If you are visually impaired or blind, you can visit the PDF version by Pressing CONTROL + ALT + 4
<br /> Digital<br /> The Quarterly Magazine for Digital Forensics Practitioners Issue 23 · May 2015<br /> WIN! an iPod Nano<br /> ForensicS<br /> / magazine<br /> CRIMINAL<br /> JOURNEY<br /> MAPPING<br /> How to use Cyber Criminal Journeys<br /> to support forensics investigation and<br /> response deployment<br /> Latest News, 360<br /> Book Reviews, IRQ<br /> & much more inside!<br /> PLUS!<br /> Honeynets<br /> Bioinformatics<br /> Focus on the SOC<br /> Embracing eDiscovery<br /> 23<br /> 9 772042 061004<br /> Issue 23 / £14.99 TR Media<br /> <br /> EDITORIAL<br /> S<br /> o the major exhibitions and<br /> conferences are starting to<br /> gather pace in 2015 with RSA,<br /> <a title="DFM23 - Online page 1" href="https://secure.viewer.zmags.com/publication/182d19a6?page=1"> Digital The Quarterly Magazine for Digital Fore</a> <a title="DFM23 - Online page 2" href="https://secure.viewer.zmags.com/publication/182d19a6?page=2"> </a> <a title="DFM23 - Online page 3" href="https://secure.viewer.zmags.com/publication/182d19a6?page=3"> EDITORIAL S </a> <a title="DFM23 - Online page 4" href="https://secure.viewer.zmags.com/publication/182d19a6?page=4"> </a> <a title="DFM23 - Online page 5" href="https://secure.viewer.zmags.com/publication/182d19a6?page=5"> 46 FEATURES 08 / Embracing eDiscovery Paul Slate</a> <a title="DFM23 - Online page 6" href="https://secure.viewer.zmags.com/publication/182d19a6?page=6"> / NEWS NEWS NEWS / Cyberthreats Are Increasing</a> <a title="DFM23 - Online page 7" href="https://secure.viewer.zmags.com/publication/182d19a6?page=7"> / NEWS ROUND-UP CELLPHONES ARE A HARDER HACK TARG</a> <a title="DFM23 - Online page 8" href="https://secure.viewer.zmags.com/publication/182d19a6?page=8"> / FEATURE EMBRACING EDISCOVERY Paul Slater on</a> <a title="DFM23 - Online page 9" href="https://secure.viewer.zmags.com/publication/182d19a6?page=9"> by the London Metropolitan Police Service and the</a> <a title="DFM23 - Online page 10" href="https://secure.viewer.zmags.com/publication/182d19a6?page=10"> / FEATURE make arbitrary decisions, someone w</a> <a title="DFM23 - Online page 11" href="https://secure.viewer.zmags.com/publication/182d19a6?page=11"> Perhaps one of the most significant costs th</a> <a title="DFM23 - Online page 12" href="https://secure.viewer.zmags.com/publication/182d19a6?page=12"> / FEATURE Visually representing these l</a> <a title="DFM23 - Online page 13" href="https://secure.viewer.zmags.com/publication/182d19a6?page=13"> </a> <a title="DFM23 - Online page 14" href="https://secure.viewer.zmags.com/publication/182d19a6?page=14"> / LEAD FEATURE CRIMINAL JOURNEY MAPPING Bi</a> <a title="DFM23 - Online page 15" href="https://secure.viewer.zmags.com/publication/182d19a6?page=15"> / What is a BotNet (Zombie Army)? A botnet (al</a> <a title="DFM23 - Online page 16" href="https://secure.viewer.zmags.com/publication/182d19a6?page=16"> / LEAD FEATURE · Uses their own existing mea</a> <a title="DFM23 - Online page 17" href="https://secure.viewer.zmags.com/publication/182d19a6?page=17"> target the organisation or people within a specifi</a> <a title="DFM23 - Online page 18" href="https://secure.viewer.zmags.com/publication/182d19a6?page=18"> </a> <a title="DFM23 - Online page 19" href="https://secure.viewer.zmags.com/publication/182d19a6?page=19"> / LEGAL EDITORIAL LEGAL EDITORIAL The Problem of </a> <a title="DFM23 - Online page 20" href="https://secure.viewer.zmags.com/publication/182d19a6?page=20"> / LEGAL FEATURE MODERNISING THE US COMPUTER FR</a> <a title="DFM23 - Online page 21" href="https://secure.viewer.zmags.com/publication/182d19a6?page=21"> However, the inclusion of the “or state [laws</a> <a title="DFM23 - Online page 22" href="https://secure.viewer.zmags.com/publication/182d19a6?page=22"> / LEGAL FEATURE / Changes To Sentencing Guidelin</a> <a title="DFM23 - Online page 23" href="https://secure.viewer.zmags.com/publication/182d19a6?page=23"> There