April 15, 2008
In this final session in our series, Ian Dowdeswell, Q-CERT's Incident Manager, wraps up the investigation. Ian gathers the strands of evidence that were analyzed in the previous sessions. He presents examples we might expect to find in this type of investigation and explains some possible conclusions we might make. Finally, the trail of cyberforensic evidence points towards our suspect. Our findings are handed over to law enforcement personnel, who will link all the evidence to make a case against our suspect...but who is it?