Fault symptom:
Lenovo security announcement: LEN-5595
Potential impact: drive data may be restored after the secure purge utility is run.
Severity: medium
Impact scope: Lenovo
Abstract description:
The SanDisk firmware used to clear data in these SSDs does not comply with Lenovo specifications. It has been confirmed that, even when you run the ThinkPad Drive Erase Utility used to reset the encryption key and Erase the SSD, or after the Secure Erase function is executed in the BIOS, in some cases, data in the affected SanDisk drive may still be recovered. For example, if an obsolete SSD falls into the hands of hackers, they will know how to recover the data.
To solve this problem, SanDisk has released firmware fixes provided by Lenovo in the following links.
Solution:
Measures should be taken for self-protection:
Update the SSD firmware or your system BIOS (see the following table ).
Note: it is not guaranteed that SSD not purchased through Lenovo can be used with these tools.
To confirm your disk drive model in Microsoft Windows, enter "device manager" in the Windows Search box to go to "device manager" and expand the arrow next to "disk drive.