As technology advances, people's daily routines and processes - from shopping to banking to doing business - increasingly rely on modern telecommunication networks, such as Internet and mobile phones. Internet is also used for storing sensitive information such as banking or credit card information. Criminals are going to attempt to steal that information, posing serious threats not only to individuals, but to a nation's security and financial health as well.
Cybercrime is like any other regular crime, only it is facilitated by using computer systems and it encompasses: internet based fraud, spamming, identity theft, malware (malicious code) and computer viruses, extortion, theft of classified information, propagation of illegal, obscene or offensive content, including child pornography, etc. Furthermore, the police investigations on organized crime, terrorism and other serious offences are nowadays impossible without the inclusion of digital forensics.
To help the police keep abreast with constantly evolving forms of cybercrime and successfully tackle this phenomenon, the EU funded project for “Further Institution and Capacity Building of the Police Service” organized a series of trainings for computer forensic examiners.Тhe first three topics of the training that is taking place from 8 to 26 August 2016 at the Public Security Bureau, are focusing on AccessData Forensic Toolkit (FTK), Malware Forensics and Mobile Forensics.
The training is being delivered by the computer forensic expert Mr. Kresimir Hausknecht, Head of Digital Forensics Department at the INsig2, Croatian company licensed for such specialized trainings, while the participants come from the Sector for Cybercrime and Digital Forensics at the Public Security Bureau.
AccessData training is designed to enable police officers to use the latest software version of the FTK tool, which will facilitate their everyday investigations, allowing them to find more detailed information on possible cybercrime, and process it faster and easier. Additionally, this module will raise forensic examiners’ overall efficiency in conducting digital forensic investigations.
The Malware Forensic module will provide new insights and methods related to conducting live data forensics, memory analysis, static and dynamic analysis of malicious programs – occurrence that poses threat to people’s everyday life. This module will bring additional value to the Sector for Cybercrime and Digital Forensics in terms of conducting new types of very demanding forensic analysis of computer malware.
The last module of this training course - Mobile Forensics – is focused on analyses of different types of mobile devices. It will not only offer guidance on how to analyze mobile phones, but it also aims to provide detailed information about new technologies used in mobile devices, how mobile devices and their operating systems work, how to examine SIM cards, and most importantly, how to extract data from mobile devices such as mobile phones, tablets, iPods or any other device running a mobile operating system.
“Development path of experienced digital forensic investigator is neither short nor easy. Different operating systems and platforms, especially in the world of mobile phones with their many versions and applications running on mobile phones represent a true encyclopedia of knowledge that digital forensic investigator must know how to cope with in demanding investigations,” said computer forensic expert, Mr. Kresimir Hausknecht.
In the course of September and October 2016 subsequent trainings will follow focusing on Live Data Forensic, X-Ways Forensics, Computer forensic analysis by using EnCase, investigative techniques on cybercrime, efficient securing of evidence and identification of Malware codes. Several of these modules will target first responders to computer crimes at regional level (Sectors for Internal Affairs) and police representatives from the central office.