February 03, 2010 Collaborative Computer Forensics Often digital forensic investigators operate in a vacuum with limited information about the case they are working. Collaboration between investigators and attorneys, however, can lead to quicker and more cost effective results and a more successful analysis of the evidence. By Bruce A. Olson, Esq. Read
All >>
October 01, 2009 Use BitPim to Acquire Mobile Phone Data This method came about because of all the banter on the listservs about the Faraday technologies to block cell phone signals. All of these devices have their strengths and weaknesses. If you are currently processing phones and have been to any type of training, you understand that the first and most important rule is to remove the handset from the network. By Mobile Forensics, Inc. Read All >> Three Simple Steps to Live Memory Acquisition By WetStone Read All >>
The Forensic Dossier® Data Capture Solution Quickly capture multiple suspect hard drives at speeds approaching 7GB/min with Logicube’s Forensic Dossier®. The Dossier provides built-in support for SATA/IDE hard drives, flash media and RAID pair and optional support for both SCSI and SAS drives. This advanced solution captures a suspect drive to multiple DD image files and provides optional support for capture to E01 evidence file format. The Dossier provides 100% write-protection of source drives – use the Dossier as an external write-blocker for easy drive preview/image transfer.(www.logicubeforensics.com)
Articles
The Digital Forensic Sub-Disciplines ASCLD/LAB recognizes Digital and Multimedia Evidence as a forensic discipline with four sub-disciplines, but can we clearly differentiate whether an examination falls under Computer Forensics, Forensic Audio, Image Analysis, or Video Analysis? By John J. Barbara Read All >> To Catch a Child Predator New techniques are emerging to help forensic analysts build cases against Internet child pornographers. By Douglas Page Read All >> Q&A with Larry Depew: Insight on Designing a Functional and Efficient Digital Forensics Laboratory One requires specialized space, equipment, and skills to stop those behind the most serious of computer intrusions and the spread of malicious code, to identify and thwart online sexual predators who use the Internet to meet and exploit children, and to dismantle organized criminal enterprises. By Ken Mohr Read All >> DECAF Neutralized Earlier this week, hackers made available DECAF, an anti-forensics application created to obstruct Microsoft’s COFEE, the free tool released to law enforcement to facilitate forensic evidence retrieval by untrained first responders. Decaf has now been pulled down from their site and every copy has been disabled. Read All >> Collection of Evidence from the Internet, Part 2 The question for digital forensic examiners is not only how to collect and document information from the cloud, but also whether the same acquisition and documentation methodology used for internet evidence can be used in the collection, preservation, and presentation of cloud-based evidence. By Todd Shipley Read All >>
February 03, 2010 GPS Forensics Helps Police Locate Body of Missing Man Last week, authorities used a new branch of computer forensics—GPS forensics—to help locate the body of a missing Peoria, AZ man. The case offers a glimpse into one of the rapidly-growing specialties in the computer forensics industry. By Frederick Lane Read
All >>February 03, 2010 Forensic Analysis Process/Procedures I've seen posts recently on some of the lists regarding processing forensic data. In most cases, the question centers around, what is (are) the first thing(s) you do with your forensic data? I thought I'd approach a response from a couple of different perspectives... Windows Incident Response Blog Read
All >>January 27, 2010 Plain View for Computer Searches Generates Two Circuit Splits in Two Days Does the fact that so much electronic evidence outside the scope of a warrant can come into “plain view” during a computer search require a different approach to whether that evidence outside the scope of the warrant should be admitted? By Orin Kerr Read
All >>January 27, 2010 XRY Logical Downloads of the iPhone Playing around with XRY the other day, I downloaded my iPhone. I had created a profile to only load in SMS because I was primarlily interested in looking at deleted SMS contained in the live database (i.e. SMS record slots inside the database that had been flagged as available but still containing the old data) with XACT. By Michael Harrington Read
All >>January 20, 2010 Twitter Comment Lands British Man in Jail In Britain recently, a man went to the airport intending to fly to Ireland to see his girlfriend. When he found out that his flight was canceled, he made what has since proven to be a life-changing comment on Twitter: "You've got a week to get your shit together, otherwise I'm blowing the airport sky high!!" By Frederick Lane Read
All >>
February 03, 2010 Pentagon Searches for “Digital DNA” to Identify Hackers One of the trickiest problems in cyber security is trying to figure who’s really behind an attack. Darpa, the Pentagon agency that created the Internet, is trying to fix that, with a new effort to develop the “cyber equivalent of fingerprints or DNA” that can identify even the best-cloaked hackers. Wired Read All >>February 03, 2010 London Police Start To Combat 2012 Olympics Cybercrime The Metropolitan Police is setting up two specialist units dedicated to tackling cybercrime at the 2012 London Olympics. One of the teams will be tasked with combating fraud and hacking, while the other will be dedicated almost exclusively to the prevention of ticketing fraud. IT Pro Read All >>February 03, 2010 U.S. Oil Industry Hit By Cyber Attacks: Was China Involved? At least three US oil companies were the target of a series of previously undisclosed cyberattacks that may have originated in China and that experts say highlight a new level of sophistication in the growing global war of Internet espionage. The Christian Science Monitor Read All >>February 03, 2010 Are We Engaged in a Cyberwar? America is under virtual attacks, with key government, military, and private-sector information systems being assaulted from abroad. But none of that means we're experiencing a cyberwar. GovInfo Security Read All >>February 03, 2010 Hacking for Fun and Profit in China’s Underworld A young Chinese hacker let a reporter into his world of trolling for information that may one day be worth money. He operates secretly and illegally, as part of a community of hackers who exploit flaws in computer software to break into Web sites, steal valuable data, and sell it for a profit. The New York Times Read All >>
February 03, 2010 Backbone Security Expands Digital Steganography Database Backbone Security is pleased to announce the latest version of their Steganography Application Fingerprint Database (SAFDB) is now available. SAFDB is a hash set exclusive to digital steganography applications. Read All >>February 03, 2010 Enhanced Cyber-Based Threat Intelligence HBGary Federal will partner with Palantir Technologies to provide enhanced threat intelligence, including the origin of today’s global cybersecurity threats, so the federal government can better protect our national cyber infrastructure. Read All >>February 03, 2010 Wi-Fi Investigator Version 2 Released Digital Certainty has delivered the first units of its Wi-Fi Investigator Version 2. Wi-Fi Investigator, the handheld tool that physically locates wirelessly networked devices, was immediately used to conduct a critical security inspection and successfully secured the customer facility. Read All >>January 27, 2010 Fatal System Error Has Insight on Cybercrime Fatal System Error, the new book by Financial Times' cyber-security reporter Joseph Menn, sheds light on the $1 trillion cybercrime industry that festers beneath the Internet. San Francisco Chronicle Read All >>