Digital forensics discussion for computer forensics, DFIR and eDiscovery professionals. Visit Forensic Focus at forensicfocus.com for more.
The Impact Of AI On Video Forensics: Insights From Amped Software
Martino Jerian, CEO of Amped Software, joins the Forensic Focus Podcast to discuss AI’s impacts on video forensics. In this episode, Martino delves into the growing role of artificial intelligence in automating forensic processes, as well as the benefits and challenges it brings to the field. He shares insights on how AI is reshaping image and video enhancement, deepfake detection, and the authentication of digital evidence, while also cautioning about the risks of over-reliance on these tools. Martino provides a detailed perspective on how AI is being applied responsibly to balance efficiency with accuracy, especially in high-stakes forensic investigations. The conversation also explores Martino's contributions to legislative discussions in the European Parliament, emphasizing the importance of educating practitioners, journalists, and the public on AI's proper use in digital forensics. If you're interested in the latest deepfake detection methods or the evolving regulatory landscape of AI, this episode offers an in-depth look at the future of video forensics. 00:00 Introduction and Guest Welcome 00:31 Discussing AI and Regulation 01:22 Challenges in Video Evidence 04:12 AI in Forensic Tools 07:52 Research and Trends in AI 10:48 Deepfake Detection and Legal Implications 14:45 Future of AI in Forensics 20:00 AI and Image Authentication 42:44 Staying Updated in AI and Forensics 47:12 Conclusion and Farewell Show Notes Video Evidence Principles, Amped Software – https://ampedsoftware.com/video-evidence-principles Judge Blocks Use of AI-Enhanced Video Evidence, NBC – https://www.nbcnews.com/news/us-news/washington-state-judge-blocks-use-ai-enhanced-video-evidence-rcna141932 Ferrari Exec Foils Deepfake Attempt, Fortune – https://fortune.com/2024/07/27/ferrari-deepfake-attempt-scammer-security-question-ceo-benedetto-vigna-cybersecurity-ai/ Amped Blog – https://blog.ampedsoftware.com/ Martino’s LinkedIn - https://www.linkedin.com/in/martinojerian/ Can AI Be Used for Forensics and Investigations? – https://www.forensicfocus.com/news/can-ai-be-used-for-forensics-and-investigations/
9/26/2024 • 49 minutes, 43 seconds
The Impact Of Traumatic Material On DFIR Well-Being
Paul Gullon-Scott BSc MA MSc MSc FMBPSS joins the Forensic Focus Podcast to discuss the mental health challenges faced by digital forensic investigators (DFIs), particularly in relation to secondary traumatic stress (STS). He explains how exposure to distressing content, such as child sexual abuse material (CSAM), can lead to burnout, anxiety, and depression. Drawing on his many years of experience in digital forensics and research, Paul highlights the lack of UK-specific studies in this area and shares his development of a well-being framework aimed at reducing the mental health toll on DFIs. This framework includes a grading policy and a well-being booklet designed to help investigators recognize stress symptoms in themselves and others, while reducing their exposure to traumatic material. Paul also touches on his recent research into the role of neurodiversity in digital forensics and the importance of adapting mental health support to neurodiverse individuals in the profession. 00:00 – Introducing Paul Gullon-Scott Bsc MA MSc MSc FMBPSS and his Research into DFI Mental Health 07:20 – Impact of CPS Guidelines on DFIs 10:30 – Research Findings on Secondary Traumatic Stress 22:40 – Gender and Age Differences in Stress Response 30:50 – Support Systems and Coping Strategies 46:00 – Neurodiversity in Digital Forensics 52:50 – Conclusion and Final Thoughts If you have been affected by any of the issues raised in this episode, these organisations may be of help: Samaritans – https://www.samaritans.org Mind – https://www.mind.org.uk Oscar Kilo – https://www.oscarkilo.org.uk/ Occupational health unit (OHU) – all police forces have access to an OHU providing a range of support services Employee Assistance Scheme (EAS) – check with your employer to see what specific resources are available to you GP – your GP can provide access to various local resources and make referrals to psychological support services
9/19/2024 • 56 minutes, 46 seconds
Is There A Mental Health Crisis In Digital Forensics?
Content warning - this episode discusses suicidal feelings. Prof. Sarah Morris joins the Forensic Focus Podcast to discuss the critical topic of mental health within the digital forensics field. The conversation covers the impact of traumatic content on analysts, the gaps in mental health support services, and the challenges faced by the industry due to work-related stress. The episode also explores strategies for coping with mental health issues, the role of AI in mitigating exposure to sensitive content, and the importance of organizational changes to better support professionals in the field. If you have been affected by any of the issues raised in this episode, these organisations may be of help: Samaritans – https://www.samaritans.org Mind – https://www.mind.org.uk Oscar Kilo – https://www.oscarkilo.org.uk/ Occupational health unit (OHU) – all police forces have access to an OHU providing a range of support services Employee Assistance Scheme (EAS) – check with your employer to see what specific resources are available to you GP – your GP can provide access to various local resources and make referrals to psychological support services
8/15/2024 • 1 hour, 3 minutes, 8 seconds
Combating The Rise Of AI-Generated Child Exploitation Material With Heather Barnhart
Heather Barnhart from Cellebrite joins the Forensic Focus Podcast to discuss combating the rise of AI-generated child exploitation material. Heather shares her extensive experience and insights on the impact of AI and deepfakes on investigations, the challenges faced by law enforcement worldwide, and the importance of education in combating digital crimes. Heather also emphasizes the significance of validating forensic tools and the necessity of educating both professionals and the public about the ethical and legal implications of AI. 00:00 – Introducing Heather Barnhart and her background in DFIR 03:05 – The Evolution of Child Exploitation and AI 07:25 – Challenges in Detecting Deepfakes 12:15 – Reporting and Legislation on AI and CSAM 17:30 – Public Awareness and Education on AI Exploitation 25:49 – Inappropriate Social Media Practices 37:05 – The Role of AI in Digital Forensics 39:20 – Validating AI findings 49:14 – Career Reflections and Future Directions Show Notes ‘Those explicit AI-generated Taylor Swift images, unsurprisingly, came from 4Chan’, The Verge - https://www.theverge.com/2024/2/5/24061985/those-explicit-ai-generated-taylor-swift-images-unsurprisingly-came-from-4chan Take It Down - https://takeitdown.ncmec.org/ Stop NCII - https://stopncii.org/ ‘AI-generated kids draw predators on TikTok and Instagram’, Forbes - https://www.forbes.com.au/news/innovation/tiktok-predators-ai-generated-kids/ The Exodus Road - https://theexodusroad.com/
7/23/2024 • 51 minutes, 41 seconds
Unlocking The Power Of Digital Forensics Training And Certification With Magnet Forensics
Chuck Cobb from Magnet Forensics joins the Forensic Focus Podcast to discuss training and certification. Chuck delves into his extensive background, including his tenure in law enforcement and over a decade of experience in forensic training at both Guidance Software and Magnet. He emphasizes the evolution of forensic training, particularly highlighting the challenges and opportunities that have arisen due to technological advancements and the Covid-19 pandemic. The conversation also touches on the generational differences in learners, the rise of microlearning, and the importance of scenario-based training that drives practical outcomes for students in both law enforcement and corporate sectors. Additionally, Chuck explains Magnet Forensics' approach to balancing financial sustainability with providing high-quality training. This includes their strategic use of online self-paced courses, virtual instructor-led sessions, and certifications that ensure examiners are well-equipped to handle various forensic tasks.
7/16/2024 • 1 hour, 2 minutes, 56 seconds
Setting The Standard For Image And Video Forensics In The US With Amped Software
Blake Sawyer from Amped Software joins the Forensic Focus Podcast to discuss video and image forensics in the US. He shares insights on the challenges of working with low-quality CCTV footage and how Amped Software has grown and been adopted in the US market. The conversation delves into the role of the Scientific Working Group on Digital Evidence (SWGDE) in developing best practices for the field and how these standards influence product development. It also covers Amped's new DeepPlate technology for license plate recognition and emphasizes the importance of error margins in AI-assisted forensic analysis. Blake goes on to discuss Amped's certification program and how it complements other industry certifications. He shares real-world case examples, including the "Pillowcase Murders" investigation, highlighting the practical applications of video forensics in solving complex crimes.
