Graphics card(s)
    integrated
    Sound Card
    integrated
    Monitor(s) Displays
    Benq 27
    Screen Resolution
    2560x1440
    Hard Drives
    1TB Crucial nvme
    Keyboard
    Logitech wired
    Mouse
    Logitech wireless
    Internet Speed
    still too embarrassed to tell
    Browser
    Firefox
    Antivirus
    Defender
    Other Info
    System 3 is non compliant Dell 9020 i7-4770/24gb ram Win11 PRO 26200.8457
As Garlin said, overwrite with junk data or, with low cost of flash drives being what it is, if you are that concerned purchase new drives before sharing.
SSD's are different, you can't overwrite the SAME disk blocks with junk data. Because when you write any changes to a SSD, wear leveling returns a different physical block of data every time.

Most people understand flash memory cells have a limited number of writes before it fails. That number isn't guaranteed, but each flash memory manufacturer has a safe number of minimum writes before an expected failure.

Say that number is 50,000 times for a single cell. If you could write to the exact same cell in the SSD over that limit then a future write will eventually fail. You could get a "hot spot" where some block of data is overwritten more often than another block. That hot spot will fail first, but another part of the SSD where the data is rarely changed will have a longer lifetime because it's never disturbed.

As a strategy to improve cell lifetimes, the SSD itself will spread new writes to "random" blocks scattered across the drive in an effort to average out writes so the burden of writes is shared over a larger pool of eligible blocks. If you were writing 50,000 times to a single logical block, the SSD would round-robin those 50,000 writes across thousands of other physical cells. So each individual cell shares the burden of get written to, but each cell's average write history increments by a few.

HDD's are slower, but in general a disk block on magnetic media doesn't care if it's written to 5 times, 50 times, or 50,000 times. You can't "wear out" a magnetic drive in the same fashion as an SSD. SSD's are faster and more compact, but the tradeoff is we can't do secure file erases because of limitations in the flash memory technology.
 

My Computer My Computer

At a glance

Windows 7
OS
Windows 7
Back
Top Bottom