Good work requires time. And time requires planning and careful scheduling.
Results will be as good as the direction, time available, and evidence completeness allow us.
#digitalforensics
1 post1 participant0 posts today
Which one are you?
Dr Zoe Billings and Mark Pannone from Adapt & Evolve join the Forensic Focus Podcast to discuss their unique approach to mental health and well-being in digital forensics. https://www.forensicfocus.com/podcast/digital-forensics-and-stress-understanding-your-bodys-signals/ #DigitalForensics #DFIR #WellBeing
You got me...
Gmail's secret IP tracking just cracked a murder case wide open - the 'victim's' email came from the suspect's hotel, not her location. $23.2M verdict but he's free due to extradition issues. Moral: Your digital footprints are forever, but justice has borders. 
Can AI help you examine leaked data safely?
If you do it right, it can...
In this blog post, our Luke Davis looks at how internal chatbot systems, built on private large language models, can support forensic investigations.
He shows how AI can help find important information in big datasets and speed up analysis.
Read here: https://www.pentestpartners.com/security-blog/using-ai-chatbots-to-examine-leaked-data/
To make sure the AI output is correct, it should always be checked against the raw dataset.
"And the AI should make it all quick and easy." 
A critical vulnerability in old Telerik software gave an attacker remote code execution on an SFTP-only Windows server. That meant they didn’t need credentials, antivirus didn’t trigger, and default log sizes meant almost nothing useful was captured.
From there? PowerShell exclusions, admin account created, RDP tunnelled in via Ngrok, ransomware deployed.
They even opened Pornhub either to cover traffic or celebrate the moment. Who knows?
This attack wasn’t subtle. But it worked because basic controls were missing.
We’ve broken down the incident. Plus, recommendations you can act on now to prevent the same thing.
The competent #DigitalForensics examiner curse.
There is no I in Team. 
Continued thread
European Commission- Call for applications - Expert Group for a Technology Roadmap on Encryption (E04005) ACTIVE - deadline 1 September 2025.
#dataretention #lawfulinterception #digitalforensics #encryption
"The selection shall prioritise experts with technical profiles, coming from either public or private sector, whilst aiming to ensure proportional representation across the following fields of expertise: • Home affairs, ideally with an experience in fighting high-tech crime, and/or a background in the area of decryption and artifact extraction, computer forensics, network forensics, smartphone forensics, cloud forensics, IoT forensics, memory forensics and/or lawful interception; • Cybersecurity. with diverse backgrounds including but not limited to vulnerability management, evaluation of cybersecurity risks and certification and encryption (including quantum and post-quantum cryptography); • Telecommunication, including with experience in computer networks/Internet, 5G/6G, IoT, VoIP, Satellite, Quantum communication and/or encrypted communication applications; • Big data analysis, including with expertise in AI technologies; • Standardisation, notably in relation with cybersecurity and/or telecommunication technologies, including protocol networks, exchanges of digital data, and lawful interception; • Justice and fundamental rights, including experience in data protection and privacy, as well as experience in criminal justice, such as cyber-enabled and/or cyber-dependent crimes"
Announcing the DFIR Labs Digital Forensics Challenge - Enterprise Edition! This isn't another textbook simulation. We're giving your team exclusive access to a brand-new, unreleased case from a real incident.
When: August 30, 2025 (14:00 – 18:00 UTC)
Choose your SIEM: Azure Log Analytics, Elastic, or Splunk.
Your Squad: Form a team of 2-3 analysts.
The Glory: Solve the case, claim bragging rights, and win prizes for the top team!
Spaces are limited. Assemble your elite team and register now to secure your spot!
Register Here: https://dfirlabs.thedfirreport.com/dfirchallenge-enterprise-edition
dfirlabs.thedfirreport.comDFIR Labs - Digital Forensics Challenge - Enterprise Edition
European Commission presents Roadmap for effective and lawful access to data for law enforcement - 24 June 2025
https://home-affairs.ec.europa.eu/news/commission-presents-roadmap-effective-and-lawful-access-data-law-enforcement-2025-06-24_en
#dataretention #lawfulinterception #digitalforensics #encryption #ai
Understanding tool limitations is just as important and knowing tool capabilities especially when what you need to find is not there and you expected it to be.
Understanding tool limitations is just as important and knowing tool capabilities especially when what you need to find is not there and you expected it to be.
Sometimes you have to align it just right...
And now a classic of the genre.
How is productivity measured on #DigitalForensics?
Counting how many drives & phones one images is not a measure of expertise or productivity.
How many cases are closed might just show you that incentivizing speed over attention to detail is a recipe for disaster long term.
How do we go about it?
Yup. Go figure. 