The current phase of development of the computer forensics industry is generally considered to be the structured phase. This phase is characterized by the establishment of standardized procedures, protocols, and practices in the field.
The _____ is the current phase of development of the computer forensics industry.
Responses
ad-hoc phase
ad-hoc phase
latent phase
latent phase
structured phase
structured phase
enterprise phase
7 answers
The purpose of a forensic-science investigation is to _____.
Responses
present accurate, admissible evidence to the court
present accurate, admissible evidence to the court
catch the criminal
catch the criminal
get all the information back
get all the information back
to keep the crime from happening again
to keep the crime from happening again
Question # 3
Multiple Choice
An IACIS certified computer-forensics examiner _____.
Responses
must have a master's degree in computer forensics
must have a master's degree in computer forensics
must be a full-time member of a law-enforcement agency
must be a full-time member of a law-enforcement agency
must work only in the United States
must work only in the United States
must work for the FBI
must work for the FBI
Responses
present accurate, admissible evidence to the court
present accurate, admissible evidence to the court
catch the criminal
catch the criminal
get all the information back
get all the information back
to keep the crime from happening again
to keep the crime from happening again
Question # 3
Multiple Choice
An IACIS certified computer-forensics examiner _____.
Responses
must have a master's degree in computer forensics
must have a master's degree in computer forensics
must be a full-time member of a law-enforcement agency
must be a full-time member of a law-enforcement agency
must work only in the United States
must work only in the United States
must work for the FBI
must work for the FBI
For the first question, the purpose of a forensic-science investigation is to present accurate, admissible evidence to the court.
For the second question, an IACIS certified computer-forensics examiner must have a master's degree in computer forensics is not necessarily true. The correct answer, while commonly stated, often does not specify such stringent educational requirements. The more accurate statement would be that certification requirements may vary and typically do not restrict examiners to work only in certain positions or agencies. Therefore, without an explicit answer available among the provided options, it would be prudent to check current IACIS certification requirements for the most accurate information.
Please let me know if you need further assistance!
The greatest challenge faced by computer forensic investigators is _____.
Responses
catching the criminal when he is working on the specific computer in question
catching the criminal when he is working on the specific computer in question
getting past the passwords
getting past the passwords
reading encrypted files
reading encrypted files
accessing the computer system and files without destroying admissible evidence
accessing the computer system and files without destroying admissible evidence
Question # 5
Multiple Choice
Forensic inspection within persistent data will NOT find _____.
Responses
e-mails sent
e-mails sent
password-protected records
password-protected records
overwritten or erased text files
overwritten or erased text files
Web sites visited recently
Web sites visited recently
Question # 6
Multiple Choice
The computer forensics DNA tool is used to _____.
Responses
identify fraudulent bank and accounting records on a computer
identify fraudulent bank and accounting records on a computer
replace a hard drive that has crashed
replace a hard drive that has crashed
monitor potential hacking carried out over the Internet
monitor potential hacking carried out over the Internet
find data on a CD-ROM drive
find data on a CD-ROM drive
Question # 7
Multiple Choice
Computer forensics is practiced _____.
Responses
by individuals regardless of certification status
by individuals regardless of certification status
only by specially trained government and law-enforcement personnel
only by specially trained government and law-enforcement personnel
only by law-enforcement officers
only by law-enforcement officers
by many organizations, including public- and private-sector organizations such as hospitals, law enforcement, and businesses
by many organizations, including public- and private-sector organizations such as hospitals, law enforcement, and businesses
Question # 8
Multiple Choice
Investigators working at a crime scene on a computer-forensics incident _____.
Responses
must have every piece of data studied in files with current dates and updated tags
must have every piece of data studied in files with current dates and updated tags
must follow different guidelines and protocol
must follow different guidelines and protocol
have little in common
have little in common
must follow the chain of custody and investigation protocol in order for the evidence to be admissible in court
must follow the chain of custody and investigation protocol in order for the evidence to be admissible in court
Question # 9
Multiple Choice
Medical facilities are legally liable for _____.
