Crime show hints give forensic headaches
By TOM PULLAR-STRECKER - The Dominion Post
Relevant offers
Digital living
Fictional crime shows such CSI, USB data sticks and email inboxes that can hold gigabytes of data are all making it harder for businesses to stop employees stealing or misusing company information, says Australian computer fraud expert Peter Mercer.
Shows such as CSI are teaching fraudsters some of the basics in how to cover their tracks, such as the importance of clearing the hard drives on their computers, he says. "Those kind of shows can give people a bit more information than you would want."
Meanwhile, the volume of data and range of document types that need to be analysed risks swamping investigations.
Mr Mercer, chief executive of Vound Software, visited Wellington to promote Intella, an anti-fraud tool that lets non-technical staff manage investigations by searching for keywords in documents and file attachments and mapping the relationships between computer users, documents and devices.
"We had a recent case where somebody had scanned a document and emailed it so keyword searches weren't going to help. But we were able to look at all the pictures the person had sent, and from there work out that was an issue."
In another case, a staffer was detected printing an allegedly stolen document two hours before leaving the company.
Barry Foster, a forensic expert with consultancy Deloitte, who used to head the police electronic crimes lab in Auckland, says fraud is on the rise because of the economic downturn. Deloitte, which uses Intella in its own investigations, was contacted by four companies in a single day last month, all concerned by suspicions of data theft, some involving "high-level staff".
Despite the growing sophistication and complexity of computer fraud, Mr Mercer says some big cases have been cracked by analysing metadata – information about information – automatically stored by software applications.
He points to the settlement of a huge legal dispute in Hong Kong. A document was purported to have been printed at a certain time, but there are rumours metadata revealed that was before the make and model of the printer in question had been manufactured.
Another multimillion dollar case that he worked on involving a subdivision dispute was quickly solved after message identity fields showed an email had been forged from a joke email.
Sponsored links
Kiwi technophobe turns into cyberspace sensation
Viacom, YouTube air dirty laundry
Aussie site blacklisted for hosting malware
ChatRoulette takes the world by storm
What next for Google in China?
Amazon allows Kindle app for Macs
Opera downloads double after Microsoft deal
$17.8m rip-off was easy, says ASB swindler
Severe weather forecast for south
New manual rules the air for trolley dollies
14th conviction for repeat drink-driver
Kiwi firms slammed for 'very low' security standards at stadiums
What would give Telecom back the 'X' factor?
Teen arrested for racist Walmart PA hijack
Watermelons block motorway after truck rolls
Over 60 drink drivers nabbed in Auckland
Jock Hobbs offers to resign as NZRU chair
NZRU loses battle to lure Carl Hayman home
Barry warns Tua: this is a 'real' test for you
Jock Hobbs offers to resign as NZRU chair
New manual rules the air for trolley dollies
14th conviction for repeat drink-driver
$17.8m rip-off was easy, says ASB swindler
Manu Vatuvei gets hat-trick in Warriors win
Katherine Heigl's dress malfunction
Karori sanctuary backer hits out at price rises
Troubled teens may be sent back to school
Zealandia to be twice the price
Letter: Of course students meet these costs
Taking Motueka to a new high: time to stir the pot
Labour ministers' credit card spending details delayed
Hide protests over burden on Telecom
'Music to dance to and to have fun to'
Letter: Refusal to means-test makes state pensions unsustainable