7/5/2024 • 44 minutes, 10 seconds
AI-Powered License Plate Reading With Amped DeepPlate
Marco Fontani joins the Forensic Focus podcast to discuss Amped Software’s latest AI-powered tool, DeepPlate. DeepPlate is a deep learning system designed to read license plates affected by common issues introduced by surveillance systems, making it a valuable asset for forensic video analysts. Marco provides an in-depth overview of DeepPlate, explaining how it currently supports eight countries (France, Germany, Italy, the Netherlands, Spain, Sweden, the UK, and the United States) and how it uses separate models for each country to account for varying license plate formats. He also discusses the synthetic data generation process used for training the models, ensuring privacy and mitigating bias. The conversation delves into the limitations and considerations when using AI-based tools in a forensic workflow, with Marco emphasizing the importance of bias mitigation techniques and proper interpretation of confidence scores. He stresses that DeepPlate is an investigative tool designed to provide a second opinion, rather than a tool for court admissibility. 00:00 – What is DeepPlate and what is its purpose? 02:45 – How many countries does DeepPlate currently support? 09:30 – What are the challenges of diplomatic and personalised number plates? 11:30 – How would a forensic video analyst use DeepPlate as part of their workflow? 13:40 – Can DeepPlate be used in Court? 16:30 – What is Amped Software’s position on AI? 19:00 – What will be the impact of updated models on results? 20:50 – What kind of data is used to train the system? 23:30 – How has the system been tested? 26:15 – What are the access conditions for using DeepPlate? 28:05 – Does Amped Software retain user data for DeepPlate and if yes for how long? 29:45 – Is it possible to buy additional seats for your license? 31:00 – What are the limitations and considerations when using AI-based tools like DeepPlate for forensic and investigative purposes? 35:20 – Does Amped Software plan to use AI in other areas? Show Notes Washington State Judge Blocks Use Of AI-Enhanced Video As Evidence In Possible First-Of-Its-Kind-Ruling - https://www.linkedin.com/feed/update/urn:li:activity:7181308834370494464/ Neural Network for Denoising and Reading Degraded License Plates - https://link.springer.com/chapter/10.1007/978-3-030-68780-9_39 Introducing DeepPlate, Amped’s Investigative Tool for AI-Powered License Plate Reading - https://blog.ampedsoftware.com/2024/02/28/introducing-deepplate-ampeds-investigative-tool-for-ai-powered-license-plate-reading
4/29/2024 • 38 minutes, 17 seconds
Cyber Scandals And When (Not) To Trust Computers
Join Si and Desi for another episode of the Forensic Focus Podcast. This week, they discuss the lack of transparency and potential misrepresentation in the cybersecurity industry, particularly regarding the use of open-source tools by companies and the questionable interpretation of data and statistics in marketing and advertising. The conversation also delves into the implications of relying on computer systems and algorithms to make important decisions, such as in the case of the Post Office scandal in the UK and the Centrelink repayment debacle in Australia. They emphasize the importance of human oversight, critical thinking, and considering the human impact of such decisions, rather than blindly trusting the outputs of computer systems. 00:00 – The state of the digital forensics industry 02:30 – Desi’s talk at BSides Brisbane 05:30 – Sweaty Cyber Advice and Strongman 09:40 – Companies integrating open source software 23:00 – Advertising, statistics and logical fallacies 28:00 – The Post Office scandal and computer accountability 49:00 – Security, compliance and regulations 56:00 – Closing thoughts Show Notes Hardly Adequate YouTube - https://www.youtube.com/@hardlyadequate Oxfordshire’s Strongman & Strongwoman - https:\oxfordshire.rocks\ CPS, Computer Records Evidence - https://www.cps.gov.uk/legal-guidance/computer-records-evidence Your Logical Fallacyis - https://yourlogicalfallacyis.com/ British Post Office Scandal - https://en.wikipedia.org/wiki/British_Post_Office_scandal The Guardian, Robodebt Scandal - https://www.theguardian.com/australia-news/2023/mar/11/robodebt-five-years-of-lies-mistakes-and-failures-that-caused-a-18bn-scandal Tyler Vigen, Spurious Correlations - http://www.tylervigen.com/spurious-correlations Forensic Focus Discord - https://discord.gg/97zKvTXHeS
4/10/2024 • 1 hour, 18 seconds
Kickstarting Your Digital Forensics Cybersecurity Career
Sophie Powell joins Si and Desi on the Forensic Focus Podcast to discuss various topics including her recent participation in a TryHackMe webinar, the challenges of applying for graduate schemes, and the relevance of the Cyber 9/12 competition to her career in cybersecurity. They also touch on the psychology of conspiracy theories and the implications of deepfake technology. 00:00 – Welcome to the podcast 03:00 – Sweaty Cyber Advice 03:55 – Fitness and forensics 07:00 – Mental health and mindfulness 09:10 – Gamified assessments 17:00 – Video recorded self-assessments 20:10 – Filtering candidates to fill roles 24:25 – Graduate schemes versus graduate jobs 27:40 – Apprenticeships and student loans 33:40 – Starting out on a graduate scheme 37:35 – UK Cyber 9/12 Strategy Challenge 43:55 – Dangers of deepfakes 51:10 – Conspiracy theories and computer psychology 54:40 – Closing thoughts Show Notes Hardly Adequate - https://hardlyadequate.com Try Hack Me - https://tryhackme.com/ UK Cyber 9/12 Strategy Challenge - https://www.ukcyber912.co.uk/
3/28/2024 • 58 minutes, 4 seconds
How Cado Security Is Revolutionizing Forensics And Incident Response For The Cloud
Chris Doman, Co-Founder of Cado Security, joins the Forensic Focus podcast to discuss cloud forensics and incident response. Cado Security provides cloud-based software for collecting and analyzing forensic evidence in cloud environments. Chris discusses the challenges of cloud forensics, such as the constantly changing nature of cloud environments and the need to standardize and normalize data from different sources. Cado Security is working on partnerships with cloud and EDR vendors, as well as IR providers, and is planning to release new features related to SaaS and email compromise investigations. 00:00 – Introducing Chris Doman from Cado Security 03:00 – Starting and growing Cado Security 05:45 – Cado Community 06:30 – Cloud forensics tools 10:40 – Collecting, processing and presenting data 12:00 – Advantages of cloud to cloud 13:50 – Audit logs 16:00 – Automation 20:30 – Training and investigation support 28:00 – Release cycle and managing updates 30:30 – Roadmap 40:30 – Chain of custody 43:00 – Encryption and storage 43:30 – Cado Security at events
3/11/2024 • 45 minutes, 49 seconds
How MSAB Is Managing The Digital Forensics Challenges Of Frontline Policing
Alan Platt, Professional Services Consultant at MSAB, discusses his experience as a former UK police officer working in digital forensics. He talks about the different levels of digital forensics capabilities within police forces and how MSAB products like XAMN and XEC Director are used by frontline officers versus lab analysts. The discussion covers how MSAB partners with law enforcement to develop custom workflows for mobile device acquisitions that facilitate ISO compliance. Alan explains MSAB's managed service offering, where approved MSAB staff can remotely access a customer's XEC Director server to assist with software updates and troubleshooting. He emphasizes the strict data segregation policies enforced by customers to prevent MSAB from accessing any sensitive case data. Looking ahead, Alan mentions MSAB's new CEO and hints at some exciting developments coming down the pipeline. He spotlights recent enhancements to XEC Director's speed and database functionality for managing large estates of networked Kiosks. Alan also plugs the new XEC Director training he created to help users fully leverage the platform's capabilities. 00:00 – Introduction to Alan Platt 07:00 – Training 12:00 – Workflows 17:20 – Ensuring a secure environment 19:45 – Customer training 20:35 – Helping customers comply with ISO accreditation 25:00 – Validation and verification 27:30 – ISO standards 30:00 – MSAB’s pipeline plans 32:40 – XEC Director 43:45 – Privacy of user data
2/21/2024 • 48 minutes, 37 seconds
Empowering Law Enforcement With Nick Harvey From Cellebrite
Nick Harvey, a former Detective Inspector in the Metropolitan Police, discusses his transition from law enforcement to his current role as a Customer Success Manager at Cellebrite. He describes his experience in tackling county lines, a form of organized crime in the UK where drug dealers set up operations in smaller towns and cities to expand their business. He also discusses the role of mobile phones in criminal investigations and how data-driven approaches can expedite the justice process. Nick goes on to highlight the challenges of explaining digital evidence to judges and juries and the potential impact of artificial intelligence in forensic investigations. He also emphasizes the importance of communication between digital forensics units and investigators and the need for tools that can handle large data sets and provide actionable insights. Nick shares his thoughts on the impact of regulations on forensic processes and the need for a balance between oversight and efficiency. He concludes by advising investigators to be open to new approaches and to focus on the objectives of their investigations. 00:00 – Introduction to Nick Harvey, Customer Success Manager at Cellebrite 02:40 – Data driven approach to tackling county lines crimes 07:50 – Changing landscape of mobile forensics 11:45 – Operation Venetic and EncroChat crime 15:20 – Ensuring admissibility of evidence 19:50 – Machine learning in crimes and crime detection 24:00 – Machine learning in Cellebrite’s tools 27:10 – Working at Cellebrite 31:30 – Managing large volumes of data 34:40 – Training tool users and empowering investigators to get the most from data 36:00 – Regulations and compliance frameworks 39:55 – Advice for digital investigators
1/26/2024 • 44 minutes, 11 seconds
Oxygen Forensic Training And Digital Forensics Solutions With Keith Lockhart
Subscribe to the Forensic Focus Podcast: https://www.forensicfocus.com/podcast/ Keith Lockhart, Vice President of Training at Oxygen Forensics, discusses the evolution of training in the digital forensics industry. He highlights the shift towards online training and the use of technology to deliver courses remotely. He also mentions the importance of gathering feedback from customers and adapting training programs to meet their needs. Oxygen Forensics is focused on providing a range of training options, including on-demand content and hands-on training with shipped devices. Additionally, Keith discusses the company's new technologies, Oxygen Corporate Explorer (OCE) and Oxygen Analytic Center (OAC), which offer collaborative review and data collection capabilities. 00:00 - Keith Lockhart’s career 06:45 – Educational background 09:15 – Technical knowledge and software development 14:55 – Transitioning to a training role 20:05 – Sharing knowledge and presenting evidence in court 24:15 – Products and training from Oxygen Forensics 34:00 – Receiving customer feedback 35:30 – Online versus in-person conferences and training 38:10 – Providing training and tools in different languages 41:00 – Oxygen Forensic Certifications 44:10 – Oxygen Forensics’ focus for 2024
1/16/2024 • 49 minutes, 57 seconds
Acquisition And Extraction With Cellebrite’s New Endpoint Mobile Now And Mobile Ultra
Si interviews Monica Harris from Cellebrite about new products and developments in the field of digital forensics. They talk about the importance of staying connected to the community and understanding their needs. Cellebrite has recently launched several new products, including Endpoint Mobile Now, a SaaS solution for the patent pending remote collection of targeted data on iOS and Android devices. Another new product is Mobile Ultra, a mobile forensics solution that provides access to mobile data on a wide range of iOS and Android devices. Cellebrite aims to develop technology that meets the needs of their customers and provides solutions for the challenges they face in digital forensics. 00:00 – Introduction to Monica Harris and Cellebrite 03:20 – New Cellebrite products and upgrades 05:40 – Cellebrite Endpoint Mobile Now 12:00 – Storage, privacy and ownership of acquired data 13:30 – Bandwidth requirements 15:00 – Targeting specific data 18:45 – Cellebrite Mobile Ultra 22:15 – Cloud collection platforms 26:10 – Collecting data from the cloud 27:05 – Screen share and capture capabilities 29:15 – What’s coming up for Cellebrite? 32:10 – AI and machine learning 36:40 – Final thoughts and invitation to get in touch
12/14/2023 • 39 minutes, 21 seconds
Picture Perfect: Using Screenshots And Screen Recording In Mobile Device Investigations
Si and Desi interview Rich Frawley from ADF Solutions. They discuss the use of screenshots and screen recording in mobile device investigations. Screenshots and screen recordings can be used to capture evidence that may not be available through logical acquisitions, allowing investigators to add valuable information to their cases. Rich also discusses the limitations of screenshots and screen recording, such as the inability to capture certain types of data or the risk of alerting the other party in a chat conversation. He emphasizes the importance of investigators knowing their cases and making informed decisions about the best methods to gather evidence. Rich also highlights the speed and efficiency of ADF Solutions' tools, which focus on triage and intelligence gathering rather than cracking devices. He mentions the company's training programs and the ability to generate reports and share data with other tools. The conversation touches on the future of mobile forensics, including wearables and emerging technologies like smart glasses.
