Digital Forensics

Investigations and all types of litigation must now consider digital data. Correspondence, e-mail messages, spreadsheets, accounting records and many other types of data files can contain critical information that could either decide the matter or provide important clues to the investigator.

Many times people will examine computer and other digital media, and will only copy the directories and files from the storage media. In these cases there may be a significant amount of data that is completely missed. Previously deleted files, data from file slack and data written to unallocated areas of the media may not be captured.

In most cases when files are deleted from digital media, the data is not actually erased until it is later overwritten. Many times this will mean that a deleted file can be recovered and examined.  Cellular phones, tablet computers, and other portable data storage media may also contain valuable evidence.  Cloud computing can provide companies and individuals with the capability of storing their data on the "cloud", with a storage provider who could be located anywhere in the world.

Just being computer literate is not sufficient. Digital forensics specialists have received  training in this field, and have the forensic tools to ensure the integrity of any digital data involved in an investigation or matter in litigation. Rigorous forensic methodologies developed over many years also help to respond to any questions related to how evidence is produced and protected.

Be safe rather than sorry, and make use of professional and qualified computer forensics specialists.