FOR IMMEDIATE RELEASE

Contact:
Andrew Hoog
Chief Investigative Officer
viaForensics
Phone: +1 312-283-0551
http://viaforensics.com/contact-us

viaForensics announces release of Open Source Android Forensics application

viaForensics has released a beta version of its Open Source Android Forensics application supporting all Android devices.

Chicago, Feb 25, 2010 – viaForensics, a computer and mobile forensics firm, has released a beta version of its Open Source Android Forensics application, which allows forensics examiners to export data from an Android device for use by law enforcement and forensic investigators.

The beta version of the application, developed under the direction of lead architect Derek Guardiola, can be downloaded to an Android device enabling examiners to then export data, including browser history, call logs, contact methods, organizations, people and short message service (text messages), to a CSV file on an SD Card.

The development of this application on an open source platform, viaForensics believes, will support the further development of an unparalleled Android Forensics application which can be used free of charge. Developers can easily create plug-ins which will extract additional data from Android devices. Developers interested in participating in the application can contact viaForensics. The project source code and apk files can be downloaded from Google Code: http://code.google.com/p/android-forensics/

As the foremost experts in Android Forensics, viaForensics has developed techniques and training programs preparing law enforcement and forensic providers with the resources to successfully investigate Android devices. viaForensics is also in development on a complimentary reporting application for the extracted data. For more information, visit the viaForensics web page on Android Forensics.

About viaForensics

viaForensics is an innovative computer/mobile forensic and e-discovery firm focusing on providing proactive services to corporations, law enforcement and law firms. Andrew Hoog is a computer scientist, computer/forensics researcher and Chief Investigative Officer at viaForensics.

###

I’m very happy to announce the beta release of our open source Android Forensics application.

Overview

The application was written for the 1.5 API which allows it to run on all Android devices.  The initial application exports the following data to a CSV file on the SD Card:

• Browser history
• Call logs
• Contact Methods (email, phones, etc.)
• Organizations (companies that contacts are in)
• People (the individual people)
• SMS

The apk file is less than 20 KB and installed the application only 44 KB on the phone.  The forensics examiner would replace the user’s SD Card with their own (and presumably image the original for forensic analysis) and the results from the application would be saved for further analysis.

Open source

We are confident this application will grow in significance and capabilities.  Already there is significant interest from the community for further development.  By deigning an extensible framework, developers can easily create plugins which will extract additional data form the device.  We believe the open source philosophy will support the development of an unparalleled Android Forensics application which can be used free of charge.

viaForensics

viaForensics has sponsored this important application.  As the foremost experts in Android Forensics, our techniques and training programs prepare law enforcement and forensic providers with the resources to successfully investigation Android devices.   On supported phones, our techniques provide a full “dd image” of key partitions providing a vast recovery of data (including deleted data and versioning of files).  We are also developing a complimentary reporting application for the extracted data and pricing will be announced soon.

How you can help

If you are interested in participating in the application, please Contact Us.  The project source code and apk files can be downloaded from Google Code:

http://code.google.com/p/android-forensics/

Special Thanks

Finally, we want to thank our lead architect and developer on this project Derek Guardiola.  Many a late night (early morning) has been spent preparing for this initial release.  His work has been instrumental in providing this important application to the forensic community.

We hope to hear from you!

This is an interesting and evolving area.  Many of these devices run embedded OS with flash memory so traditional forensic techniques do not work.  However, the Android platform (and other mobile platforms) have similar characteristics and thus the R&D in those areas can be applied to embedded devices.    Moral of the story: if it has data storage or network activity, you’ll find a forensic geek poking around somewhere close by (hint: contact us if you want to discuss):

Attacks against the power grid are likely to rise and intensify during the next 12 months as smart grid research and pilot projects advance, according to utility security experts and a recently published report that analyzes threats to critical infrastructure.

The so-called Project Grey Goose Report on Critical Infrastructure points to state and/or non-state sponsored hackers from the Russian Federation of Independent States, Turkey, and China as the main threats to targeting and hacking into energy providers and other critical infrastructure networks.

via Spike In Power Grid Attacks Likely In Next 12 Months – DarkReading.

FOR IMMEDIATE RELEASE

Contact:
Andrew Hoog
Chief Investigative Officer
viaForensics
Phone: +1 312-283-0551
http://viaforensics.com/contact-us

The CIO of viaForensics, Andrew Hoog, has been invited to speak at the International Conference on Cyber Security 2010 presented by the Federal Bureau of Investigation and Fordham University in New York City this August.

Chicago, Feb 24, 2010 –  viaForensics’ CIO Andrew Hoog will offer a training course on Android forensics at the upcoming Interational Conference on Cyber Security (ICCS 1020), held August 2-5, 2010, in New York City. The conference, hosted jointly by the Federal Bureau of Investigation and Fordham University, brings together law enforcement officials, industry professionals and academic experts to discuss emerging worldwide cyber threats.

In 2009, the conference hosted more than 500 professionals representing 40 counties. Attendees were an International mix of law enforcement agents and prosecutors, cyber-security researchers, members of academia and business and government leaders.