12/13/2023 • 49 minutes, 48 seconds
UK Cyber 9/12 Challenge And CyberWomen Groups C.I.C.
Si Biles interviews Sophie Powell, Professor Sarah Morris, and Rob Black about the Cyber 9/12 Strategy Challenge. The challenge is an opportunity for students to experience a simulated cyber crisis and provide advice to senior government decision-makers. The guests discuss the value of the competition in developing multidisciplinary skills and the importance of diversity and inclusion in the cybersecurity field. They encourage students to participate and emphasize the benefits of networking and learning from industry professionals. The guests also highlight the need for more outreach and support for women in cybersecurity at all levels of education, and the work of CyberWomen Groups C.I.C.. Show Notes: Event Recap: The CyberWomen Conference 2023 - https://www.forensicfocus.com/event-info/event-recap-the-cyberwomen-conference-2023/
12/8/2023 • 54 minutes, 25 seconds
The Power Of Digital Forensics: How ADF Solutions Is Revolutionizing The Digital Forensics Industry
Si and Desi are joined by Brittany and Ailsa from digital forensics software company ADF Solutions. They discuss how ADF is addressing key challenges for digital forensics practitioners, including handling the massive volumes of data from mobile devices and the cloud. The guests outline ADF's focus on developing their software as an easy-to-use onsite triage tool that can help quickly identify pertinent evidence. Key features include advanced handling of video files, AI-assisted classification of images, and new screen recording capabilities for mobile devices that allow suspects to safely share relevant data. The hosts and guests also explore ADF's ongoing research into areas like facial recognition, handling new device types like games consoles and smart watches, and identifying deepfake media. 00:00 – Introduction to Ailsa and Brittany 03:00 – The challenge of vast amounts of data 05:50 – Recovering data from Chromebooks 08:50 – Triaging using ADF tools 12:30 – Benefits of using ADF Solutions’ tools 15:50 – Limitations in types of apps 17:20 – Keeping up with technological advancements 19:15 – ADF customer base 21:00 - Artificial intelligence in classifying images 30:00 – ADF Solutions’ triaging kit 37:00 – Training with ADF 40:00 – Target user 44:50 – Roadmap of future devices to examine 51:30 – Main focus for ADF Solutions going forwards Show Notes: AI-generated CSAM article on Sky News - https://news.sky.com/story/thousands-of-ai-generated-child-abuse-images-being-shared-online-research-finds-12991727
11/30/2023 • 55 minutes, 14 seconds
The Amped FIVE Certified Examiner (AFCE)
Si and Desi interview Emi Polito from Amped about their new certification called Amped Five Certified Examiner (AFCE). They discuss the exam requirements and format, as well as Amped’s future plans. Emi explains that the certification is aimed at demonstrating competency with the Amped FIVE video analysis software after completing training. The exam consists of multiple choice questions on theory and practical exercises using the software. Emi talks about the online exam format and process for passing or failing. Emi also discusses the broader challenges many organizations face with validation and accreditation. He emphasizes Amped's commitment to developing tools that facilitate that process. The hosts reflect on the confusing accreditation landscape and Amped’s passion for improving training and certification in forensics. This episode provides an overview of Amped's new certification and perspective on challenges in the field of video forensics. Show Notes: Introducing The AFCE Certification (Amped FIVE Certified Examiner) - https://www.forensicfocus.com/news/introducing-the-afce-certification-amped-five-certified-examiner/ Video Evidence Principles With Amped Software - https://www.forensicfocus.com/podcast/video-evidence-principles-with-amped-software/ Digital Image Authenticity And Integrity With Amped Authenticate - https://www.forensicfocus.com/podcast/digital-image-authenticity-and-integrity-with-amped-authenticate/ File Analysis And DVR Conversion Training From Amped Software - https://www.forensicfocus.com/reviews/file-analysis-and-dvr-conversion-training-from-amped-software/ Amped FIVE Speed Estimation 2d Filter And Training From Amped Software - https://www.forensicfocus.com/reviews/amped-five-speed-estimation-2d-filter-and-training-from-amped-software/ Amped Software’s Martino Jerian on Key Challenges and Opportunities for Video Evidence - https://www.forensicfocus.com/podcast/amped-softwares-martino-jerian-on-key-challenges-and-opportunities-for-video-evidence/ LEVA 2023 Training Symposium - https://www.leva.org/ Forensic Collision Investigation & Reconstruction Ltd - https://www.fcir.co.uk/ Amped FIVE Certified Examiner - https://ampedsoftware.com/afce-certification Introducing the Amped FIVE Certification Program - https://blog.ampedsoftware.com/2023/10/04/introducing-the-amped-five-certification-program Amped Software YouTube - https://www.youtube.com/ampedsoftware How to Use the Validation Tool in Amped FIVE - https://blog.ampedsoftware.com/2023/03/29/how-to-use-the-validation-tool-in-amped-five
11/29/2023 • 40 minutes, 2 seconds
Hacking Your Future: Education Choices For A Cybersecurity Career
Si and Desi talk to Gavin Prue and Selim Kang about their non-traditional paths into cybersecurity careers. They share their diverse educational backgrounds, from vocational college courses to returning to school later in life, and the hands-on training that helped prepare them for incident response roles. Gavin and Selim provide advice for aspiring cybersecurity professionals on the importance of networking, asking questions, having a positive attitude, and being willing to put in extra time learning new skills. They discuss the value of university degrees versus certifications, the pros and cons of accredited cybersecurity programs, and the need for continued education in this rapidly evolving field. Whether starting from scratch or changing careers, their stories demonstrate that resilience and motivation can overcome lack of formal qualifications.
11/28/2023 • 1 hour, 3 minutes, 58 seconds
Protecting Victims From Stalkerware And Tech-Enabled Abuse
Si and Desi talk to Eva Galperin, Director of Cybersecurity at the Electronic Frontier Foundation, and Emma Pickering, Head of Tech and Economic Abuse at Refuge. They discuss the impact of digital forensics and incident response (DFIR) in cases of domestic abuse. They highlight the prevalence of tech-enabled abuse, such as the use of stalkerware, and the need for comprehensive support and safety plans for survivors. They also talk about the challenges faced by law enforcement in investigating and prosecuting these cases, as well as the importance of training and awareness in addressing tech-enabled abuse. The conversation emphasizes the need for collaboration between organizations, tech developers, and law enforcement to effectively combat domestic abuse. Show Notes: Apple Support: How Safety Check on iPhone works to keep you safe - https://support.apple.com/guide/personal-safety/how-safety-check-works-ips2aad835e1/web IBM: Five Technology Design Principles to Combat Domestic Abuse - https://www.ibm.com/policy/five-technology-design-principles-to-combat-domestic-abuse/ EFF: Today The UK Parliament Undermined The Privacy, Security, And Freedom Of All Internet Users - https://www.eff.org/deeplinks/2023/09/today-uk-parliament-undermined-privacy-security-and-freedom-all-internet-users Wesley Mission: More support to help escape family violence - https://www.wesleymission.org.au/about-us/what-we-do/helping-people-most-in-need/housing-and-accommodation/wesley-emergency-relief/more-support-to-help-escape-family-violence/ Refuge: How we can help you - https://refuge.org.uk/i-need-help-now/how-we-can-help-you/ Electronic Frontier Foundation - https://www.eff.org/
11/15/2023 • 55 minutes, 54 seconds
Solving Digital Evidence Challenges With Oxygen Forensics
Si and Desi interview Lee Reiber, CEO of Oxygen Forensics. Lee provides an overview of Oxygen's tools for extracting data from mobile devices, cloud services, and computers to aid digital investigations. He talks about Oxygen's training program that is now included with their software to train examiners to become skilled investigators. Lee also shares insights on overcoming hurdles like encryption and multifactor authentication in mobile forensics. He stresses that there is always a way to get needed data from mobile devices. Lee additionally talks about the vetting process Oxygen uses to ensure their tools are used ethically and explains how Oxygen adapts quickly to help law enforcement with urgent cases.
