Forensically Sound Preservation and Processing of Exchange Databases

By Jim McGann and Greg Freemyer

Exchange server repositories, including Exchange databases (EDB’s), STM’s, and log journals, are large and complex. Performing thorough ESI collection from Exchange is challenging. By using some new imaging tools, forensic investigators can bypass the limitations of ExMerge and get better search results including deleted messages.

read more

ATM Malware Lets Criminals Steal Data and Cash

Malware has been found on ATMs that allows criminals to steal account data and PINs and even empty the machine of its cash, a computer forensics expert said. About 20 ATMs have been compromised, mostly in Russia and Ukraine, but there are "early indications" of compromised ATMs in the U.S.

cnet

VIDEO: Silicon Valley Welcomes Cyber-Security Push

High-tech companies in Silicon Valley are embracing a new initiative by the White House to beef up cyber-security. They believe new measures are necessary due to a huge rise in identify theft and computer viruses.

abc

FTC Shuts Down “Worst ISP In U.S.”

The Federal Trade Commission shut down Pricewert LLC., a rogue Internet service provider accused of hosting and actively distributing child pornography, malware, and spam. Gary Warner, director of computer forensics research at the University of Alabama at Birmingham, believes that Pricewert "is the worst ISP located in the United States in terms of hosting malicious content."

information week

ISP Pricewert Protests Shutdown

Pricewert protests the FTC shutdown of their internet access and plans to fight them in court. Pricewert has been accused of shielding clientele said to be engaged in criminal activities and of operating a botnet with command-and-control servers aimed at disseminating malware and conducting phishing attacks.

pc world

Hacker “Dark Tangent” Joins DHS Advisory Council

The real sign that the White House might be finally taking cyber security seriously came in an announcement on Friday that Jeff Moss, aka “Dark Tangent”, the former hacker behind the annual DefCon hacker confab in Las Vegas, has been appointed to the Department of Homeland Security’s Advisory Council (HSAC).

wired

2010 DoD Cyber Crime Conference Call for Presentations

If you are developing practical solutions to problems in cyber crime investigations and analysis; cyber incident response; data retrieval and analysis; legal problems, issues, or innovations; or problems related to infrastructure protection, then consider submitting a paper. Abstract submissions due: July 1, 2009.

dod

ADF Solutions Triage-ID 2.0 Forensic Software Speeds Time-to-Conviction in Child Porn Cases

ADF Solutions, Inc. announced the release of Triage-ID 2.0, the next generation of its forensic triage software. This software is deployed in both field and lab investigations of computers and is used to identify high-value evidence in a matter of minutes.

read more

Powerful Digital Forensic Triage Tool Launched by Evidence Talks Ltd.

SPEKTOR Forensic Intelligence, a fast and forensically sound data acquisition, analysis, and review solution for front line officers from the law enforcement and government communities, has been launched by UK-based forensic computing experts Evidence Talks Ltd.

read more

Guidance Software Announces EnCase Portable Solution

Guidance Software Inc. announces EnCase Portable, a new data acquisition solution on a USB drive that enables law enforcement, government, law firm, and corporate customers to leverage the search and acquisition capabilities of EnCase in a wide range of field applications.

read more

Raytheon and The University of Texas at Austin Partner To Provide Innovative Cybersecurity Solutions

The Center for Information Assurance and Security (CIAS) at The University of Texas at Austin has partnered with Raytheon Company on research for new and innovative cybersecurity solutions.

the university of texas

Products Make E-Discovery Easier

A range of products can help with e-discovery, and in some cases, companies already have the technology they need. E-mail archives and document management systems are well-suited for e-discovery because they serve as an information repository.

information week

ZyLAB Deepens E-discovery

ZyLAB has announced three new modules for its ZyIMAGE E-discovery and Production platform. These three new modules enable organizations to audit and keep detailed records of their in-house e-discovery process to provide validation to the court that it was done properly.

km world

Cloud Danger: Drag and Drop Theft

Many cloud solutions involve virtualizing the server environment. A virtual machine is an attractive target, because it's a drag and drop theft: you can pilfer data without physically moving equipment, conducting a forensic image, or performing any complex disk copy. Once I have the copy of your VM, I am free to hack away in my own environment without any time or security limitations.

By Eric M. Fiterman

government information security

A Matrix to Sort Through EDD Software

With the struggle in the legal technology community in determining which products solve a particular problem, it was only a matter of time before an enterprising consultant created a tool to navigate the sea of product information. That tool, the E-Discovery Application Matrix, arrived earlier this year.

By Ari L. Kaplan

law.com

Desktop, Laptop, Email Backups Critical For Employee Lawsuits

I recently spoke with Thao Tiedt, a labor and employment partner at Ryan Swanson & Cleveland, PLLC. Our conversation focused on e-discovery from the perspective of consequences when individual employees use company computers in ways not approved by their employer.

By Bruce Wilson

wilson ig

Is Digital Forensics a Science?

The legal system in the USA uses the Daubert or Frye tests for admissibility of scientific evidence and that ruling is made by a judge in each case where such evidence is challenged. Digital forensics or computer forensics has passed those tests on many occasions.

By Larry Daniel

guardian digital forensics

Which Computer Forensic is Right For Me?

There are a number of computer forensics certifications that one could choose from. How then, does one choose the appropriate certification to pursue? While all of the certifications are valuable, I would recommend pursuing one that includes a practical examination and one in which you can use the tools with which you are most familiar.

By John Golinvaux

read more