Catching the ghost: how to discover ephemeral evidence with live RAM analysis

by

Until very recently, it was a standard practice for European law enforcement agencies to approach running computers with a “pull-the-plug” attitude without recognizing the amount of evidence lost with the content of the computer’s volatile memory. While certain information never ends up on the hard drive, such as ongoing communications in social networks, data on running processes or open network connections, some other information may be stored securely on an encrypted volume. By simply pulling the plug, forensic specialists will slam the door to the very possibility of recovering these and many other types of evidence…

Read More…

Leave a Comment

Latest Videos

Forensic Focus

Forensic Focus
Join MSAB's webinar to learn about its analytics tool, XAMN. It combines efficiency with ease of use and powerful search capabilities, making it an excellent choice for digital investigators who need to discover, analyze, package, and share digital evidence and artifacts from a crime scene quickly and securely. We will also present our personal experience of some cases where various Police units found digital evidence in a flood of data with astonishing speed and result.

Join MSAB's webinar to learn about its analytics tool, XAMN. It combines efficiency with ease of use and powerful search capabilities, making it an excellent choice for digital investigators who need to discover, analyze, package, and share digital evidence and artifacts from a crime scene quickly and securely. We will also present our personal experience of some cases where various Police units found digital evidence in a flood of data with astonishing speed and result.

YouTube Video UCQajlJPesqmyWJDN52AZI4Q_WPUoNEug4mc

Uncover Evidence With XAMN, the Best Digital Forensic Analysis Solution

Forensic Focus 30th November 2022 5:00 am

This week, Christa and Si talk with Cyacomb's Graham Little and Mike Burridge about the technology it takes to identify child sexual abuse and terrorist imagery, on both devices and the online world. The balance between public safety and privacy is discussed, along with challenges faced by both social media providers preventing imagery from being shared, and law enforcement investigating the perpetrators. Also described: technological challenges and what they mean for investigations and prosecutions, including the need for training and education of users; and new developments coming from Cyacomb.

This week, Christa and Si talk with Cyacomb's Graham Little and Mike Burridge about the technology it takes to identify child sexual abuse and terrorist imagery, on both devices and the online world. The balance between public safety and privacy is discussed, along with challenges faced by both social media providers preventing imagery from being shared, and law enforcement investigating the perpetrators. Also described: technological challenges and what they mean for investigations and prosecutions, including the need for training and education of users; and new developments coming from Cyacomb.

YouTube Video UCQajlJPesqmyWJDN52AZI4Q__03Pmp4jm_c

Cyacomb's Graham Little & Mike Burridge on Making the Online World a Safer Place

Forensic Focus 28th November 2022 5:00 am

In the FT-Day keynote address, First Lieutenant Andreas Arbogast from the German Bureau of Crime North-Rhine Westphalia speaks about use cases and how the mobile data analytics lab built by mhService helps their cybercrime team to solve their cases faster and how they are implementing this tool in their IT-environment to achieve the perfect results.

In the FT-Day keynote address, First Lieutenant Andreas Arbogast from the German Bureau of Crime North-Rhine Westphalia speaks about use cases and how the mobile data analytics lab built by mhService helps their cybercrime team to solve their cases faster and how they are implementing this tool in their IT-environment to achieve the perfect results.

YouTube Video UCQajlJPesqmyWJDN52AZI4Q_0Mgsd0YOAgU

Rainbowboy: How the Mobile IT-Forensic Laboratory Helps German Police Solve Their Cases Faster

Forensic Focus 22nd November 2022 5:00 am

Load More... Subscribe
This error message is only visible to WordPress admins

Important: No API Key Entered.

Many features are not available without adding an API Key. Please go to the YouTube Feed settings page to add an API key after following these instructions.

Latest Articles

Uncover Evidence With XAMN, the Best Digital Forensic Analysis Solution
Webinars

Uncover Evidence With XAMN, the Best Digital Forensic Analysis Solution

ByMSAB_LisaNov 30, 2022
Register for Webinar: Getting Started With Amped FIVE
News

Register for Webinar: Getting Started With Amped FIVE

ByAmpedSoftwareNov 29, 2022
Cyacomb’s Graham Little & Mike Burridge on Making the Online World a Safer Place
Podcast

Cyacomb’s Graham Little & Mike Burridge on Making the Online World a Safer Place

ByForensic FocusNov 28, 2022
Deepfake Detection Made Easier with Amped Authenticate
News

Deepfake Detection Made Easier with Amped Authenticate

ByAmpedSoftwareNov 28, 2022
Atola TaskForce Gets APFS Support and Improved RAID Autoreassembly in Latest Update
News

Atola TaskForce Gets APFS Support and Improved RAID Autoreassembly in Latest Update

ByYulia SamoteykinaNov 28, 2022
Register for Webinar: When an Android Phone Is All You Have
News

Register for Webinar: When an Android Phone Is All You Have

ByOxygenForensicsNov 25, 2022
Share to...
BufferCopyFlipboardHacker NewsLineLinkedInMessengerMixPinterestPocketPrintRedditSMSTelegramTumblrVKWhatsAppXingYummly