11/6/2023 • 46 minutes, 10 seconds
2023 E-Crime Symposium: Cutting Edge Topics In Digital Forensics
Join Desi and Si as they chat with Rob Fried, a digital forensics expert, author, and licensed private investigator. In this episode, Rob discusses the upcoming 2023 E-Crime Symposium: Cutting Edge Topics in Digital Forensics, taking place virtually on 31st October 2023. The symposium will feature keynote talks and panel discussions exploring e-crimes and criminal investigations. Topics include Mobile Device Investigations, Cryptocurrency Investigations, and Forensic Fundamentals in Innovation. Rob also discusses his background, career, and passion for writing and sharing knowledge in the forensics field. He talks about the value of collaboration and giving back through events like the symposium and authoring books for students and practitioners. Show Notes: 2023 E-Crime Symposium: Cutting Edge Topics In Digital Forensics - https://www.eventbrite.com/e/2023-e-crime-symposium-cutting-edge-topics-in-digital-forensics-tickets-698455237417?aff=oddtdtcreator Rob Fried's website - https://forensicsbyfried.com PI Magazine - https://pimagazine.com
10/10/2023 • 55 minutes, 21 seconds
Cell Phone Tracking And SS7 - Hacking Security Vulnerabilities To Save Lives
Ryan joins Si and Desi to discuss his research into SS7 hacking and cell phone tracking. As someone passionate about radio technology, Ryan became interested in cell networking and eventually discovered he could intercept calls and texts by building fake cell towers. He learned that phone users have virtually no ability to opt out of their locations and identifiers being commercially available via simple API calls. Ryan hopes to put this knowledge to good use by developing a system to warn domestic abuse shelters if an offender's phone is near by tracking SS7 data. During the technical discussion, Ryan demonstrates querying an API with his own phone number to retrieve subscriber data and location. The hosts consider how individuals could possibly protect themselves from SS7 exploits, such as avoiding SMS authentication. They also discuss Ryan's other projects exploring radio hacking tools and a magazine shining light on digital counterculture topics.
9/25/2023 • 47 minutes, 45 seconds
Teaching Digital Forensics With Professor Sarah Morris
Si and Desi are joined by Professor Sarah Morris, Digital Forensics Academic and Practitioner, to talk about DFIR at Southampton University, and Sarah’s innovative approach to lecturing. They explore a range of topics, from electronic storage detection using robots, to strength-testing Faraday bags. They also venture into the realm of forensics in unexpected places, like unravelling mysteries hidden within a washing machine. Plus, Sarah offers a rare insider's perspective on the biometrics and forensics ethics group, an advisory non-departmental public body sponsored by the Home Office.
9/6/2023 • 52 minutes, 21 seconds
Video Evidence Principles With Amped Software
Si is joined by Martino Jerian, CEO and Founder of Amped Software, and Eugene Liscio, 3D Forensic Analyst at ai2-3D. They discuss Martino’s recent presentation on video evidence principles to the European Parliament. Martino explains the difference between authenticity and integrity when it comes to video evidence, and explores the often necessary role of editing in producing a more accurate representation of reality, such as when correcting lens distortion. In this complex field, our guests emphasize the critical need for maintaining a precise, repeatable, and reproducible workflow, aligning with best practices and established guidelines. They also discuss how judges and juries can easily be mislead by expert witnesses, and the resultant importance of presenting technical information in an accurate but accessible way. Furthermore, for those curious about a career in video forensics, the trio provides practical insights into the qualifications, training, and experience that can guide you on this path. Show Notes: Video Evidence Principles: Presentation at the European Parliament - https://blog.ampedsoftware.com/2023/06/01/video-evidence-principles-presentation-at-the-european-parliament 3D Forensics | ai2-3D | Ontario - https://www.ai2-3d.com/ 3D Forensics YouTube - https://www.youtube.com/@3Dforensics Digital Image Authenticity And Integrity With Amped Authenticate - https://www.forensicfocus.com/podcast/digital-image-authenticity-and-integrity-with-amped-authenticate/ Amped Software’s Martino Jerian on Key Challenges and Opportunities for Video Evidence - https://www.forensicfocus.com/podcast/amped-softwares-martino-jerian-on-key-challenges-and-opportunities-for-video-evidence/ Amped Replay Explained: A Detective’s Review Of The Enhanced Video Player For Forensic Investigations - https://www.forensicfocus.com/reviews/amped-replay-explained-a-detectives-review-of-the-enhanced-video-player-for-forensic-investigations/ Amped FIVE Speed Estimation 2d Filter And Training From Amped Software - https://www.forensicfocus.com/reviews/amped-five-speed-estimation-2d-filter-and-training-from-amped-software/ File Analysis And DVR Conversion Training From Amped Software - https://www.forensicfocus.com/reviews/file-analysis-and-dvr-conversion-training-from-amped-software/ Liverpool John Moores University - https://www.ljmu.ac.uk/study/courses/postgraduates/2023/36596-audio-and-video-forensics-msc
7/25/2023 • 1 hour, 3 minutes, 44 seconds
European Interdisciplinary Cybersecurity Conference (EICC) 2023
Si and Desi recap the European Interdisciplinary Cybersecurity Conference (EICC) 2023, which hosted a range of talks and discussions on fields related to cybersecurity. Si highlights some of the talks he found most interesting, including those on the following topics: Research conducted at the University of Kent on the prevalence of child sexual abuse material (CSAM) in the DarkWeb, including differences between English- and Chinese-language marketplaces Tracking vehicles and anonymising personal data in a way that still allows useful statistical analysis Conversion of malware binaries into visual images, allowing for the detection of malware families and programs by visual analysis Detecting device fingerprinting on iOS with API function hooking Age classification from images, including potential challenges, theoretical uses and current accuracy levels Machine learning and cybersecurity The duo also discuss what's coming next on the Forensic Focus podcast. Show Notes: European Interdisciplinary Cybersecurity Conference: https://www.fvv.um.si/eicc2023/ Proceedings of the 2023 European Interdisciplinary Cybersecurity Conference: https://dl.acm.org/doi/proceedings/10.1145/3590777 Conference program: https://www.fvv.um.si/eicc2023/static/docs/EICC2023_program.pdf Improving file-level fuzzy hashes for malware variant classification: https://www.sciencedirect.com/science/article/pii/S1742287619300283
7/4/2023 • 50 minutes, 28 seconds
Digital Evidence And Admissibility - Exploring Best Practice And Compliance Frameworks
Si and Desi talk to Ryan Parthemore, Product Evangelist at Cellebrite, and Robert Fried, Senior Vice President and Global Head of Forensics Investigations at Sandline Solutions. They discuss best practices and compliance frameworks to ensure the admissibility of digital evidence at trial. They highlight the foundational principles of repeatability, reproducibility, and justifiability in the field of digital forensics. Drawing on their own real-life experiences, they emphasize the importance of defensible investigations and illustrate how proper methodologies can protect the chain of custody and ensure the reliability of the digital evidence.
6/12/2023 • 42 minutes, 53 seconds
Cellebrite’s Solutions To Current eDiscovery Challenges
Si and Desi talk to Monica Harris, Project Business Manager at Cellebrite, about current eDiscovery challenges. They cover some of the reoccurring pain points customers experience during the integration stage, the difficulties of collecting mobile data for investigations, and the development of legal holds and how they influence digital forensic cases. This episode also touches on the role of machine learning in eDiscovery and how large amounts of data can be reformatted for the review stage of a case.
