Here are just some of the news events in the world of Digital Investigations.
Spafford to Chair External Board for $45M Sandia Labs Digital Assurance Campaign
WEST LAFAYETTE, Ind. — Eugene H. Spafford, professor of computer science in Purdue University’s College of Science and internationally recognized authority on cybersecurity, has been chosen to help Sandia National Laboratories in its campaign to manage digital risks to high-consequence systems.
Spafford, executive director emeritus of CERIAS, Purdue’s Center for Education and Research in Information Assurance and Security, has been appointed chair of the External Advisory Board for Sandia’s Digital Assurance for High Consequence Systems (DAHCS) Mission Campaign.
Will Zortman, Sandia’s DAHCS campaign manager, says the $45 million initiative is a strategic investment to “replace the status quo of ad hoc, slow and costly digital assurance methods with a rapid, cost-effective and generalizable way to secure systems and mitigate threats.”
Digital Forensics Consultancy Secures ISO Accreditation for the Second Re-Certification Cycle
The UK’s longest-established digital forensics consultancy service provider has successfully undergone a rigorous audit to secure its second UKAS re-certification for ISO 17025:2017.
In securing the UKAS re-certification for the second time, South Wales-based SYTECH has been accredited under ISO 17025 for the previous eight years – a notable achievement in the digital forensics sector.
The international standard, which has been made a mandatory requirement by the Forensic Science Regulators Code of Practice for forensic providers who are putting evidence into the Criminal Justice System, outlines the robust requirements for testing and calibration in laboratories. It sets out guidelines for quality management, technical competence and the ability to produce accurate and reliable test and calibration data.
Significantly, the firm is now also the first UK private-sector company to undergo an extension to its scope, to now have included within its schedule of accreditation the pioneering GrayKey software solution, utilised for full-file system mobile extractions.
SYTECH has also successfully passed its re-certification audits for ISO 27001, 14001 and 9001.
From March 1 to March 20, ICITAP provided training to the Nepal Digital Forensics Lab (DFL). Sixteen attendees successfully completed this training on analyzing iOS devices from a basic to advanced level along with advanced SQLite training. During this training, ICITAP created an evidence intake workflow in alignment with industry best practices. During the visit the new workflow was mapped out, presented, and approved by DFL management. ICITAP also redesigned the evidence room and the changes were approved by DFL management. Procurement of evidence room materials underway. ICITAP implemented security controls to track unauthorized personnel entering the building. A serious gap identified during a previous initial assessment. Subsequent evidence room personnel tracking in progress. ICITAP created and provided mechanisms for both. ICITAP supplied an electronic case/evidence tracking system, which provides a mechanism for case assignment, device tracking in the evidence room, and tracking of turn-around-time per device and examiner. This will help demonstrate the improved ability of the Lab thanks to ICITAPs influence, further our completion of our IAA obligations. ICITAP finalized a vase prioritization and case acceptance memo created and under review by DFL management for distribution to Nepal Police utilizing the DFL. Finally, ICITAP created an evidence consent memo created for acceptance by any unit submitting evidence to the DFL. This is necessary as the legal authority to perform analysis does not cover damage or destruction of digital device in the analysis process. This is an issue for the DFL; this consent memo must be accepted by unit submitting evidence to the DFL. The memo is currently under review by the DFL management for distribution to all Nepal Police Headquarters. ICITAP-Nepal is grateful for the support of the U.S. Department of State’s Bureau of International Narcotics and Law Enforcement Affairs (INL).
UK Watchdog Looking Into Microsoft AI taking Screenshots
The UK data watchdog, the Information Commissioner's Office (ICO), says it is "making inquiries with Microsoft" about Recall, a new feature that can screenshot users’ computers every few seconds.
Microsoft says Recall, which will store encrypted snapshots locally on your computer, is exclusive to its forthcoming Copilot+ PCs.
The ICO says it is contacting Microsoft for more information on the product's safety, which privacy campaigners have called a potential "privacy nightmare.”
Microsoft says Recall is an "optional experience," and it is committed to privacy and security. Its website states users "can limit which snapshots Recall collects.”
"Recall data is only stored locally and not accessed by Microsoft or anyone who does not have device access," the firm said. It said a would-be hacker would need to gain physical access to your device, unlock it, and sign in before they can access saved screenshots.
However, an ICO spokesperson said firms must "rigorously assess and mitigate risks to peoples' rights and freedoms" before introducing new products. "We are making inquiries with Microsoft to understand the safeguards in place to protect user privacy," they said.
Forensics Company Delighted by King's Award
A Stafford digital forensics business that has developed cutting-edge AI-powered software that is helping find child victims of sexual abuse is celebrating its King's Award for Enterprise.
Semantics 21 was recognised for innovation.
The award is expected to be presented by Lord Lieutenant of Staffordshire Ian Dudson later this month.
Chief executive Dr Liam Owens, a UK expert who has been called upon by the House of Lords for advice on AI in policing, and automated decision-making in digital forensics, said: “I’m proud to work alongside the most dedicated and passionate team in digital forensics and we’re thrilled to receive this award, which is an incredible honour, from the King.
“Our UK and international team of experts in their respective areas, have one common goal: rescuing victims. They give their all (and more), to ensure that police entities have access to the very best tools and support, enabling forces to do what they do best, protect the public and save children from sexual exploitation.”
Chile Ambassador In India, CBI Officials Discuss Combating Tech-Enabled Crimes & Drug Trafficking
New Delhi : A delegation led by Juan Angulo Ambassador, Embassy of the Republic of Chile in India on Monday held a discussion with the Central Bureau of Investigation (CBI) for forging a close cooperation between CBI and PDI (Policía De Investigaciones De Chile) for combating technology enabled crimes, drug trafficking and transnational crimes, CBI officials said.
Ambassador Angulo held discussions with Praveen Sood, Director, CBI and senior officials at CBI headquarters on this issue. Juan Angulo underscored the importance of collaborative efforts and thanked CBI for arranging events in the past with PDI, Chile, for exchange of expertise on forensics and combating organized crime, CBI officials said.
The delegation accompanied by Rafael Andres Tellez Benucci, Police Attache PDI (Policía De Investigaciones De Chile), Chile also visited the Global Operations Centre of the Indian central agency. It was deliberated to strengthen the collaborative framework for police cooperation, the probe agency officials said.
Network forensics is a critical component of cybersecurity, involving the collection, analysis, and interpretation of network data to uncover and respond to security incidents. As organizations face increasingly sophisticated cyber threats, the demand for robust network forensic solutions continues to grow. The report provides insights into the Network Forensics Market, including competitive analysis, market segmentation, regional outlook, key growth drivers, strengths, impact of the recession, and other market dynamics.
The Network Forensics Market is a crucial component of cybersecurity, focusing on the investigation and analysis of network traffic to uncover security breaches, cyberattacks, and other suspicious activities. Network forensic tools and solutions enable organizations to identify threats, mitigate risks, and ensure the integrity of their network infrastructure. This market is driven by the increasing frequency and sophistication of cyber threats, the growing importance of digital forensics in incident response, and regulatory compliance requirements. As organizations prioritize cybersecurity measures to protect their assets and data, the Network Forensics Market continues to expand, offering advanced technologies and methodologies for effective threat detection and response.