“Blue Ridge” Pre-Litigation Data Security Investigation
DisputeSoft reviewed an encrypted external hard drive containing a forensic image of the laptop hard drive in question. Following decryption of the hard drive, DisputeSoft Senior Manager & Forensic Examiner Josh Siegel analyzed the evidence by:
DisputeSoft found no evidence of copying of client data to online file sharing services. However, following our forensic review, DisputeSoft was asked to conduct a further investigation into the capabilities of the currently-installed security software and controls to prevent future installation of undesired programs and security breaches.
Josh conducted an on-site audit of the firm’s endpoint and domain name resolution (DNS) protection software to determine whether existing protective measures were sufficient to prevent users from accessing prohibited websites and software. Josh tested and confirmed that the firm’s DNS protection software adequately protected itself from tampering and reviewed the system’s security, anti-virus, and web-filtering and alerting settings. During the security review, Josh discovered that:
Josh worked with the firm’s Systems Administrator to remediate the browser installation issue and develop a plan for an accelerated Windows upgrade process. Josh also made technical recommendations to help to mitigate the effects of the limitations in the ability of the endpoint and DNS protection software to prevent access to prohibited websites and software.
Josh Siegel has substantial experience analyzing copyright, patent, and trade secret claims related software and information technology. Josh performs functional testing, analyzes defect systems and metadata, examines source code in intellectual property disputes, acquires and analyzes data in digital forensics, and finally integrates that data into written reports and testimony.