6/7/2023 • 49 minutes, 34 seconds
Programming Languages, Flipper And Gaming
In this episode of the Forensic Focus podcast, Desi and Si discuss different online programming courses and what they think about the popular platform, Udemy. They also talk about Flipper, Dev boards, and Raspberry Pi, and delve into the fascinating phenomenon of running the classic game Doom on unlikely devices. Throughout the episode, Desi and Si share their digital forensics expertise, referencing some of the cases they have been working on and highlighting particular methodologies and technologies that have an impact on cybersecurity. Show Notes: 100 Days of Code: The Complete Python Pro Bootcamp for 2023 - https://www.udemy.com/course/100-days... Domestika - https://www.domestika.org/en MIT OpenCourseWare - https://www.youtube.com/@mitocw MasterClass - https://www.masterclass.com/ Raspberry Pi 400 Complete Kit - https://core-electronics.com.au/raspb... Flipper Discord - https://discord.com/invite/flipper Flipper Zero - https://flipperzero.one/ This Programmer Figured Out How to Play Doom on a Pregnancy Test - https://www.popularmechanics.com/scie... Here’s a dude playing Doom Eternal on his fridge - https://www.polygon.com/2020/10/13/21... Doom hacker gets Doom running in Doom - https://www.pcgamer.com/doom-hacker-g... Doom Running On A Calculator Powered By Old Potatoes - https://kotaku.com/doom-running-on-a-... GoldenEra - https://www.imdb.com/title/tt11753760/ Racing the Beam - https://en.wikipedia.org/wiki/Racing_... High Score (TV series) - https://en.wikipedia.org/wiki/High_Sc...) Microcontroller Courses (Udemy) - https://www.udemy.com/topic/microcont... The story of Final Fantasy XIV’s renegade do-good modders - https://www.pcgamesn.com/final-fantas... Logical fallacies - https://yourlogicalfallacyis.com/
5/24/2023 • 1 hour, 9 minutes, 2 seconds
Preventing Data Leaks With Git Guardian
In this episode of the Forensic Focus podcast, Si and Desi talk to Mackenzie Jackson, Developer Advocate at Git Guardian. Mackenzie discusses the problem of hard-coded and leaked credentials in Git repositories, the task of scanning Git repositories for leaked credentials, and how that’s helped by the setup of GitHub and Git. He also looks at some public and private cases of security breaches through Git repositories and recommends tools you can use to combat attackers on Git. Show Notes: Toyota Suffered a Data Breach by Accidentally Exposing A Secret Key Publicly On GitHub (GitGuardian) - https://blog.gitguardian.com/toyota-a... GitHub.com rotates its exposed private SSH key (Bleeping Computer) - https://www.bleepingcomputer.com/news... Conpago - https://www.conpago.com.au/ Source Code as a Vulnerability - A Deep Dive into the Real Security Threats From the Twitch Leak (GitGuardian) - https://blog.gitguardian.com/security... Teenagers Leveraging Insider Threats: Lapsus$ Hacker Group (Forbes) - https://www.forbes.com/sites/emilsaye... Lapsus$: Oxford teen accused of being multi-millionaire cyber-criminal (BBC) - https://www.bbc.co.uk/news/technology... Dynamic Secrets (HashiCorp) - https://developer.hashicorp.com/vault... Crappy code, crappy Copilot. GitHub Copilot is writing vulnerable code and it could be your fault (GitGuardian) - https://blog.gitguardian.com/crappy-c... trufflesecurity/trufflehog (GitHub) - https://github.com/trufflesecurity/tr... gitleaks/gitleaks (GitHub) - https://github.com/gitleaks/gitleaks Git (Wikipedia) - https://en.wikipedia.org/wiki/Git awslabs/git-secrets (GitHub) - https://github.com/awslabs/git-secrets
5/2/2023 • 55 minutes, 26 seconds
Digital Image Authenticity And Integrity With Amped Authenticate
In this episode of the Forensic Focus podcast, Si and Desi are joined by Marco Fontani from Amped Software. Together, they delve into the world of digital image forensics and discuss the use of Amped Authenticate. Amped Authenticate can be used to uncover the processing history of a digital image, helping to determine whether it can be used as reliable evidence in a court of law. Today’s episode looks at the challenges involved in analysing pictures downloaded from the web or social media platforms, the impact of AI-based processing during capture on modern smartphones, and Authenticate's ability to assist with triage, allowing investigators to quickly filter through large amounts of data to find relevant evidence. Show Notes: Amped Authenticate (Amped Software) - https://ampedsoftware.com/authenticate Samsung’s Moon Shots Force Us to Ask How Much AI Is Too Much (WIRED) - https://www.wired.co.uk/article/samsu... A Leak in PRNU Based Source Identification—Questioning Fingerprint Uniqueness (IEEE Xplore) - https://ieeexplore.ieee.org/abstract/... Is PRNU Camera Identification Still Reliable? Tests on Modern Smartphones Show We May Need a New Strategy! (Amped Software) - https://blog.ampedsoftware.com/2020/0... Dealing with Deepfakes (Amped Software) - https://blog.ampedsoftware.com/2021/0... NVIDIA Broadcast 1.4 Adds Eye Contact and Vignette Effects With Virtual Background Enhancements (GeForce) - https://www.nvidia.com/en-us/geforce/... The Face Deepfake Detection Challenge (MDPI) - https://www.mdpi.com/2313-433X/8/10/263
4/18/2023 • 48 minutes, 38 seconds
18th International Conference on Cyber Warfare and Security (ICCWS 2023)
In this episode of the Forensic Focus podcast, Si and Desi recap the 18th International Conference on Cyber Warfare and Security (ICCWS). Desi shares his top picks of the best talks, which explore a range of topics, from forensic investigations on Github breaches and blockchain forensics to deepfake technology and network forensics on submarines. They also take a look at LockBit ransomware investigations and examine whether or not there has been a resurgence in 'script kiddies'. Show Notes: ICCWS 2024 program: https://docs.google.com/spreadsheets/d/1u_ajyuxeZ5Hi-989nw50KxI5tTMnKPylhg47fVTp9pk ICCWS 2023 papers (including book): https://papers.academic-conferences.org/index.php/iccws
3/29/2023 • 1 hour, 6 minutes, 43 seconds
AI In CSAM Investigations And The Role Of Digital Evidence In Criminal Cases
In this episode of the Forensic Focus podcast, Si and Desi explore how artificial intelligence is being leveraged to uncover crucial evidence in investigations involving child sexual abuse material (CSAM) and examine the importance of exercising caution when implementing these tools. They also discuss a recent murder case in which cyber experts played a vital role in securing a conviction, and explore the unique challenges associated with using digital evidence as an alibi.
3/22/2023 • 58 minutes, 25 seconds
Deepfake Videos And Altered Images - A Challenge For Digital Forensics?
In this episode of the Forensic Focus podcast, Si and Desi explore the cutting-edge technology of deepfake videos and image manipulation. In addition to discussing the latest technological developments and efforts being made to detect manipulated media, they also examine the associated legal and ethical implications. Show notes: Boris Johnson image - https://www.theguardian.com/politics/2023/jan/10/spot-the-difference-boris-johnson-appears-scrubbed-from-photo-posted-by-grant-shapps Deep Fake Neighbour Wars - https://m.imdb.com/title/tt21371376/ Stalin image - https://www.history.com/news/josef-stalin-great-purge-photo-retouching Nvidia eye contact AI - https://www.polygon.com/23571376/nvidia-broadcast-eye-contact-ai and https://www.youtube.com/watch?v=xl87WTDrReo Birthday problem - https://en.wikipedia.org/wiki/Birthday_problem Same frightening woman in AI images - https://petapixel.com/2022/09/09/the-same-frightening-woman-keeps-appearing-in-ai-generated-images/ Inherent mysogeny of AI portraits - https://www.theguardian.com/us-news/2022/dec/09/lensa-ai-portraits-misogyny Midjourney - https://www.midjourney.org/ Deepfake porn legality - https://www.theverge.com/2022/11/25/23477548/uk-deepfake-porn-illegal-offence-online-safety-bill-proposal and https://www.technologyreview.com/2021/02/12/1018222/deepfake-revenge-porn-coming-ban/ AIATSIS - https://aiatsis.gov.au/cultural-sensitivity Fake tiger porn story - https://www.dailydot.com/unclick/tiger-porn-britain-law/ Group photo with no blinking - https://www.countrylife.co.uk/comment-opinion/curious-questions-group-photo-179102 Emma Watson deefake audio - https://www.thetimes.co.uk/article/ai-4chan-emma-watson-mein-kampf-elevenlabs-9wghsmt9c Domestika - https://www.domestika.org/en/courses/981-introduction-to-interviewing-the-art-of-conversation Investigative Interviewing - https://www.amazon.co.uk/dp/0199681899?ref=ppx_pop_mob_ap_share Forensic Focus events calendar - https://www.forensicfocus.com/events/ Si Twitter - https://twitter.com/si_biles
2/13/2023 • 58 minutes, 11 seconds
Magnet Forensics' Matt Suiche on the Rise of e-Crime and Info Stealers
In this episode, Si and Desi talk to Matt Suiche from Magnet Forensics about the rise of e-crime and info stealers. They look at the latest shifts in how cybercriminals are operating, with a lot of ransomware gangs now moving towards hacking, stealing, extortion and leaking documents, rather than blindly encrypting files. They also examine the importance of memory forensics in trying to detect active threats within a network, and how ChatGPT – a chatbot launched by OpenAI in November last year – could be leveraged to create functioning malware. Want to hear more from Matt? You can check out Matt's presentation "Know When to Seek Help for Memory Loss" at both the Magnet Virtual Summit and the Magnet User Summit in 2023 (register at magnetvirtualsummit.com or magnetusersummit.com). Show notes: dumpIT - http://www.toolwar.com/2014/01/dumpit-memory-dump-tools.html comae - https://www.comae.com/dumpit/ Matt’s wiki - https://en.wikipedia.org/wiki/Matt_Suiche VMWare acquires CloudVolumes - https://blogs.vmware.com/euc/2014/08/cloudvolumes.html Vitali Kremex - https://twitter.com/vk_intel?lang=en ChatGPT - https://openai.com/blog/chatgpt/ Magnet Virtual Summit - https://magnetvirtualsummit.com/ Magnet User Summit - https://magnetusersummit.com/
1/12/2023 • 57 minutes, 5 seconds
Si and Desi Holiday Special 2022
Just like your current holiday shopping for last minute presents a lot of the good stuff has gone off the shelves already. You reach to the back and find the toy nobody really wanted but it’s the thought that counts, you stare down at Si and Desi’s Holiday Special 2022 podcast. Please join these two as they lament over the year that was, discuss all the things they didn’t do but promise they will do them next year, query whether putting a NAS in the storage of a roller door is a good idea, and finally arrive at what they’re looking forward to bringing you in the new year. Show Notes: Arduino PLC IDE - https://docs.arduino.cc/software/plc-ide Mycroft Mark II (open source Alexa) - https://www.kickstarter.com/projects/aiforeveryone/mycroft-mark-ii-the-open-voice-assistant Christa’s new blog - https://christammiller.com/ Si’s holiday reading - https://amzn.to/3iJyGrR Desi’s holiday reading - https://inteltechniques.com/ Strange event for the end of the year - https://www.reuters.com/world/europe/25-suspected-members-german-far-right-group-arrested-raids-prosecutors-office-2022-12-07/ Si’s wishful thinking - https://www.youtube.com/watch?v=GXnRgXclLd0 Si’s list to do before the EOY - https://intrepidcamera.co.uk/products/intrepid-4x5-camera Desi’s list to do before EOY - https://www.wired.com/story/how-to-reset-your-phone-before-you-sell-it/ “Cleaning your office” - https://www.manfrotto.com/uk-en/vintage-collapsible-1-5-x-2-1m-ink-sage-ll-lb5720/ Conference recorder - https://amzn.to/3UBmre5 Desi’s blog - https://www.hardlyadequate.com/
12/15/2022 • 51 minutes, 34 seconds
Cyacomb's Jeffrey Bell, Brandon Gardner & Alan McConnell on the Facets of Digital Forensic Triage
The investigation of child exploitation is a delicate balance between rescuing children, ensuring perpetrators are correctly identified, and safeguarding investigator mental health. This week on the Forensic Focus podcast, Christa and Si are with Cyacomb, talking digital forensics with: Jeffrey Bell, Customer Success Manager; Alan McConnell, Head of Customer Success; and Brandon Gardner, Program Manager.
