Cybercrime Investigators Handbook
- 5h 30m
- Graeme Edwards
- John Wiley & Sons (US)
- 2020
The investigator’s practical guide for cybercrime evidence identification and collection
Cyber attacks perpetrated against businesses, governments, organizations, and individuals have been occurring for decades. Many attacks are discovered only after the data has been exploited or sold on the criminal markets. Cyber attacks damage both the finances and reputations of businesses and cause damage to the ultimate victims of the crime. From the perspective of the criminal, the current state of inconsistent security policies and lax investigative procedures is a profitable and low-risk opportunity for cyber attacks. They can cause immense harm to individuals or businesses online and make large sums of money—safe in the knowledge that the victim will rarely report the matter to the police. For those tasked with probing such crimes in the field, information on investigative methodology is scarce. The Cybercrime Investigators Handbook is an innovative guide that approaches cybercrime investigation from the field-practitioner’s perspective.
While there are high-quality manuals for conducting digital examinations on a device or network that has been hacked, the Cybercrime Investigators Handbook is the first guide on how to commence an investigation from the location the offence occurred—the scene of the cybercrime—and collect the evidence necessary to locate and prosecute the offender. This valuable contribution to the field teaches readers to locate, lawfully seize, preserve, examine, interpret, and manage the technical evidence that is vital for effective cybercrime investigation.
- Fills the need for a field manual for front-line cybercrime investigators
- Provides practical guidance with clear, easy-to-understand language
- Approaches cybercrime form the perspective of the field practitioner
- Helps companies comply with new GDPR guidelines
- Offers expert advice from a law enforcement professional who specializes in cybercrime investigation and IT security
Cybercrime Investigators Handbook is much-needed resource for law enforcement and cybercrime investigators, CFOs, IT auditors, fraud investigators, and other practitioners in related areas.
About the Author
DR. GRAEME EDWARDS, CFE, has been a cybercrime investigator with the Queensland Police Service Financial and Cyber Crime Group and has worked on numerous successful criminal investigations involving local and international jurisdictions. He facilitated the creation of the Victims of Financial Crimes Support Group to support those suffering losses associated with financial or cybercrime. Graeme is an experienced conference speaker and cybercrime investigation educator, provider of training in a corporate environment and conducts post investigation analysis. He has a Doctorate of Information Technology focusing on computer security, computer networking, and cloud computing investigation strategies.
In this Book
-
Introduction
-
Cybercrime Offenses
-
Motivations of the Attacker
-
Determining that a Cybercrime is being Committed
-
Commencing a Cybercrime Investigation
-
Legal Considerations When Planning an Investigation
-
Initial Meeting with the Complainant
-
Containing and Remediating the Cyber Security Incident
-
Challenges in Cyber Security Incident Investigations
-
Investigating the Cybercrime Scene
-
Log File Identification, Preservation, Collection, and Acquisition
-
Identifying, Seizing, and Preserving Evidence from Cloud-Computing Platforms
-
Identifying, Seizing, and Preserving Evidence from Internet of Things Devices
-
Open Source Evidence
-
The Dark Web
-
Interviewing Witnesses and Suspects
-
Review of Evidence
-
Producing Evidence for Court
-
Conclusion