This year the conference will feature 50 lectures covering three broad areas: Emerging Technologies, Operations and Enforcement, and Real Life Experiences. In addition to the lectures, panel discussions, sponsors’ presentations, exhibitions and networking opportunities, ICCS will present two unique events – a Law Enforcement Workshop and the Cyber Security Tutorial – featuring experts presenting both technical and non-technical sessions.

viaForensics’ training, presented by CIO Andrew Hoog, provides examiners with six separate techniques to acquire data from an Android device. The course explains the techniques and analysis tools needed to effectively investigate an Android phone. The full course outline  is provided on the viaForensics website. The training will be offered on the first day of the conference, August 2nd.

Andrew Hoog has authored a groundbreaking white paper on iPhone forensics and is currently authoring a book on Android forensics. Hoog also maintains the Android Forensics Wiki (AFWiki).

About viaForensics

viaForensics is an innovative computer/mobile forensic and e-discovery firm focusing on providing proactive services to corporations, law enforcement and law firms. Andrew Hoog is a computer scientist, computer/forensics researcher and Chief Investigative Officer at viaForensics.

###

This will be a pivotal year for Windows Mobile…the trend is not on their side but with it still sitting at #4, as the article says, they have a footing.  Personally, I think the mindset of trying to adopt the desktop OS/GUI to a hand held phone put Microsoft at a disadvantage for so long it hard to imagine a successful recovery.

The smartphone data comes from Gartner, which measures actual sales to customers rather than to carriers or dealers. By that reckoning, Windows Mobile sales only declined by 1.47 million units to around 15 million units year over year. By comparison, iPhone OS sales more than doubled — to nearly 25 million units — with share rise to 14.4 percent from 8.2 percent year over year. Android made significant gains — and at the expense of other Linux-based smartphone operating systems, too — with share rising from 0.5 percent in 2008 to 3.9 percent in 2009 on 6.8 million units shipped. Android made its biggest gains of the year during fourth quarter.

via Android and iPhone smack down Windows Mobile | Betanews.

FOR IMMEDIATE RELEASE

Contact:
Andrew Hoog
Chief Investigative Officer
viaForensics
Phone: +1 312-283-0551
http://viaforensics.com/contact-us

viaForensics’ CIO, Andrew Hoog, earns Certified Computer Examiner designation

Chief Investigative Officer of viaForencis, Andrew Hoog, recently obtained his (CCE)® certification from the International Society of Forensic Computer Examiners

Chicago, Feb 19, 2010 –  The CIO of the computer/mobile forensic and e-discovery firm viaForensics, Andrew Hoog, has earned the Certified Computer Examiner (CCE) designation awarded by the International Society of Forensic Computer Examiners, an internationally recognized professional organization dedicated to upholding standards in the computer forensics community.

CCE certification is awarded to individuals who demonstrate knowledge and proficiency of skills related to the practice of digital forensics. Applicants for certification must complete an approved amount of training or professional experience and pass a four-part test.

Mr. Hoog adds this recognition to his list of credentials which includes the Global Information Assurance Certified Forensic Analyst (GCFA) designation and membership in the International High Technology Crime Investigation Association (HTCIA).

About viaForensics

viaForensics is an innovative computer/mobile forensic and e-discovery firm focusing on providing proactive services to corporations, law enforcement and law firms. Andrew Hoog is a computer scientist, computer/forensics researcher and Chief Investigative Officer at viaForensics.

# # #

FOR IMMEDIATE RELEASE

Contact:
Andrew Hoog
Chief Investigative Officer
viaForensics
Phone: +1 312-283-0551
http://viaforensics.com/contact-us

viaForensics CIO speaks on iPhone and Android Forensics at The Midwest HTCIA Chapter meeting

CIO of viaForensics, Andrew Hoog, spoke about the challenges of digital forensics on the iPhone and Android platforms

Chicago, Feb 17, 2010 –  Andrew Hoog, CIO of viaForensics, spoke last week on the challenges of performing digital forensics on mobile devices. He spoke to an audience at the meeting of the Midwest Chapter of the High Technology Crime Investigator’s Association (HTCIA). His talk focused specifically on the challenges presented by iPhone’s platform and touched briefly on the new Android platform.

Andrew Hoog is the author of a groundbreaking white paper on iPhone forensics that has gained recognition throughout the industry. In the paper, Hoog reveals the vast amount of personal information stored on Apple’s iPhone and reviews six specific products and techniques for retrieving this information.

The HTCIA is a non-profit professional organization focused on the prevention, investigation and prosecution of crimes involving advanced technology. The Midwest HTCIA Chapter holds bi-monthly meetings and hosts presentations of relevant topics.

About viaForensics

viaForensics is an innovative computer/mobile forensic and e-discovery firm focusing on providing proactive services to corporations, law enforcement and law firms. Andrew Hoog is a computer scientist, computer/forensics researcher and Chief Investigative Officer at viaForensics.

###