12/12/2022 • 40 minutes, 42 seconds
Detego's Andy Lister on Interoperability Between Field & Lab
As digital forensics decentralizes, shifting more responsibilities from lab to field personnel, tools that can manage the evidence from different user groups are ever more important. In this episode, Christa and Si talk with Andrew Lister, Managing Director at Detego Global, about interoperability between field and lab. They discuss Detego’s significant post-pandemic growth, what it is about interoperable frontline and lab tools that other solutions miss, and the biggest challenges when adapting a military field tool to more regulated environments. To read Andy's previous interview with us, visit https://www.forensicfocus.com/interviews/andy-lister-global-business-development-director-detego.
12/5/2022 • 38 minutes, 33 seconds
Cyacomb's Graham Little & Mike Burridge on Making the Online World a Safer Place
This week, Christa and Si talk with Cyacomb's Graham Little and Mike Burridge about the technology it takes to identify child sexual abuse and terrorist imagery, on both devices and the online world. The balance between public safety and privacy is discussed, along with challenges faced by both social media providers preventing imagery from being shared, and law enforcement investigating the perpetrators. Also described: technological challenges and what they mean for investigations and prosecutions, including the need for training and education of users; and new developments coming from Cyacomb.
11/28/2022 • 41 minutes, 8 seconds
Detective Lee Bieber on Digital Forensics Tools for Complex Cases
In this episode, Detective Lee Bieber of the Plantation Florida Police Department and the FBI's Crimes Against Children and Human Trafficking Task Force in Miami talks with podcast host Christa Miller about his background, the trends he's noticed in criminal use of digital technology, and the artifacts that make up the elements of a statutory crime. Also discussed: putting digital artifacts together into a picture using various forensic tools, and the tool that helps him most in his investigations.
11/21/2022 • 15 minutes, 23 seconds
HTCIA, DFRWS-APAC, and the DFIR Events Industry: A Critique
You can’t put a price on bants! Friends and enemies welcome as this week Christa, Si, and Desi recap HTCIA and DFRWS. Deep dive into ticket prices and accessibility. Wonder whether there is innovation in the vendor space. Consider running their own virtual Forensic Focus conference in 2023. They briefly touch on neurodiversity, potential guests, and we all get treated to Si’s long preamble and and slightly shorter outro. Show Notes: DFRWS APAC 2022 Program - https://dfrws.org/apac-2022-program/ BSides AUS - https://www.bsidesau.com.au/ BSides UK - https://www.securitybsides.org.uk/# HTCIA - https://htcia.org/ Heather Mahalik’s talk on verifying evidence CYACOMB Prioritizing time sensitive investigations with Rapid Digital Triage - Alan McConnell Hansken Forensics - https://www.hansken.nl/ Velociraptor - https://www.rapid7.com/products/velociraptor/ Sydney Declaration IAFS 2023 - https://iafs2023.com.au/sydney-declaration/
11/14/2022 • 1 hour, 16 minutes, 3 seconds
MSAB's James Eichbaum Takes Us Behind the Scenes of Digital Forensic Tool Training
This week, Si and Christa talk with James Eichbaum, global training manager at MSAB, about: The technical and procedural challenges that students bring to class that inform R&D and, in turn, training. The importance of training to thorough, forensically sound examinations, as well as to educating managers and other stakeholders on why thoroughness is important. As well, the need and ability for examiners to be able to articulate their own processes in a rapidly changing field. Training for different levels of personnel, from frontline officers all the way up to the lab. How the COVID-19 pandemic affected training course design and delivery. Some of the new things to look out for in both products and training from MSAB. Show Notes: Our previous interview with James: https://www.forensicfocus.com/interviews/james-eichbaum-global-training-manager-msab/ Our interview with Matthew Sorell on mobile device forensics: https://www.forensicfocus.com/podcast/university-of-adelaides-dr-matthew-sorell-on-evidentiary-health-data-at-dfrws-apac-2022/ The FORMOBILE project: https://www.formobile-project.eu/ MSAB training: https://www.msab.com/training-overview/
11/7/2022 • 36 minutes, 26 seconds
The Historic View of Financial Cybercrime
In this episode, Desi and Si talk with Alex Tilley, who's part of the counter threat unit at Secureworks, as a followup to Alex's presentation on the history of financial cybercrime. Show Notes: The business club writeup from 00:18:25 https://www.secureworks.com/research/evolution-of-the-gold-evergreen-threat-group Fast-flux and round robin DNS Anti-money laundering legislation https://www.oaic.gov.au/privacy/other-legislation/anti-money-laundering#:~:text=The%20Anti%2DMoney%20Laundering%20and,sector%2C%20gambling%20sector%2C%20remittance%20( Operation Tovar https://www.secureworks.com/blog/operation-tovar-dell-secureworks-contributes-to-efforts-targeting-gameover-zeus-and-cryptolocker SMBiT Pro - Presenting Gold Coast end of October https://www.smbitpro.org/ ISACA - CBR Conference https://engage.isaca.org/canberrachapter/events/eventdescription?CalendarEventKey=29ea5d1c-5ee0-4bd7-b4ce-e591603ba8b3&CommunityKey=43346d1e-8e11-443a-bfa6-93582a92ad0f&Home=%2Fmelbournechapter%2Fevents%2Fcalendar
10/31/2022 • 52 minutes, 56 seconds
Devon & Cornwall Police's Steve Slater on Implementing RASSO Changes in Digital Forensics Units
In this episode, Steve Slater, Head of Digital Forensics at Devon and Cornwall Police in the United Kingdom, gives Christa and Si an overview of implementation the new Rape and Serious Sexual Offence protocol: How digital forensics technology supplements a victim-centred, team approach Differences between victim and suspect acquisition processes What goes into balancing victim care with a forensically sound data collection How the protocol continues to adapt to the times: not just in terms of technology, but also in recruiting representative personnel and supporting their mental health Pandemic-era processes and procedures Further reading: https://www.cps.gov.uk/cps/news/metropolitan-police-service-and-crown-prosecution-publish-review-r-v-allan https://ico.org.uk/
10/24/2022 • 35 minutes, 35 seconds
An In-Depth Conversation on Digital Forensics Training and Certification
Following on their "unsupervised" discussion, this week Si and Desi focus on training and certification, including: Steps and missteps in commercial and government efforts to close the cyber skills gap through training and professional development The value of perspectives from different fields to digital forensics and incident response The shortcomings of certifications as measures of proficiency, and the need to teach a foundation of how to learn, not just pass certification exams Alternatives to certifications, such as chartered professionals, CTFs and coursework with practical elements The need for mentors to help develop professionals CyberCX Academy announcement: https://news-events.cybercx.com.au/cybercx-academy-launched-to-help-solve-cyber-skills-crisis Marketing fail: UK government criticised for ‘crass’ ad advising ballerina to retrain in IT: https://www.netimperative.com/2020/10/13/marketing-fail-uk-government-criticised-for-crass-ad-advising-ballerina-to-retrain-in-it/ Distant Traces and Their Use in Crime Scene Investigation: https://www.forensicfocus.com/webinars/distant-traces-and-their-use-in-crime-scene-investigation/ Australian Cyber Collaboration Centre: https://www.cybercollaboration.org.au/ dfrws.org
10/17/2022 • 57 minutes, 34 seconds
Amped Software's Martino Jerian on Key Challenges and Opportunities for Video Evidence
In this episode, Si and Christa talk with Martino Jerian, founder and CEO of Amped Software, about: Some of the misunderstandings around digital video and image evidence and how this can affect justice proceedings Technical challenges associated with evidentiary integrity and authenticity of data which is based on complex mathematics The need for better trained, qualified analysts in multiple dimensions of multimedia forensics, including file formats, processing, and metrology specialisms As well, the need for awareness-building among nontechnical stakeholders in policymaking
10/10/2022 • 42 minutes, 20 seconds
In Which Si and Desi Are Left Unsupervised
In this episode recorded in July, Si and Desi take advantage of Christa's absence to pepper up their speech (but only just a bit). Content warnings aside, this week their free-form conversation discusses: Public speaking, whether giving evidence on the stand, presenting to stakeholders following an incident response, or delivering training materials The relative benefits of unscripted interactions vs. scripted material, depending on audience How pandemic-driven modalities affected speaking delivery (and even job interviews) in terms of nonverbal (body) language, with and without cameras Presentation material creation tools The need for, and difficulty of, getting good feedback There's also a preview of their upcoming conversation on training and certification.
