Traditionally the forensic investigator would investigate and collect physical evidence such as documents, fingerprints, financial records and other trace evidence.  With the onset of the computer and technology age, the role of traditional investigations has not diminished but has added another aspect to forensic investigations that being the collection and analysis of electronic data stored in various computers thus enter the Computer Forensic Specialist (CFS).  The discovery of electronic data has an increasing role to play in both investigations and dispute resolutions.  The cyber criminal is a reality and employee abuse of computer systems and internet access.

 

Electronic data can be collected from computers, personal data accessories, network servers and even cellular phones.  The magnitude of data can be enormous and those with the intent to conceal their activities by deleting incriminating electronic information provides for numerous obstructions to an investigation.  Our CFS associates are able to discover and collect electronic evidence while crucially complying with legal prescriptions for use in litigation procedures.

 

Through the investigation phase analysis of data is often required and drawing on for example the expertise of our Forensic Intelligence experts data may be analysed and matching techniques applied to provide a Link Analysis illustrating events, potential suspects, tracing lost funds and recovery. 

 

Examples when computer forensics may be required:

 

· A computer or network server by hold information pertaining to fraudulent transactions

· Documentary evidence that requires scanning and indexed storing

· Sensitive data stored on a crucial computer that needs to be recovered before it is damaged, lost or even stolen

· An image of data stored on a computer to ensure integrity and minimise the risk of loss

· Data mining for analysis, sorting, grouping and converting data for specific requirements while applying forensic intelligence to manipulate data, extraction compared to financial records and fraud detection

· Link analysis

· Data interrogated to prove illegal or unacceptable use of computer network facilities

· Data recovery from computers and servers to discover deleted or destroyed files, decryption of data and decoding passwords

· Computer and electronic risk management in the prevention of abuse and fraud

 

Apart from the risks already mentioned arising form computers and networks, there is also a real risk of them being used to obtain information by unscrupulous competitors, foreign governments, terrorist or crime groups.  This may come in the form of hacking, use of spyware and even virus to sabotage a company network.  But the technology age through computers has added a new dimension to eavesdropping, bugging and wiretapping. 

 

Threats may come in following forms:

 

· Spyware

· Surveillance Software

· Keystroke Loggers

· Firewall Vulnerabilities

· E-mail Interceptions

· Other forms of hacking

· Computers and networks used as electronic surveillance transmission devices

 

Working closely with our counter electronic surveillance and espionage division we are able to develop strategies to detect intrusions and risks or prevent incidents.  Our combined experience and expertise provides our clients a number of options with a packaged solution and total management through one entity.

ccs

Excellence ♦ Integrity

South Africa

csi

Excellence ♦ Integrity

Namibia

Computer

Forensics