Scene of the Cybercrime, 2/e

When it comes to computer crimes, the criminals got a big head start. But the law enforcement and IT security communities are now working diligently to develop the knowledge, skills, and tools to successfully investigate and prosecute Cybercrime cases. When the first edition of "Scene of the Cybercrime" published in 2002, it was one of the first books that educated IT security professionals and law enforcement how to fight Cybercrime. Over the past 5 years a great deal has changed in how computer crimes are perpetrated and subsequently investigated. Also, the IT security and law enforcement communities have dramatically improved their ability to deal with Cybercrime, largely as a result of increased spending and training. According to the 2006 Computer Security Institute's and FBI's joint Cybercrime report: 52% of companies reported unauthorized use of computer systems in the prior 12 months. Each of these incidents is a Cybecrime requiring a certain level of investigation and remediation. And in many cases, an investigation is mandates by federal compliance regulations such as Sarbanes-Oxley, HIPAA, or the Payment Card Industry (PCI) Data Security Standard.

Scene of the Cybercrime, Second Edition is a completely revised and updated book which covers all of the technological, legal, and regulatory changes, which have occurred since the first edition. The book is written for dual audience; IT security professionals and members of law enforcement. It gives the technical experts a little peek into the law enforcement world, a highly structured environment where the "letter of the law" is paramount and procedures must be followed closely lest an investigation be contaminated and all the evidence collected rendered useless. It also provides law enforcement officers with an idea of some of the technical aspects of how cyber crimes are committed, and how technology can be used to track down and build a case against the criminals who commit them. Scene of the Cybercrime, Second Editions provides a roadmap that those on both sides of the table can use to navigate the legal and technical landscape to understand, prevent, detect, and successfully prosecute the criminal behavior that is as much a threat to the online community as "traditional" crime is to the neighborhoods in which we live. Also included is an all new chapter on Worldwide Forensics Acts and Laws.


* Companion Web site provides custom tools and scripts, which readers can download for conducting digital, forensic investigations.
* Special chapters outline how Cybercrime investigations must be reported and investigated by corporate IT staff to meet federal mandates from Sarbanes Oxley, and the Payment Card Industry (PCI) Data Security Standard
* Details forensic investigative techniques for the most common operating systems (Windows, Linux and UNIX) as well as cutting edge devices including iPods, Blackberries, and cell phones.

當談到電腦犯罪時，罪犯已經佔據了先機。但執法機構和資訊安全社群現在正努力開發知識、技能和工具，以成功調查和起訴網絡犯罪案件。當《網絡犯罪現場》第一版於2002年出版時，它是第一本教育資訊安全專業人員和執法人員如何打擊網絡犯罪的書籍之一。在過去的5年中，電腦犯罪的實施方式和調查方式發生了很大變化。此外，資訊安全和執法社群在處理網絡犯罪方面的能力也有了顯著提升，這主要是由於增加的開支和培訓。根據2006年《計算機安全學會》和聯邦調查局聯合發布的網絡犯罪報告：52％的公司報告在過去12個月中出現了未經授權使用計算機系統的情況。每一起事件都是一起需要一定程度調查和修復的網絡犯罪。在許多情況下，根據薩班斯-奧克斯利法案、HIPAA或支付卡行業（PCI）數據安全標準等聯邦合規法規的要求，需要進行調查。

《網絡犯罪現場》第二版是一本完全修訂和更新的書籍，涵蓋了自第一版以來發生的所有技術、法律和監管變化。這本書是為雙重讀者群體而撰寫的：資訊安全專業人員和執法人員。它讓技術專家稍微了解執法世界，這是一個高度結構化的環境，法律的字面意義至關重要，程序必須嚴格遵循，以免調查被污染，收集的所有證據變得無用。它還向執法人員提供了一些有關網絡犯罪如何實施以及如何利用技術追踪並建立對犯罪分子的案件的技術方面的了解。《網絡犯罪現場》第二版提供了一個路線圖，供雙方使用，以在法律和技術環境中理解、預防、檢測和成功起訴對線上社群構成威脅的犯罪行為，就像傳統犯罪對我們所居住的社區一樣。還包括一個全新的章節，介紹全球鑑識法案和法律。

* 附帶網站提供讀者可以下載進行數位鑑識調查的自定義工具和腳本。
* 特別章節概述了企業IT人員如何報告和調查網絡犯罪，以滿足薩班斯-奧克斯利法案和支付卡行業（PCI）數據安全標準的聯邦要求。
* 詳細介紹了最常見操作系統（Windows、Linux和UNIX）以及iPod、Blackberry和手機等尖端設備的鑑識調查技術。