10/4/2022 • 36 minutes, 43 seconds
Project LOCARD's Pablo Lopez Aguilar on Digital Evidence Management Using the Blockchain of Custody
Si and Christa talk with Pablo Lopez Aguilar-Beltran about Project LOCARD, its purpose, and how it all go started, including: Why blockchain could be the foundation for improving international cooperation while maintaining compliance with privacy and other legal requirements Challenges associated with standardizing any platform across borders, as well as fostering implementation and participation The need for better digital evidence literacy among lawyers and judges, even as the digital aspects of crime accelerate past governments' abilities to legislate and enforce laws
9/26/2022 • 38 minutes, 34 seconds
The Great Resignation in DFIR
In this episode, co-hosts Desi, Si, and Christa compare and contrast the concerns and pressures of the DFIR world vs. other industries. Starting with burnout as a function of increases in both cyber incidents and online crime, we also discuss: - The risks of backfilling gaps in cyber without computer science fundamentals. - More work and fewer resources leading to backlogs, which factor in burnout and resignations as well as actions like the UK barristers' strike. - The importance of mentorship, representation, and manager training to facilitate strong team dynamics and mitigate risks.
9/19/2022 • 37 minutes, 1 second
University of Adelaide's Dr. Matthew Sorell on Evidentiary Health Data at DFRWS-APAC 2022
In this episode, Desi, Si, and Christa talk with Dr. Sorell about health data as a source of evidence in criminal investigations, as well as a sneak peek of what to expect at Sorell's student-led workshop and Rodeo competition at the upcoming DFRWS-APAC conference. Some of the technical vagaries, including GPS, time zone, and Apple updates, that can affect both investigations and workshop planning are discussed, along with the importance of other disciplines (geekery) to digital forensics beyond digital forensics.
9/12/2022 • 55 minutes, 21 seconds
UCD's Prof. Liliana Pasquale on Filling the Cybersecurity Talent Gap
In this episode, University College Dublin's Prof. Liliana Pasquale, program director for the new Master of Science in Cybersecurity, talks with Christa Miller about how the program came to be, some of the modules and the way they're structured, and what makes this program stand out from others. Also discussed is the need for a balance between academic research and practitioner perspectives, how "soft" skills lay a foundation for more technical skills, and the program's major advantages to prospective students.
8/8/2022 • 15 minutes, 17 seconds
Frontline Managed Services' Kyle Campbell on DFIR & E-Discovery Career Skills & Pathways
Kyle Campbell, Vice-President of Litigation Support at Frontline Managed Services, joins Christa Miller to talk through the breakdown of silos between digital forensics, e-discovery, and incident response, and the continued increases in complexity and interconnectivity of data sources as well as the impact of data privacy laws and evolving case law on preservation and collection. To collaboratively solve problems and add value and insights to clients and courts in this landscape, e-discovery and digital forensics professionals need technical and communication skills in information governance, data privacy, and data security -- and the ability to explain them clearly and simply.
7/18/2022 • 39 minutes, 54 seconds
Introducing 2 Forensic Focus Podcast Co-Hosts: Simon Biles and Alex Desmond
Broadening our podcast horizon to include more technical and global perspective, we welcome Alex Desmond, an incident response / insider threat specialist in Australia, and Si Biles, an independent digital forensics analyst in the United Kingdom. This week, we talk about the challenges around entering and keeping up to date with a career in digital technology. Cloud systems are a particular focus, in terms of both investigations and usage, and the kinds of unanswered questions we can face as practitioners and citizens. As well, we discuss the human factors associated with cybersecurity and investigations.
7/11/2022 • 56 minutes, 25 seconds
Cellebrite's Monica Harris on Achieving Balance in Corporate Investigations and E-Discovery
Podcast host and Forensic Focus managing editor Christa Miller talks with Monica Harris, Cellebrite's Enterprise Solutions product business manager, about the overlap in e-discovery, corporate investigation, and incident response skills and tools; proportional collections in remote and hybrid work environments; some of the technological challenges with remote cloud collection and creating a 360-degree view of data, and how Cellebrite Enterprise Solutions make the process smoother.
7/5/2022 • 14 minutes, 25 seconds
Santosh Khadsare on Capacity Building in Digital Forensics
Capacity building for digital forensics is defined as the development of new professionals and better equipped work environments, particularly as the digital forensics industry struggles to keep pace with the way technology, and the trace evidence it creates, become more ingrained in our lives. With the Forensic Focus podcast to talk about capacity building in India is Santosh Khadsare, a career cyber forensics and security expert working with Indian government and law enforcement for the past two decades.
6/3/2022 • 31 minutes, 51 seconds
DFIR Consultant Kat Hedley on Finding the History -- and Future -- of DFIR at Bletchley Park
This episode follows up our 2021 article about #DFIRfit and its #DFIRforGood fundraising efforts. We start by talking about the #Bricks4Codebreakers effort, a little of what it was like to work at Bletchley Park during World War II, and how the women and men who staffed the facility blazed a trail not only for digital forensics as a profession, but also for the industry's current-day diversity, inclusion and equity efforts.
4/11/2022 • 22 minutes, 26 seconds
Authors Graeme Horsman and Brett Shavers on Defining Digital Forensics Expertise
Coauthors of a new paper discuss: "Expertise" as a function of trial strategy The necessity for practitioners to determine -- and communicate -- their own knowledge and limitations thereof Where "expertise" actually comes from: the work that makes it evidenceable in terms of quality more than quantity
4/4/2022 • 40 minutes, 4 seconds
Researcher Nina Sunde on Reducing Bias in Digital Forensic Analysis
This week we explore research showing how bias can affect decision making in digital forensics. PhD fellow Nina Sunde joins us from Norway to discuss how practitioners think about interpretation of data, mental blind spots, and error. We talk about practical implementation measures for error mitigation, including peer review. And we discuss the need for additional practice-oriented research to determine the most effective bias mitigation measures for digital forensics, how to help non-practitioners -- especially legal experts and jurors -- to understand digital forensics processes, and how viewing error as a friend could help mitigate both technical and human error.
4/4/2022 • 32 minutes, 30 seconds
MSAB's Simon Crawley on the Importance of Frontline Forensics
In this episode, we answer the question: “Does every phone need to come to the digital forensics lab?” and discuss the ongoing challenges associated with frontline forensics. Simon tells us how he consults with clients to work through their needs and offer custom network and design workflows according to multiple parameters, including regulatory ones. Finally, we discuss the balance between national security and human rights, and how frontline mobile forensics supports that balance.
3/25/2022 • 36 minutes, 58 seconds
The EFF's Eva Galperin on Using DFIR Skills To Help Victims of Stalkerware and Abuse
In this episode, we highlight some of the hidden barriers to digital forensics professionals' ability to use their skills to help victims of stalking and domestic violence: how abuse dynamics keep victims from reporting to police, how police and courts can actually fuel the problem, and how emotionally difficult offering assistance can be. At the same time, though, the work can be deeply rewarding, and Eva offers a few resources for educating yourself on how these dynamics work.
3/7/2022 • 22 minutes, 22 seconds
Ali Hadi and Jessica Hyde on Accessible, Affordable Digital Forensics Training
The Forensic Focus podcast sits down with Ali Hadi, founder of Cyber5W, and Jessica Hyde, founder of Hexordia, to talk about the need for well prepared, professional digital forensics and incident response practitioners, and how the partnership between their two companies aims to bring digital forensics training to everyone who wants it at an affordable price.
2/19/2022 • 51 minutes, 12 seconds
Mason Toups
Mason Toups, a DFIR analyst with Sola Security, and Emre Tinaztepe, founder and CEO of Binalyze, join host Christa Miller to talk about the essential elements of incident response, the human factors that are often at the root of a cyber incident, threat actors' own psychology, and how easier communication between responders can facilitate security operations for all.
2/6/2022 • 37 minutes, 59 seconds
Is More Efficient, Accessible Memory Forensics Possible?
Trufflepig Forensics Co-founders Aaron Hartel and Christian Müller join us to talk about how they got started, the challenges encountered by law enforcement and other incident responders dealing with memory forensics, and how their team's Nexus software aims to solve those challenges.
1/30/2022 • 29 minutes, 32 seconds
Lecturer Jade James on Her DFIR Career Transition From Lab to Academia
University lecturer Jade James talks about her career path from digital forensics lab work into academia, including why pursuing a Master's degree has been crucial to her professional growth, some of the personal obstacles she overcame to earn it, and her current role as a lecturer teaching university students.
