http://evincesvc.com/blog1 A blog about issues affecting Internet investigations and ethics compliance programs Fri, 26 Feb 2010 13:12:39 +0000 http://backend.userland.com/rss092 en The topic summary according to the HTCIA Ottawa website: In order to foster innovation, the culture of a university environment must support the principles of academic freedom and the sharing of information. The traditional principles of IT security (e.g. control of information assets) are often directly opposed to this concept. This ... http://evincesvc.com/blog1/2010/02/26/htcia-ottawa-speaker-update-it-security-in-the-university-environment-march-2-2010/ This blog does not deal with the Internet security side of the equation very often, but I saw a post on the Hyperion Digital Identity Forum that I thought was interesting. According to that post eBay in the United Kingdom may now be implementing a location based authentication scheme which aims ... http://evincesvc.com/blog1/2010/02/21/ebay-somewhere-you-are/ I just finished reading a fascinating article on the Cyb3rcrime3 blog on a case that was recently heard in Ohio. Ms. Brenner describes how the threat of posting someone's personal information on-line for some form of compensation could be considered a form of extortion. Ms. Brenner also described a US ... http://evincesvc.com/blog1/2010/02/05/the-threat-of-posting-personal-information-on-line-may-be-considered-extortion/ A quick note on the upcoming speaker for the HTCIA Ottawa Chapter. Bruce Cowper of Microsoft Canada will be speaking on the Top Security Threats for 2010. The date for the presentation is February 9, 2010 and it is at Russell's Lounge at the Ottawa Police Association. Bruce is an excellent ... http://evincesvc.com/blog1/2010/02/03/htcia-ottawa-speaker-update/ I am a regular reader of Steven Davis PlayNoEvil Blog, as should anyone be who is interested in game security and online fraud. Through one of the Playnoevil posts I learned about a string of posts on the WoW.com site relating to account security. I think these are a very ... http://evincesvc.com/blog1/2010/01/15/facinating-analysis-of-world-of-warcraft-security-issues/ According to the Toronto Star a fugitive wanted on drug charges in the United States was tracked to Canada. How you ask? Through his World of Warcraft activity. He was known to be a regular World of Warcraft player and the police in the United States subpeonaed Blizzard to obtain ... http://evincesvc.com/blog1/2010/01/07/world-of-warcraft-use-helps-police-catch-wanted-man/ Here are some useful Microsoft Excel formulas and tools which I have found to be useful in fraud investigation. These tips and tools assume some level of understanding of Excel, but are far below the level of using macros and other advanced features. Creating a Time-line in Excel I have identified ... http://evincesvc.com/blog1/2009/12/30/spreadsheet-formulas-and-tools/ For government departments that are considering developing a forensic audit capacity I would recommend the article written by Alan Gilmore in the Financial Management Institute of Canada's FMI*IGF Journal Volume 20, No. 1, Autumn 2008. The article is published in both English and French and is available from the Financial ... http://evincesvc.com/blog1/2009/12/24/recommendation-key-issues-in-establishing-a-forensic-audit-capacity/ If you're a white-paper junkie like me Open (re)Sources is a virtual goldmine. According to the site's author: "OPEN(re)SOURCES is a collection of current information gathered from across the Web. Resources include information relevant National Security Intelligence found in Open Source reports, analyses, briefings, articles, etc. Topics regularly cover terrorism (both ... http://evincesvc.com/blog1/2009/12/16/collection-of-open-source-security-and-intelligence-reports/ Anyone looking for a primer on Internet Investigations will want to read the white-paper written by Todd Shipley of Vere Software called "Collecting Legally Defensible Online Evidence: Creating a standard framework for Internet Forensic Investigations." It provides some very good fundamental points on the collection, examination, analysis ... http://evincesvc.com/blog1/2009/12/01/primer-on-internet-investigations/