SANS Digital Forensics and Incident Response Blog

Digital Forensics Case Leads: Android Malware,Chrome Browser Bugs and IT guy shoots Daughters Laptop.

This week in Case Leads Bug fixes for Chrome Browser and MD5Deep. A few new tools from JadSoft and Black Bag Technologies. Some great reads about IE RecoveryStore and Travel Log, Becoming a CSI without the blood and a 2012 Security report. Android malware strikes phones in China and an IT guy shoots his daughters laptop.

If you have an item you'd like to contribute to Digital Forensics Case Leads, please send it to


  • Jesse Kornblum posted critical bug fixes for MD5Deep, you can read about it here, and download the fixes here.
  • JADsoftware Inc. announces the availability of IEF Triage, a new product for its computer forensics solution, Internet Evidence Finder (IEF).
  • BlackBag Technologies, Inc., developer of Mac OS X, iPhone, and iPad forensic software and training solutions, announces the release of MacQuisition 2012.R1, a 3-in-1 live data acquisition, targeted data collection, and forensic imaging tool.

Good Reads:


  • New Android malware bags millions in revenues. The total number of infected Android devices connected to the botnet is estimated at hundreds of thousands, with many infected devices able to generate revenue on any given day. Revenue is generated through premium text messaging, phone, and video services, but the malware is limited to the networks of China's two largest mobile carriers.
  • Google fixes 20 flaws with latest version of Chrome browser. Google is also handing out bounties to bug hunters for helping to find and plug Chrome flaws.
  • In cyber era, militaries scramble for new skills. Militaries around the world are racing to recruit computer specialist, while money is plentiful for new forces of "cyber warriors," attracting often individualistic technical specialists and hackers into military hierarchies is another matter.


Call For Papers:


Digital Forensics Case Leads is a (mostly) weekly publication of the week's news and events relating to digital forensics. If you have an item you'd like to share, please send it to

Digital Forensics Case Leads for 20120210 was compiled by Mark McKinnon GCFA, CCE is Principal of RedWolf Computer Forensics where he has written many tools that are used throughout the Computer Forensic Community. You can follow Mark on twitter @markmckinnon.