User Account

All Pages

Computer-digital forensics

Assignment Help Basic Computer Science
Reference no: EM133189584

Question 1.

As a digital forensics examiner, you have been called to the scene of a kidnapping. Several witnesses have told the investigator that the victim was very excited about a new person they met online. Your job at the scene as a digital forensics examiner is to recommend to the investigating officer a course of action as to what digital evidence may or may not be needed to investigate this crime.

- Provide a list of potential digital evidence that the investigator is going to want to seize for possible forensic examination. Be thorough, as the lead investigator in this case is not computer savvy.

- What additional sources of evidence might there be besides the digital equipment and media that would have been seized? How would you gain access to this evidence?

- Describe how you will maintain the collected evidence.

- What will you do to prepare for presenting this evidence in court?

Question 2.

In August 2008, 11 people were charged with the theft of more than 40 million credit and debit card numbers from T.J. Maxx, Marshall's, Barnes & Noble, OfficeMax, and other major retailers. Masterminded by computer hacker Albert Gonzalez, the case remains one of the largest frauds of credit card information in history.

The Heartland case was similar to the TJX case. Between 2007 and 2009, the data breach involved the Heartland Payment Systems, the fifth largest credit card processor in the United States. During that time, Gonzalez and co-conspirators gained access to information associated with millions of credit cards by exploiting a network vulnerability.

Both cases-Heartland and TJX-involved the theft of over 130 million credit and debit card numbers, making it the biggest computer crime case ever prosecuted in the United States.

Question:

You are the CISO of a Fortune 500 company here in the U.S. Your company uses customer credit card information to process millions or orders every year, both online and via traditional marketplace venues. You have information that, based on the Equifax breaches, your secure database has been breached and customer credit card data may have been stolen.

You are meeting with a Digital Forensics investigator who has been hired to access incidents and report back to you with their findings. Detail the following:

1. Needs for the DF investigation -- why did you bring in the investigator?

2. The forensic process you want followed, including data collection (detail possible sources of data), examination, analysis, and reporting.

3. List and describe the type(s) of information and its relevance to this case from each of the following: data and data files, Operating Systems (Windows 10, Win Server, and Ubuntu Linux), network traffic, applications, and eMail and services.

Question 3.

In August 2017, a Wisconsin woman captured after living under an alias for 16 years was sentenced Tuesday to 14 years in prison for kidnapping an Allen Park woman in 2000.

FBI agents mining social media discovered Kimberly Lee Johns last year in Marathon County, WI, where she was living under the name Kim McGuire. She had escaped a halfway house in 2000 while awaiting trial in federal court in Detroit.

During the trial, defense attorneys requested to submit numerous emails (dated between 1999-2000), that they contained personal, intimate, and sexual details of the couple's relationship, and therefore showed a consensual relationship between the parties. The Government challenged their admissibility on the basis of authenticity, hearsay, relevancy, and Fed. R. Evid. 403.

Question:

The conviction has been appealed, and you are a Digital Forensic investigator who has been hired by John's attorney to provide a report that can be submitted to the Federal court that details the tools and techniques that can be used to authenticate email messages from the time period.

Provide two possible situation with or without legal subpoena to access data from the email providers. Keep in mind that this is a Federal criminal case, and therefore your report needs to be professionally written and note any legal protocols or cases that might impact this appeal.

Question 4.

The head of the HR department and General Counsel called you into a confidential meeting with no notice. They have a report of an insider risk, where a co-worker was stealing financial documents prior to the company's IPO.

A report from an anonymous co-worker said the actor appeared to have uploaded company financial files to DropBox or via email within the last 48 hours. Your company does not use DropBox and it is not installed on the workstations.

The accused co-worker is claiming innocence, has been placed on administrative leave, and is threatening to sue the company.

The Head of HR and the GC have asked you to:

1. Outline everything you need to perform a forensic examination to determine if the accusation is true.

2. Identify the data that will appear as a result of your examination.

3. Identify what you need to appear at a deposition (and possibly go to court) as an expert witness.

Think about the various concepts we have covered throughout this course, including the labs and Discussion Board activity. Prepare an outlined response for the Head of HR and the GC's requests.

Reference no: EM133189584

Questions Cloud

Cloud computing technologies : Select an organization that has leveraged Cloud Computing technologies in an attempt to improve profitability or to give them a competitive advantage
Does your company appear to be in sound financial condition : Does your company appear to be in sound financial condition, What problems does your company have that need to be addressed
Demonstrate knowledge of advanced datatypes : The purpose of this assignment is to demonstrate knowledge of advanced datatypes and the use of lists and dictionaries to store, retrieve process data.
Appropriate for mixed methods research study : Identify a research problem appropriate for a mixed methods research study. Problem statement. Purpose statement.
Computer-digital forensics : What additional sources of evidence might there be besides the digital equipment and media that would have been seized?
How should managers manage each of the two biases : What factors do you think bring about these biases, and how should managers manage each of the two biases
Identity management-identity verification systems : Do you feel that this type of identity verification is sufficient? Do you feel that other identity verification systems
It policy management framework : You will create IT policies. These policies, standards, and procedures must be approved and published on company websites.
Variety of access management protocols : Different businesses and industries have a wide variety of access management protocols; most of these are driven by the specific threats faced by those organiza

Reviews

Write a Review

Basic Computer Science Questions & Answers

  Identifies the cost of computer

identifies the cost of computer components to configure a computer system (including all peripheral devices where needed) for use in one of the following four situations:

  Input devices

Compare how the gestures data is generated and represented for interpretation in each of the following input devices. In your comparison, consider the data formats (radio waves, electrical signal, sound, etc.), device drivers, operating systems suppo..

  Cores on computer systems

Assignment : Cores on Computer Systems:  Differentiate between multiprocessor systems and many-core systems in terms of power efficiency, cost benefit analysis, instructions processing efficiency, and packaging form factors.

  Prepare an annual budget in an excel spreadsheet

Prepare working solutions in Excel that will manage the annual budget

  Write a research paper in relation to a software design

Research paper in relation to a Software Design related topic

  Describe the forest, domain, ou, and trust configuration

Describe the forest, domain, OU, and trust configuration for Bluesky. Include a chart or diagram of the current configuration. Currently Bluesky has a single domain and default OU structure.

  Construct a truth table for the boolean expression

Construct a truth table for the Boolean expressions ABC + A'B'C' ABC + AB'C' + A'B'C' A(BC' + B'C)

  Evaluate the cost of materials

Evaluate the cost of materials

  The marie simulator

Depending on how comfortable you are with using the MARIE simulator after reading

  What is the main advantage of using master pages

What is the main advantage of using master pages. Explain the purpose and advantage of using styles.

  Describe the three fundamental models of distributed systems

Explain the two approaches to packet delivery by the network layer in Distributed Systems. Describe the three fundamental models of Distributed Systems

  Distinguish between caching and buffering

Distinguish between caching and buffering The failure model defines the ways in which failure may occur in order to provide an understanding of the effects of failure. Give one type of failure with a brief description of the failure

Free Assignment Quote

Assured A++ Grade

Get guaranteed satisfaction & time on delivery in every assignment order you paid with us! We ensure premium quality solution document along with free turntin report!

Submit Assignment

Academics

Major Subjects

Majors

Get In Touch

whatsapp: +1-415-670-9521

Phone: +1-415-670-9521

Email: [email protected]

TERMS & POLICIES

HELP & SUPPORT

All rights reserved! Copyrights ©2019-2020 ExpertsMind IT Educational Pvt Ltd