ForensicSoft Announces World’s First Forensically Sound Windows Bootable Environment

May 11, 2009 · Filed Under Software News · Comment 

ForensicSoft announces the release of its newest computer forensic tool, SAFE — the world’s first write-blocked Windows forensic boot environment. SAFE, which stands for System Acquisition Forensics Environment, is a new Windows-based computer forensic platform specifically designed to support the expanding needs of computer forensic, computer security, and litigation support professionals to confidently acquire, preview and analyze digital evidence to be presented in a court of law.

Unlike conventional forensic boot disks that use superficial protection techniques, such as mounting drives as read-only, ForensicSoft’s SAFE platform employs the company’s proprietary SAFE Block software technology to block all disks at the physical level to ensure a forensically sound preview, exploration and capture of the digital evidence. Investigators can be confident that all digital evidence is unaltered during the SAFE exploration and acquisition, and therefore is reliable and defensible when presented during litigation. SAFE Block technology is the only software write-blocker to successfully pass all of the U.S. National Institute of Standards (NIST) test criteria — visit the company’s website to review these results.

SAFE uses Microsoft Windows PE, a fully licensed copy of which is included with the product. SAFE is capable of running your favorite Windows-based forensic tools such as FTK, EnCase, X-Ways, etc. With the familiar Windows user experience, SAFE requires minimal training for investigators to become proficient with its use. And, since SAFE is a Windows-based computer forensic platform, investigators have access to the widest array of drivers for existing computer hardware, and immediate availability of new Windows drivers for new computer hardware. Drivers can be added at any time during a SAFE session, requiring no special skills or the need to recompile a new boot disk.

SAFE v1.0, delivered as a CD-ROM, ISO download file, or USB bootable drive image, boots any X86-based computer from CD or USB drive. Upon boot-up, SAFE securely locks-down the target computer with SAFE Block to ensure no erroneous write operations corrupt the target disk, then Windows PE is launched in a RAM disk on the target machine. Using the familiar Windows interface, disks and ports (USB, Firewire …) of the target machine can be easily unblocked or blocked throughout your investigation, with all events being logged and time-stamped. All of this is managed by the SAFE platform without removing or modifying the target machine’s hardware.

Specific benefits include:

  • Familiar Windows interface requiring minimal training
  • Write-blocking of all disk interfaces including SAS, RAID, Fibre Channel, and more
  • Allows for non-invasive, forensically sound data capture of any target media
  • Data capture and imaging at speeds of up to 4GB/min
  • Natively supports NTFS and NTFS Compressed file systems, allowing examiners to write images faster and without file size limitations that exist with FAT

For more information visit http://www.forensicsoft.com/

Tags: , , , , , , , , , ,

Panda Security Will Present at Anti-Phishing Working Group Counter Electronic Crime Summit to Help Combat Internet Crime

April 29, 2009 · Filed Under Business Software, Home Software, Internet Software, Productivity Software, Security Software, Software News · Comment 

Luis Corrons, Technical Director of PandaLabs, will present about the exponential growth of malware in recent months and prevention methods

Panda Security, a leading global provider of IT security solutions, announced that Luis Corrons, technical director of PandaLabs, will present at the 3rd Annual Anti-Phishing Working Group (APWG) Counter-Ecrime Operations Summit (CeCOS III) in Barcelona on May 12-14, 2009. Industry and public agency electronic crime responders, investigators and counter-electronic crime technologists from across the globe will gather in Barcelona next month for this international conference dedicated to uniting the industry and public sector response to the global electronic crime afflictions.

CeCOS III will unite IT operations, security, and law enforcement thought-leaders from Europe, America, Australia, East Asia and South Asia for to voice operational priorities in the global confrontation against phishing and electronic crime. The conference is venue for addressing questions of operational challenges and the development of common resources for first responders, law enforcement officials and forensic professionals that protect consumers and enterprises from electronic crime threats every day.

FullBanner468x60_BOXES_EN

“The criminal artisans that have organized on the Internet are growing in technical sophistication and command, and in their capacity to cloak themselves from detection,” said Peter Cassidy, APWG secretary general. “At CeCOS III, the APWG will make a very important proposition: to create a unified response to electronic crime as organized as the crimes themselves — a response to electronic crime without frontiers.”

Corrons will present on how numerous new strains of malware are appearing every day and saturating security laboratories. He will go on to describe how new detection technologies such as cloud-based protection can help combat this inundation of malware.

“Every day we are detecting an average of 30,000 new strains of malware, most of which are designed with a financial motive, such as stealing bank passwords or selling fake antivirus software,” said Corrons. “This is all symptomatic of the huge business that now centers around malware. I will be describing this situation and looking at how we can stop it.”

For more detail on the program’s content, visit the CeCOS III agenda: http://www.antiphishing.org/events/2009_opSummit.html

Source: Panda Security

Tags: , , , , , , ,