I have just received a My Cloud EX2 Ultra (2 bays). I want to know that a burglar cannot swipe the hardware and maybe remove the drives and scrape out the data. I’m guessing that is the point of having HDD Encryption at all?
I have seen a lot of forum people say that Encryption is pointless on a “My Cloud” device - lots of comments about how a thief can simply use a paper clip to reset the device.
As I understand it, my “256 AES Volume Encryption” is “hardware encryption” and the data physically written to the hard drive platters is gibberish without the password. Correct?
So wouldn’t the paper clip reset be useless to a thief (if the drive is not “mounted”)? Unless the password is provided by a human when the drives are mounted (in the case of “manual mount”) I don’t see how the crook/admin with the newly reset password can get access to the data which is physically encrypted? I suppose s/he could delete stuff, and that would be just fine, but reading data without the password? How?
If I’m right, I’m assuming I will have to avoid “automatic mount” (which bypasses the need for us human owners to enter the password on the dashboard at mount time). And, in that event, I’m guessing I’ll need to “unmount” when we’re leaving town and use the dashboard to manually enter the password and “mount” the drives when we need them again.
If I’m off-base, I’d appreciate a short tutorial on where I went wrong. Thanks!
P.S. I did talk to first-level support. I couldn’t get a clear answer to my question about what a thief can (or, more importantly canNOT) do with a hard drive that has HDD hardware encryption. All the support person said was that a thief could reset the admin password with a paper clip and that WD recommends that I not let my hard drives be stolen. (Not very helpful in my case.)
If I’m not there to manually enter the decryption password, I don’t understand how anyone can read the data of the physical drive, fake admin or not.
I am guessing that I will have to unmount the drive if we go out of town, but I’m not sure.
Q: If a thief resets with a paper clip will that automatically unmount the drives?
Q: If a thief yanks the drives into his big thief bag labelled “SWAG”, thus unplugging the power, that will obviously “unmount” the drives requiring that I be there in person to enter the password, right?