Police Are Mishandling Digital Forensic Evidence

Uploaded on 2018-06-04 in NEWS-Cybersecurity News, GOVERNMENT-Law Enforcement, FREE TO VIEW

Police officers are trampling over vital forensic evidence, are under-trained, and often do not know what they are looking for, MPs investigating digital disclosure problems have been told.

Giving evidence to a justice select committee inquiry into failures to hand over material that have led to multiple court cases collapsing, leading digital forensic experts warned of funding shortfalls and inadequate skills.

“One of the problems is the sheer amount of digital evidence the police have to look at,” said Dr Jan Collie, of Discovery Forensics, who specialises in defence work.

“You have to consider the cloud [for digital storage], too. There’s evidence everywhere. With cuts in funding, officers don’t have the time to do all that.

“When I first started, the police had their own digital forensic units and knew what they were about. Now you are getting very sketchy evidence. People give me screenshots of pictures of a phone. I need to see [a copy of the] original, be able to repeat and verify tests.”

Police forces do not have sufficient resources, she added: “When they have the people, they haven’t got the money to send them on courses.” Officers do not always understand the context of where digital information is found – whether it has been inadvertently hoovered up through a browser or purposefully searched for, Collie said.

“A lot of police stations have mobile phone extraction kiosks where they put a mobile phone in and press a couple of buttons, but it’s not enough analysis. A police officer who has been trained for about a day can use the equipment. He can click it in and handle the buttons, but often they spoil the evidence by mishandling. It’s like they have trodden on the evidence. Interpretation of data is being carried out by ordinary officers – they are not trained to do it.”

Many recent cases that collapsed involved rape charges where crucial text message exchanges were either missed by investigators or only released belatedly. 

Prof. Peter Sommer, an expert witness in digital forensics cases, told MPs: “These kiosks are designed for preliminary inquiry, to see if it is worth pursuing. They don’t really produce reliable evidence. 

“It’s cherry picking. The posh phrase is confirmation bias. It’s got worse because the volumes you have to deal with have got much greater. These tools have deskilled [people]. Unless you know what you are looking for, the results can be very misleading.”

He also pointed out that underfunding of the criminal justice system was leading to many digital forensic experts to quit. “People are ceasing to do it because it’s uncompetitive,” he said. “In criminal work, it’s £72 an hour. If you work for civil case clients, it’s £250 an hour.”

Dr Gillian Tully, who is the official forensic science regulator, told the committee: “Police digital forensic units are quite good at extracting information and making copies. They then pass copies to the general police, and investigators don’t necessarily have the tools to search the information or make good use of it.” 

Tully has called for additional funding for forensic science, adding: “When it comes to legal aid funding, it’s largely awarded to the business with the lowest quote – which is not helpful for quality.” 

Sommer suggested one way to solve disclosure failures would be for all the digital material to be handed over to the defence. But Rebecca Hitchen of charity Rape Crisis, told the committee that disclosure of highly personal evidence often leads to victims refusing to testify, particularly in sexual assault cases.

“When a complainant learns of the level of intrusion into their lives, they often decide it’s not in their best interest to continue,” she said.

“There’s incredibly high levels of withdrawal [from police investigations around the issue of personal history, for example if someone had an abortion at an earlier stage and the police can’t give an assurance that it won’t be revealed. The sensation of sex crime survivors is often that they are being put on trial.”

College of Policing:      Guardian:         Met Police

You Might Also Read: 

UK Police Give Cybercrime Warning:

Terrorists Deploy New Techniques To Counter Digital Forensics:

« Terrorists Deploy New Techniques To Counter Digital Forensics
Bank of England CIO Sets A Cybersecurity Challenge »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Go Cyber

Training that transforms behaviours

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

The PC Support Group

The PC Support Group

A partnership with The PC Support Group delivers improved productivity, reduced costs and protects your business through exceptional IT, telecoms and cybersecurity services.

Practice Labs

Practice Labs

Practice Labs is an IT competency hub, where live-lab environments give access to real equipment for hands-on practice of essential cybersecurity skills.

Authentic8

Authentic8

Authentic8 transforms how organizations secure and control the use of the web with Silo, its patented cloud browser.

Directory of Cyber Security Suppliers

Directory of Cyber Security Suppliers

Our Supplier Directory lists 7,000+ specialist cyber security service providers in 128 countries worldwide. IS YOUR ORGANISATION LISTED?

Alvacomm

Alvacomm

Alvacomm offers holistic VIP cybersecurity services, providing comprehensive protection against cyber threats. Our solutions include risk assessment, threat detection, incident response.

ComSec LLC

ComSec LLC

ComSec perform threat assessments to identify vulnerabilities and help protect businesses against corporate espionage via electronic eavesdropping.

CEPS

CEPS

CEPS is a leading think tank and forum for debate on EU affairs, ranking among the top think tanks in Europe. Topic areas include Innovation, Digital economy and Cyber-security.

Venable

Venable

Venable is an American Lawyer 100 law firm with nine offices across the USA, Practice areas include Cybersecurity.

First Response

First Response

First Response is a Cyber Incident Response and Digital Forensic Investigation company.

Garrison Technology

Garrison Technology

Garrison SAVI® is a unique technology for secure remote browsing that can dramatically change the risk profile for enterprise cyber security.

Texas A&M Cybersecurity Center

Texas A&M Cybersecurity Center

Texas A&M Cybersecurity Center is dedicated to combating adversaries who desire to harm our citizens, our government, and our industry through cyber-attacks.

Bionic

Bionic

Bionic is an agentless way to get control over your increasingly complex applications so you can manage, operate, and secure them faster and more efficiently.

Cyber Readiness Institute (CRI)

Cyber Readiness Institute (CRI)

At the Cyber Readiness Institute, our mission is simple: empower small and medium-sized enterprises with free tools and resources to help them become more secure and resilient.

Sentrium Security

Sentrium Security

Sentrium is committed to helping organisations protect their technology, information and people. Our range of bespoke services provide solutions to tackle a broad range of cyber security challenges.

North East Business Resilience Centre (NEBRC)

North East Business Resilience Centre (NEBRC)

The North East Business Resilience Centre is a non-profit organisation here to support businesses in the North East of England in protecting themselves from cyber crimes and fraud.

Sekur Private Data

Sekur Private Data

Sekur Private Data Ltd. is a Cybersecurity and Internet privacy provider of Swiss hosted solutions for secure communications and secure data management.

Jericho Security

Jericho Security

Jericho Security is on a mission to defend the world from the new threats of generative AI cyber attacks.

Barclay Simpson

Barclay Simpson

Barclay Simpson is proud to have a long history of delivering cyber security, technology and governance recruitment services.

CloudGuard

CloudGuard

CloudGuard is an AI-driven XDR platform that helps organisations to proactively detect and automatically remediate threats in real-time.

Orca Tech

Orca Tech

Orca Tech brings together a portfolio of complimentary vendor in the IT security industry to help provide a complete solution to meet the requirements of our Partners across all sectors.

JustunSecure

JustunSecure

JustunSecure is dedicated to promoting information technology and cybersecurity in Africa.