are some obvious ties to the previous i</a> <a title="DFM23 - Online page 24" href="https://secure.viewer.zmags.com/publication/182d19a6?page=24"> / LEGAL EDITORIAL LEGAL NEWS A round-up of the la</a> <a title="DFM23 - Online page 25" href="https://secure.viewer.zmags.com/publication/182d19a6?page=25"> </a> <a title="DFM23 - Online page 26" href="https://secure.viewer.zmags.com/publication/182d19a6?page=26"> / FROM THE LAB DNA & BIOINFORMATICS The </a> <a title="DFM23 - Online page 27" href="https://secure.viewer.zmags.com/publication/182d19a6?page=27"> / The Steps of Bioinformatic Analysis · Primary a</a> <a title="DFM23 - Online page 28" href="https://secure.viewer.zmags.com/publication/182d19a6?page=28"> / FROM THE LAB Figure 1. </a> <a title="DFM23 - Online page 29" href="https://secure.viewer.zmags.com/publication/182d19a6?page=29"> traits that are mostly dictated by our DNA can no</a> <a title="DFM23 - Online page 30" href="https://secure.viewer.zmags.com/publication/182d19a6?page=30"> / FROM THE LAB studies or medical questions l</a> <a title="DFM23 - Online page 31" href="https://secure.viewer.zmags.com/publication/182d19a6?page=31"> </a> <a title="DFM23 - Online page 32" href="https://secure.viewer.zmags.com/publication/182d19a6?page=32"> </a> <a title="DFM23 - Online page 33" href="https://secure.viewer.zmags.com/publication/182d19a6?page=33"> </a> <a title="DFM23 - Online page 34" href="https://secure.viewer.zmags.com/publication/182d19a6?page=34"> / FEATURE PREPARING ORGANISATIONS FOR DIGITAL </a> <a title="DFM23 - Online page 35" href="https://secure.viewer.zmags.com/publication/182d19a6?page=35"> / A New Standard The most recent Digital Forensic</a> <a title="DFM23 - Online page 36" href="https://secure.viewer.zmags.com/publication/182d19a6?page=36"> / FEATURE / See Also 1. ISO/IEC 27001:2013 Info</a> <a title="DFM23 - Online page 37" href="https://secure.viewer.zmags.com/publication/182d19a6?page=37"> International Standards. For example the Digital </a> <a title="DFM23 - Online page 38" href="https://secure.viewer.zmags.com/publication/182d19a6?page=38"> / INTERVIEW MEET THE PROFESSIONALS / Dr. Haid</a> <a title="DFM23 - Online page 39" href="https://secure.viewer.zmags.com/publication/182d19a6?page=39"> What are your views on the industry standard tool</a> <a title="DFM23 - Online page 40" href="https://secure.viewer.zmags.com/publication/182d19a6?page=40"> Digital ForensicS / magazine Digital The Qua</a> <a title="DFM23 - Online page 41" href="https://secure.viewer.zmags.com/publication/182d19a6?page=41"> </a> <a title="DFM23 - Online page 42" href="https://secure.viewer.zmags.com/publication/182d19a6?page=42"> / FEATURE FOCUS ON THE SOC Joe Schreib</a> <a title="DFM23 - Online page 43" href="https://secure.viewer.zmags.com/publication/182d19a6?page=43"> ACCORDING TO AN ISC2 SURVEY, 56% OF ORGANIS</a> <a title="DFM23 - Online page 44" href="https://secure.viewer.zmags.com/publication/182d19a6?page=44"> / FEATURE / Threat Sharing Finally, there are nu</a> <a title="DFM23 - Online page 45" href="https://secure.viewer.zmags.com/publication/182d19a6?page=45"> Don't let the name or perception of SIEM in</a> <a title="DFM23 - Online page 46" href="https://secure.viewer.zmags.com/publication/182d19a6?page=46"> / FEATURE TRAPPING THE ATTACKER An inves</a> <a title="DFM23 - Online page 47" href="https://secure.viewer.zmags.com/publication/182d19a6?page=47"> / Q&A Are there any legal or ethical implications</a> <a title="DFM23 - Online page 48" href="https://secure.viewer.zmags.com/publication/182d19a6?page=48"> / FEATURE Tool Interacti</a> <a title="DFM23 - Online page 49" href="https://secure.viewer.zmags.com/publication/182d19a6?page=49"> Data Capture The primary purpose of a Honeypot/ H</a> <a title="DFM23 - Online page 50" href="https://secure.viewer.zmags.com/publication/182d19a6?page=50"> / FEATURE Honeypot Platform </a> <a title="DFM23 - Online page 51" href="https://secure.viewer.zmags.com/publication/182d19a6?page=51"> / COMING SOON COMING SOON… A