FBI Adds Two Digital Forensic Labs 35
coondoggie sends us a story from NetworkWorld.com, as is his wont, this one on the FBI opening two new US Regional Computer Forensics Laboratories this week. In these laboratories examiners conduct a growing number of forensic examinations of digital media in support of the investigation and/or prosecution of a federal, state, or local crime. With the addition of the new facilities in Los Angeles and Albuquerque, the FBI will have 16 RCFLs nationwide. And they are needed: "During 2007, RCFL experts conducted 4,634 exams, processing 1,288 terabytes of information. A total of 76,581 digital devices were examined (the most popular media by far — CDs, coming in at 37,424; followed by hard disk drives at 17,378; floppy disks at 11,781; and DVDs at 4,374). The number of CDs, cell phones, and flash media devices examined doubled from the previous year."
Mmmm. (Score:1)
Does it explain the /.out ? (Score:1)
Crazy math (Score:2)
Its hard to believe they examined that much storage capacity, let alone that much data.
Re: (Score:3, Informative)
CD's: 37,424 x 650 Megabytes = 24325600 Megabytes
HD's: 17,378 x 70 Gigabytes = 1245655040 Megabytes
Floppy's: 11,781 x * 1.4 Megabytes = 16493.4 Megabytes
DVD's: 4374 x 4 Gigabytes = 17915904 Megabytes
Total = 1287913037.4 Megabytes
= 1287913.0374 Gigabytes
= 1287.9130374 Terabytes
Re: (Score:2)
I sincerely doubt there was 1288TB of data. Thats 284GB per article. If significant numbers of them were CDs or flash storage the numbers start looking fishey very fast.
Not to suggest that the FBI would never lie about details [slashdot.org], but I fail to see your mathematical concerns here. How exactly did you come up with your numbers? The summary says that 76,581 digital devices were examined, including 37,424 CDs, over 17,000 hard drives, and 4,300 DVDs. That averages out to only 16 to 17 GB per device. CDs account for almost 30 TB of the data. Taking them out leaves you at about 32 GB per device, which seems reasonable considering that over half of the remaining devices are h
Re: (Score:2)
Seems odd.
Re: (Score:2)
Re: (Score:2)
From the article, there were 4634 exams, and 11,781 floppy disk. That amounts to just under 3 floppy disks per case. It wouldn't be too difficult to imagine that anyone with a computer might just have a few floppy disks lying around which originally came from hardware purchases (device drivers, software upgrades, freebie applicati
Why L.A., huh? (Score:2)
Edited for truth (Score:1)
What are all these forsenic labs being used for? (Score:2)
I know it is routine now for investigators to seize computer equipment even in drug arrests, and I wonder how much taxpayer money is being wasted so federal agents can look through internet histories and MSN buddy lists.
Re:What are all these forsenic labs being used for (Score:3, Interesting)
Speaking of which, on my latest Equifax report there was a big bold scary headline that says FBI reports that identity theft is the largest growing crime.
Rather than using these vast resources to combat IP Infringment and "Think of the Children" issues, wouldn't it be better devoted to actua
Re:What are all these forsenic labs being used for (Score:1)
Re:How good are these guys? (Score:5, Informative)
The real bitch of it is- these guys never get challenged properly- especially in child porn cases. (Thank John Walsh- Adam's Law is absurd). They can claim whatever they want and the defense is basically helpless. The defense is not allowed to have their own copy of the drive to do forensic analysis on. They have to do it at the FBI lab with FBI equipment and with FBI goons hanging over their shoulders. If the FBI finds "overwritten" evidence- there is no good way to challenge that. It's your word against theirs.
Chain of custody? HAH! I've watched these guys leave crime scenes with drives under their arms, I've watched them run programs and click around a system they suspect of containing illegal material. No effort made to prevent trojans or other programs from covering their tracks. No effort made to preserve the state of the system. It's laughable.
And no- I wasn't a target. I did "forensic" analysis for years and got sick of watching these people make a mockery of my profession. (I put forensic in quotes because there is nothing scientific about these analyses- they are the best guesses of someone who may or may not be even remotely qualified to give an opinion).
Re: (Score:2)
Best they could do is pass their educated guesses on to people who say them as fact in court.
Re: (Score:3, Insightful)
They are incompetent- completely and utterly incompetent. They know only what encase or another piece of forensic software tells them. If the disk blocks have been rewritten a couple of times- they're not going to find it. They're not going to break AES unless you've done something stupid and left the key laying around.
I figure you recover DoD wiped data without breaking a sweat and has AES cracked by midnight then, eh?
I put forensic in quotes because there is nothing scientific about these analyses-
Well while a few of the examples you pull up sound outright sloppy, this isn't a science project either. Time and money spent in the lab is money that could be used patrolling streets, going door-to-door, interviewing witnesses, following up leads, doing surveilance or a million other good uses. Forensic analysis is about doing it cost-effective in volume, which is more like McDonalds than a fine restaura
Re: (Score:1)
We don't have money for this... (Score:2)
But hey, we have Billions of $ for making sure that people don't pirate MP3 files.
I can understand that there are a lot more computers seized in drug raids. For one -- why are we still making drugs illegal? Are they dealing with identity theft or something that I as a citizen actually are about? Is kiddie p0rn going to magic
If they need to hire help... (Score:1)
has the WhiteHouse called them in yet .. :) (Score:2)
Suspicious DOJ edits of Wikipedia [slashdot.org]
Reiser trial proves their incompetence. (Score:2)