Consider the following scenario.

A new start-up SME (small-medium enterprise) based in Luton with an e-government model has recently begun to notice anomalies in its accounting and product records. It has undertaken an initial check of system log files, and there are a number of suspicious entries and IP addresses with a large amount of data being sent outside the company firewall. The company has also recently received a number of customer complaints saying that there is often a strange message displayed during order processing, and they are redirected to a payment page that does not look legitimate.

You have employed a digital forensic investigator to determine whether any malicious activity has taken place and to ensure that there is no malware within the systems. Your task is to investigate the cause of the problems, and if necessary, to prepare a case against the perpetrators.

The company uses Windows Server 2008 for its servers. Patches are applied by the IT support team on a monthly basis, but the team has noticed that a number of machines do not seem to have been patched.

In a report, please address the following:

How you would apply rules and policies in this scenario

The legal aspects with regard to admissibility of digital evidence

Privacy issues when seizing personal mobile devices

Citation guidelines for IEEE: https://ieee-dataport.org/sites/default/files/analysis/27/IEEE%20Citation%20Guidelines.pdf

A grading rubric can be found within the Evaluation Rubrics

Grading criteria

Rules and policies

You thoroughly and effectively explain how you would apply rules and policies in the given scenario.

You explain how you would apply rules and policies in the given scenario.

You unclearly and/or incompletely explain how you would apply rules and policies in the given scenario.

You carelessly and ineffectively explain how you would apply rules and policies in the given scenario.

null

Legal aspects

You thoroughly and effectively explain the possible legal aspects in this scenario with regard to admissibility of digital evidence.

You explain the possible legal aspects in this scenario with regard to admissibility of digital evidence.

You unclearly and/or incompletely explain the possible legal aspects in this scenario with regard to admissibility of digital evidence.

You carelessly and ineffectively explain the possible legal aspects in this scenario with regard to admissibility of digital evidence.

null

Privacy issues

You thoroughly and effectively explain the privacy issues when seizing personal mobile devices.

You explain the privacy issues when seizing personal mobile devices.

You unclearly and/or incompletely explain the privacy issues when seizing personal mobile devices.

You carelessly and ineffectively explain the privacy issues when seizing personal mobile devices.

null

Organization

You arrange ideas clearly and logically to support the purpose or argument; ideas flow smoothly and are effectively linked; reader has no trouble following the line of reasoning, which is convincing; you follow the formatting guidelines for the activity.

You arrange ideas competently to support the purpose or argument; links between ideas are generally clear; reader can follow the line of reasoning; you follow the formatting guidelines for the activity.

You arrange ideas unclearly, and some ideas may be poorly developed; reader is somewhat confused about the line of reasoning; you incompletely follow the formatting guidelines for the activity.

You arrange ideas illogically; ideas frequently fail to make sense together; reader cannot identify a line of reasoning and may become frustrated or lose interest; you do not follow the formatting guidelines for the activity.

null

Mechanics

You write in complete, well-constructed sentences with faultless grammar, word choice, punctuation, and spelling; writing is sharp, coherent, and demonstrates sophisticated clarity.

You write in complete sentences with mostly correct grammar, word choice, punctuation, and spelling; minor errors may exist but do not compromise meaning.

You write in unclear sentences with significant errors in grammar, word choice, punctuation, and spelling that may compromise meaning.

You write in incomplete, incomprehensible sentences filled with serious errors in grammar, word choice, punctuation, or spelling.

null

Documentation

You exceed stated requirements in terms of references or meet requirements but treat the references with exceptional skill; you attribute sources consistently using IEEE, ACM, or APA style.

You meet stated requirements in terms of references and use them capably; you attribute sources using IEEE, ACM, or APA style.

You meet stated requirements in terms of references and use them tenuously; your use of IEEE, ACM, or APA style has numerous small errors or you include elements of different styles.

You do not meet stated requirements in terms of references and treat them inadequately; you do not use IEEE, ACM, or APA style or you use one of those styles in an incomplete or incompetent manner.

null