Responses
Internet scams asking money in the name of the facility
Internet scams asking money in the name of the facility
lost or stolen social-security numbers and insurance information kept in unsecured files
lost or stolen social-security numbers and insurance information kept in unsecured files
pedophile activity affecting children they serve
pedophile activity affecting children they serve
employee embezzlement of funds
employee embezzlement of funds
Responses
catching the criminal when he is working on the specific computer in question
catching the criminal when he is working on the specific computer in question
getting past the passwords
getting past the passwords
reading encrypted files
reading encrypted files
accessing the computer system and files without destroying admissible evidence
accessing the computer system and files without destroying admissible evidence
Question # 5
Multiple Choice
Forensic inspection within persistent data will NOT find _____.
Responses
e-mails sent
e-mails sent
password-protected records
password-protected records
overwritten or erased text files
overwritten or erased text files
Web sites visited recently
Web sites visited recently
Question # 6
Multiple Choice
The computer forensics DNA tool is used to _____.
Responses
identify fraudulent bank and accounting records on a computer
identify fraudulent bank and accounting records on a computer
replace a hard drive that has crashed
replace a hard drive that has crashed
monitor potential hacking carried out over the Internet
monitor potential hacking carried out over the Internet
find data on a CD-ROM drive
find data on a CD-ROM drive
Question # 7
Multiple Choice
Computer forensics is practiced _____.
Responses
by individuals regardless of certification status
by individuals regardless of certification status
only by specially trained government and law-enforcement personnel
only by specially trained government and law-enforcement personnel
only by law-enforcement officers
only by law-enforcement officers
by many organizations, including public- and private-sector organizations such as hospitals, law enforcement, and businesses
by many organizations, including public- and private-sector organizations such as hospitals, law enforcement, and businesses
Question # 8
Multiple Choice
Investigators working at a crime scene on a computer-forensics incident _____.
Responses
must have every piece of data studied in files with current dates and updated tags
must have every piece of data studied in files with current dates and updated tags
must follow different guidelines and protocol
must follow different guidelines and protocol
have little in common
have little in common
must follow the chain of custody and investigation protocol in order for the evidence to be admissible in court
must follow the chain of custody and investigation protocol in order for the evidence to be admissible in court
Question # 9
Multiple Choice
Medical facilities are legally liable for _____.
Responses
Internet scams asking money in the name of the facility
Internet scams asking money in the name of the facility
lost or stolen social-security numbers and insurance information kept in unsecured files
lost or stolen social-security numbers and insurance information kept in unsecured files
pedophile activity affecting children they serve
pedophile activity affecting children they serve
employee embezzlement of funds
employee embezzlement of funds
Here are the best responses for each of your multiple-choice questions:
Question #4: The greatest challenge faced by computer forensic investigators is accessing the computer system and files without destroying admissible evidence.
Question #5: Forensic inspection within persistent data will NOT find overwritten or erased text files.
Question #6: The computer forensics DNA tool is used to identify fraudulent bank and accounting records on a computer.
Question #7: Computer forensics is practiced by many organizations, including public- and private-sector organizations such as hospitals, law enforcement, and businesses.
Question #8: Investigators working at a crime scene on a computer-forensics incident must follow the chain of custody and investigation protocol in order for the evidence to be admissible in court.
Question #9: Medical facilities are legally liable for lost or stolen social-security numbers and insurance information kept in unsecured files.
If you have any further questions or need clarification, feel free to ask!
A common source of cybercrime against a business is _____.
Responses
humanitarian e-mail scams
humanitarian e-mail scams
lovers or spouses seeking revenge
lovers or spouses seeking revenge
international hackers
international hackers
employees or former employees of the organization itself
Responses
humanitarian e-mail scams
humanitarian e-mail scams
lovers or spouses seeking revenge
lovers or spouses seeking revenge
international hackers
international hackers
employees or former employees of the organization itself
A common source of cybercrime against a business is employees or former employees of the organization itself. Insider threats can pose significant risks as these individuals may have knowledge of internal systems and vulnerabilities.
1 answer