1/23/2022 • 40 minutes, 46 seconds
Magnet Forensics' Stephen Boyce on Collaboration, Automation, and Developing DFIR Skills
Dr. Steven Boyce, Director of the Magnet Forensics Digital Investigation Suite (MDIS), describes collaborative evidence review for non-technical investigators, automation, and centralized case data management -- along with the new skills needed to support them.
1/10/2022 • 36 minutes, 6 seconds
Recruiter Pete Strouse on Making New DFIR Career Moves in 2022
Covered in this episode are: Generalist vs. specialist DFIR pros The need for training and awareness across a wider pool of people -- as well as openness to a variety of backgrounds and redefining what a "good candidate" looks like Ways for job-hunters to optimize their LinkedIn profile and networking efforts
1/3/2022 • 37 minutes, 50 seconds
Eoghan Casey on the CASE Ontology for Digital Forensics Practice & Process
12/6/2021 • 23 minutes, 31 seconds
Jesse Lindmar on Digital Forensics Lab Quality Assurance and Accreditation
12/6/2021 • 45 minutes, 37 seconds
OpenText's Chuck Dodson on Digital Evidence Management and Information Sharing
11/28/2021 • 38 minutes, 15 seconds
Deputy Chief Constable Paul Gibson on Coordinating Countrywide Digital Forensics Standardization
11/22/2021 • 24 minutes, 57 seconds
SafeToNet's Thomas Farrell on the Spectrum of Online Child Protection
11/15/2021 • 20 minutes, 18 seconds
MSAB's Joel Bollö on the Sweeping Challenges & Opportunities in the Digital Forensics Market
11/7/2021 • 23 minutes, 35 seconds
Todd Shipley on the Dark Net, and the Importance of Relationship-Building for Investigations
10/31/2021 • 32 minutes, 49 seconds
Oxygen Forensics' Lee Reiber on Keeping Pace in Digital Forensics
10/24/2021 • 24 minutes, 10 seconds
Alexis Brignoni on Teaching and Learning Python: Why It's Important and What's Involved
10/18/2021 • 29 minutes, 48 seconds
Binalyze's Emre Tinaztepe and Tom Blumenthal on Enterprise Forensic Readiness
10/12/2021 • 26 minutes, 8 seconds
Logicube's Todd Bellows on Challenges and Opportunities for Forensic Imaging
9/27/2021 • 26 minutes, 38 seconds
Nuix’s Aidan Jewell On Mac Forensics And Cross-Border Case Collaborations
Solution consulting for a digital forensics vendor demands a deep knowledge, not just of digital forensics practice, but also of the people who are doing the practice. This month’s special vendor edition of the Forensic Focus podcast brings Nuix’s Aidan Jewell, head of solution consulting in Europe, the Middle East and Africa. Aidan started working in digital forensics in January 2005 with a law enforcement agency in England, coming to specialize in Apple Macintosh forensics.
6/28/2021 • 33 minutes, 51 seconds
MSAB's Henrik Tjernberg On Ethics In Digital Forensics And Consumer Privacy
In an era of profound social change, few industries find themselves at the intersection between law, technology, and social justice the way digital forensics does. This month on the Forensic Focus podcast, our vendor edition welcomes Henrik Tjernberg chairman of the board of our longtime sponsor MSAB. Having served in that role since 2002, Mr. Tjernberg has been in the unique position of seeing from a business perspective, how digital forensics has shaped and been shaped by these forces and what it all means for the industry as we enter a new decade.
4/26/2021 • 32 minutes, 30 seconds
Patrick Siewert On Push-Button Forensics And Communicating Results To Non-Experts
The digital forensics community thrives when practitioners take the time to share their expertise. Today on the Forensic Focus podcast, we're welcoming one of our co-contributors of original content. I'm your host, Christa Miller, and with us today is Patrick Siewert, principal consultant of Pro Digital Forensic Consulting, which is based in Richmond, Virginia. Patrick started his digital forensics career in law enforcement, where over 15 years, he investigated hundreds of high tech crimes -- including some of the highest jury and plea bargain child exploitation investigations in Virginia court history. He continues to hone his digital forensic expertise in the private sector while growing his digital forensic consulting and investigation business marketed towards litigators, professional investigators and corporations -- all while keeping in touch with the public safety community as a law enforcement instructor.
2/8/2021 • 31 minutes, 5 seconds
MSAB’s Mike Dickinson On The Rapidly Changing World Of Digital Forensics
This month on the Forensic Focus podcast, we have a special vendor edition featuring one of our long-time sponsors, MSAB. Mike Dickinson, the company’s chief business development officer, is a senior business professional specializing in technology for law enforcement, military and government agencies. He’s held numerous roles within MSAB, directing communications, training and marketing. As such, he’s built up an extensive knowledge of digital forensic solutions for public sector policing.
2/5/2021 • 24 minutes
Doug Brush On Careers In Digital Forensics
To paraphrase a popular career title: What color is your digital forensics parachute? What path are you on currently? Is it the one you want to be on? And how do you know, when the field might look very different in five years? Welcome to the Forensic Focus podcast, where monthly we interview experts from the digital forensics and incident response community on topics ranging from technical aspects to career soft skills. I'm your host, Christa Miller. Careers in digital forensics and information security is a hot topic right now. Gaps in skills, gender, and representation from underprivileged communities are all being discussed and to some extent, even debated. With us today to talk more about that is Douglas Brush, an information security executive with over 26 years of entrepreneurship and professional technology experience.
12/2/2020 • 41 minutes, 18 seconds
Barbara Guttman And Jim Lyle On Confidence In Digital Forensic Results
10/20/2020 • 35 minutes, 23 seconds
Lodrina Cherne On Diversity In Digital Forensics
When we talk about diversity in DFIR, are we referring to hiring people who look different from us, or do we also mean people who think differently? Welcome to the Forensic Focus podcast, where monthly we interview experts from the digital forensics and incident response community on a host of topics ranging from technical aspects to career soft skills. I'm your host, Christa Miller. Today we're talking about diversity, though not just in terms of demographic diversity. We also want to talk about the diverse set of experiences that each practitioner brings to digital forensics, their personal and work experiences, the places they've lived, the people they've encountered, and the cultures they were born into, or maybe adopted. Our guest this month is Lodrina Cherne, Principal Security Advocate at CyberReason, and a SANS-certified instructor of Windows forensic analysis.
9/21/2020 • 36 minutes, 40 seconds
Josh Brunty On Digital Forensics Education
Christa: Hello, and welcome to the Forensic Focus podcast. Monthly, we interview experts from the digital forensics and incident response community on a host of topics ranging from technical aspects to career soft skills. I'm your host, Christa Miller. Today, we're talking with Josh Brunty, an associate professor at Marshall University, where he teaches both foundational and specialized laboratory courses within the digital forensics, information assuranc,e and forensic science graduate degree programs. A former digital forensics laboratory manager and examiner, Josh has over a decade of experience in the field of digital forensics and high tech crime investigation. He has served on several federal and state level cyber crime task forces and panels, and has participated in both national and international committees and panels focusing on the advancement of digital forensic science and digital evidence in the United States. He has authored books, book chapters, and journal publications in the field of digital forensics, mobile device forensics, and social media investigation. Josh, welcome to the show.
8/11/2020 • 19 minutes, 37 seconds
Ryan Duquette On The Challenges Of Fraud Investigations
Today we're talking with Ryan Duquette, a partner at RSM Canada. Ryan focuses on litigation support, cyber incident response, privacy and technology risks, digital forensics and cyber fraud matters. An investigator for over 20 years, Ryan was previously a police officer focusing on cyber crime and fraud cases. He works closely with clients involved in workplace investigations and civil litigation matters including intellectual property theft, HR investigation, and data breaches.
4/17/2020 • 26 minutes, 48 seconds
Sarah Edwards On iOS Forensics And APOLLO
Christa: Hello and welcome to the Forensic Focus podcast. Monthly we interview experts from the digital forensics and incident response community on a host of topics ranging from technical aspects to career soft skills. I'm your host, Christa Miller. Today we're talking with Sarah Edwards, senior digital forensics researcher at BlackBag Technologies. Sarah works in the DC Metro area and specializes in Mac and mobile forensics. She has worked with various federal law enforcement agencies and has performed a variety of investigations including computer intrusions, criminal intelligence, and terrorism products.
3/9/2020 • 23 minutes, 17 seconds
Digital Forensic Challenges In Major Case Law And Global Legislation
2/10/2020 • 49 minutes, 23 seconds
Graeme Horsman On The Fast Pace Of Digital Forensics, And The Need To Share Research
Forensic Focus talks to Graeme about working in digital forensics and the new Master's programme at Teesside University.
12/16/2019 • 35 minutes, 19 seconds
Joe Walsh On Private Browsing Data And Teaching Digital Forensics Online
Christa: Hello and welcome to the Forensic Focus podcast. Monthly we interview experts from the digital forensics and incident response community on a host of topics ranging from technical aspects to career soft skills. I'm your host, Christa Miller. Today we're welcoming Joseph Walsh, the director of the Master's of Criminal Justice program and an Assistant Professor of Computer Science and Criminal Justice at DeSales University. Prior to joining the department of Computer Science and Mathematics at DeSales, Joe earned a Master of Science in Information Systems with a concentration in Cybersecurity; a Master of Arts degree in Criminal Justice with a concentration in Digital Forensics; and a Bachelor of Science degree where he majored in Information Systems with a concentration in Security Administration.
11/18/2019 • 20 minutes, 13 seconds
Brett Shavers On DFIR Training And Mental Health In Digital Forensics