W3: Digital Forensics

Question 1

What is digital forensics and it’s subcategories

Answer 1

The process of restoring, retrieving and analysing material stored and transferred in a digital way to reconstruct past events
- device forensics
- network forensics
- cloud forensics

Question 2

What is the history of digital forensics

Answer 2

In 1981, Ian Murphy (captain zap) was the first person who was convicted of a cybercrime and received a fine
1990s, cybercrime became a recognised term
1980s, honeypot trap

Question 3

Examples of cybercrime

Answer 3

Cyber bullying
Phishing
Identify theft
Scams
Hacking
Dark web

Question 4

What are cyber dependent crimes

Answer 4

Committed through the use of technology where the device is both the tool and the target e,g hacking

Question 5

What are cyber enabled crimes

Answer 5

Things that have existed before yet can be transferred online e.g bullying

Question 6

What are cyber enabled crimes

Answer 6

Things that have existed before yet can be transferred online e.g bullying

Question 7

What is the digital forensics process

Answer 7

Collection
Examination
Analysis
Reporting
Present

Question 8

How can evidence be found via phones and computers

Answer 8

Phones- SIM card, memory cards
Computers- mouse, keyboard, power supply

Question 9

How to handle phones for processing

Answer 9

Sealed evidence bag
Switch off phone
Biological Vs digital evidence
Take photo of screen

Question 10

How to handle computers for processing

Answer 10

Document connection of cables and devices
Unplug everything, DO NOT turn off
Use evidence bags
Transport

Question 11

What are the principles investigators follow

Answer 11

Data must be the same when first collected and presented
Must be competent to show relevant data
Record should be created and preserved
Person in charge just remain responsible