We are independent & ad-supported. We may earn a commission for purchases made through our links.
Advertiser Disclosure
Our website is an independent, advertising-supported platform. We provide our content free of charge to our readers, and to keep it that way, we rely on revenue generated through advertisements and affiliate partnerships. This means that when you click on certain links on our site and make a purchase, we may earn a commission. Learn more.
How We Make Money
We sustain our operations through affiliate commissions and advertising. If you click on an affiliate link and make a purchase, we may receive a commission from the merchant at no additional cost to you. We also display advertisements on our website, which help generate revenue to support our work and keep our content free for readers. Our editorial team operates independently of our advertising and affiliate partnerships to ensure that our content remains unbiased and focused on providing you with the best information and recommendations based on thorough research and honest evaluations. To remain transparent, we’ve provided a list of our current affiliate partners here.
Technology

Our Promise to you

Founded in 2002, our company has been a trusted resource for readers seeking informative and engaging content. Our dedication to quality remains unwavering—and will never change. We follow a strict editorial policy, ensuring that our content is authored by highly qualified professionals and edited by subject matter experts. This guarantees that everything we publish is objective, accurate, and trustworthy.

Over the years, we've refined our approach to cover a wide range of topics, providing readers with reliable and practical advice to enhance their knowledge and skills. That's why millions of readers turn to us each year. Join us in celebrating the joy of learning, guided by standards you can trust.

What in Involved in Computer Crime Investigations?

Mary McMahon
By
Updated: May 17, 2024
Views: 5,503
Share

Computer crime investigations seek to determine the nature of a crime and collect evidence to lead to a conviction. Along the way, investigators may uncover information they can use to predict and prevent crimes of a similar nature in the future. For example, they might note a loophole in a program that makes intrusions possible, and could contact the manufacturer to recommend a patch to correct the problem. Training in information technology is necessary for this kind of work, as is experience in evidence collection and handling to reduce the risk of gathering information that cannot be legally used.

The process starts when someone calls to report a crime, or a monitoring agency detects evidence of a crime. Investigative teams must secure computers, networks, and components that may be connected with the incident. This can include things like financial networks connected to embezzlement in fraud, or computer networks targeted with malicious hacks in an attempt to expose and compromise data. Computer crime investigations can be challenging because of the ephemeral nature of the evidence, making it critical to get the computers secured and under control before starting an investigation.

Investigators may clone the system in order to explore it without compromising the original. Computer crime investigations can involve a detailed audit of a computer system to look for malicious code, security loopholes, and other issues. The investigators may seek out compromising files and programs, including material people have attempted to delete, alter, or conceal. Specifics of the investigation depend on the type of crime under investigation. For hacking, for example, computer crime investigations need to uncover evidence that intrusions occurred, and must link it to a source.

Maintaining the chain of evidence with computer crime investigations is challenging. Investigators need to carefully document everything they do and may videotape, record keystrokes, and take other measures to track their activities. In the event evidence is challenged in court, the team must be able to show that the evidence is original, without alterations that might compromise its validity. Members of this field constantly revise and update evidence guidelines to keep pace with computer crime investigations and set a standard for investigators to follow wherever they are working.

Once evidence has been fully collected and cataloged, the team may opt to retain the equipment they confiscated until the matter goes to court and is heard. This ensures that they have access if they need it during the trial. Otherwise, computers and other devices might be released back to their owners, which could ultimately compromise any remaining evidence.

Share
WiseGeek is dedicated to providing accurate and trustworthy information. We carefully select reputable sources and employ a rigorous fact-checking process to maintain the highest standards. To learn more about our commitment to accuracy, read our editorial process.
Mary McMahon
By Mary McMahon

Ever since she began contributing to the site several years ago, Mary has embraced the exciting challenge of being a WiseGeek researcher and writer. Mary has a liberal arts degree from Goddard College and spends her free time reading, cooking, and exploring the great outdoors.

Editors' Picks

Discussion Comments
Mary McMahon
Mary McMahon

Ever since she began contributing to the site several years ago, Mary has embraced the exciting challenge of being a...

Learn more
Share
https://www.wisegeek.net/what-in-involved-in-computer-crime-investigations.htm
Copy this link
WiseGeek, in your inbox

Our latest articles, guides, and more, delivered daily.

WiseGeek, in your inbox

Our latest articles, guides, and more, delivered daily.