round-up of featu</a> <a title="DFM23 - Online page 52" href="https://secure.viewer.zmags.com/publication/182d19a6?page=52"> / ADVERTORIAL CYBER SECURITY, ACADEMIA AND INDUST</a> <a title="DFM23 - Online page 53" href="https://secure.viewer.zmags.com/publication/182d19a6?page=53"> 53</a> <a title="DFM23 - Online page 54" href="https://secure.viewer.zmags.com/publication/182d19a6?page=54"> / FEATURE / Edward Snowden The m</a> <a title="DFM23 - Online page 55" href="https://secure.viewer.zmags.com/publication/182d19a6?page=55"> / EXPERT TIP Don't wait for an information violat</a> <a title="DFM23 - Online page 56" href="https://secure.viewer.zmags.com/publication/182d19a6?page=56"> / FEATURE / Warning! Forewarning for any compan</a> <a title="DFM23 - Online page 57" href="https://secure.viewer.zmags.com/publication/182d19a6?page=57"> I also like the idea of the `Red Team'! It m</a> <a title="DFM23 - Online page 58" href="https://secure.viewer.zmags.com/publication/182d19a6?page=58"> / FEATURE AUTONOMOUS VEHICLES AS A CYBER PHYSI</a> <a title="DFM23 - Online page 59" href="https://secure.viewer.zmags.com/publication/182d19a6?page=59"> The system that enhanced the experience for t</a> <a title="DFM23 - Online page 60" href="https://secure.viewer.zmags.com/publication/182d19a6?page=60"> / FEATURE / Attack Groups In previous articles w</a> <a title="DFM23 - Online page 61" href="https://secure.viewer.zmags.com/publication/182d19a6?page=61"> such events a merging together of the safety and </a> <a title="DFM23 - Online page 62" href="https://secure.viewer.zmags.com/publication/182d19a6?page=62"> </a> <a title="DFM23 - Online page 63" href="https://secure.viewer.zmags.com/publication/182d19a6?page=63"> 36 Letters, emails, tweets, connections and more…</a> <a title="DFM23 - Online page 64" href="https://secure.viewer.zmags.com/publication/182d19a6?page=64"> / COMPETITION COMPETITION / This issue we have</a> <a title="DFM23 - Online page 65" href="https://secure.viewer.zmags.com/publication/182d19a6?page=65"> / GET INVOLVED GET INVOLVED Calling all Book Revi</a> <a title="DFM23 - Online page 66" href="https://secure.viewer.zmags.com/publication/182d19a6?page=66"> / FEATURE NETWORK SEGMENTATION & ISOLATION Com</a> <a title="DFM23 - Online page 67" href="https://secure.viewer.zmags.com/publication/182d19a6?page=67"> Attackers seeki</a> <a title="DFM23 - Online page 68" href="https://secure.viewer.zmags.com/publication/182d19a6?page=68"> / FEATURE We need to be more like a biol</a> <a title="DFM23 - Online page 69" href="https://secure.viewer.zmags.com/publication/182d19a6?page=69"> </a> <a title="DFM23 - Online page 70" href="https://secure.viewer.zmags.com/publication/182d19a6?page=70"> / FEATURE SORRY SYMANTEC – ANTIVIRUS IS NOT</a> <a title="DFM23 - Online page 71" href="https://secure.viewer.zmags.com/publication/182d19a6?page=71"> A BRAND NEW LUXURY CAR MAY COME WITH </a> <a title="DFM23 - Online page 72" href="https://secure.viewer.zmags.com/publication/182d19a6?page=72"> / FEATURE APT protection is good and nec</a> <a title="DFM23 - Online page 73" href="https://secure.viewer.zmags.com/publication/182d19a6?page=73"> </a> <a title="DFM23 - Online page 74" href="https://secure.viewer.zmags.com/publication/182d19a6?page=74"> </a> <a title="DFM23 - Online page 75" href="https://secure.viewer.zmags.com/publication/182d19a6?page=75"> / book reviews BOOK REVIEWS I got t</a> <a title="DFM23 - Online page 76" href="https://secure.viewer.zmags.com/publication/182d19a6?page=76"> / book reviews LINUX MALWARE INCIDENT RESPONSE</a> <a title="DFM23 - Online page 77" href="https://secure.viewer.zmags.com/publication/182d19a6?page=77"> </a> <a title="DFM23 - Online page 78" href="https://secure.viewer.zmags.com/publication/182d19a6?page=78"> / IRQ IRQ The Power of Words! E ar</a> <a title="DFM23 - Online page 79" href="https://secure.viewer.zmags.com/publication/182d19a6?page=79"> </a> <a title="DFM23 - Online page 80" href="https://secure.viewer.zmags.com/publication/182d19a6?page=80"> </a>