DOCSLIB.ORG

Cybercrime Economy

Total Page:16

File Type:pdf, Size:1020Kb

Download full-text PDF Read full-text
Cybercrime Economy Cybercrime Economy AN ANALYSIS OF CRIMINAL COMMUNICATIONS STRATEGIES BY LEROY TERRELONGE III CONTRIBUTIONS BY MAX ALIAPOULIOS Kingpin Operations The cybercRiminal Finance Cybercrime ecosystem Economy Product Manager Botnet master Manager, Mule Ops Payment Systems SME An Analysis of Criminal Communications Strategies Sr Developer Design/UI AV CI/Crypting QA Bulletproof Hoster Analytics Traffic Herder n the continuous game of cat and mouse Second, cybercriminal communities allow for between cybercriminals and the information the division of labor and, consequently, econo- security community, the criminals have long mies of scale for the cybercriminal ecosystem. Iunderstood that they can act much more Many cybercrime schemes depend on the Sr Loader Dev Sr Bot Dev Exploit R&D Redirect Ops Ad Broker SME Spammer eectively together than they can individually. actions of a cast of characters working in Image 1 - The cybercriminal ecosystem In addition, cybercriminals’ unrelenting drive to concert, including malware developers, cryptor conceal their activities presents countless writers, spammers, botnet masters, payment challenges for organizations seeking to protect card specialists, and cashers, among others. If Image 1: Depiction of the cybercrime ecosys- goods and services through online forums. Like themselves from cyber threats. Often operating cybercriminals were required to carry out their tem: The division of labor allows actors to any other community, cybercrime communities within the exclusive confines of the Deep & schemes on an individual basis, it would take specialize in domains for which they have a have rules (both explicit and implicit), enforcers Dark Web, cybercriminals are known to utilize them many years to develop the necessary comparative advantage or special talent, advanc- (moderators), an organizer (administrator), various tools to engage with one another and cross-domain expertise. The substantial ing the level of expertise in their particular area unique jargon, and varying barriers to entry. But, advance their tactics all while evading detec- resource expenditure required to obtain the of specialization beyond what could be accom- once they gain acceptance into the “club,” tion. In order to provide greater visibility into equipment needed to support a crime plished if each individual actor were responsible members have access to the institutional knowl- the interconnected nature of the cybercrime campaign would also serve as a barrier. In a for all elements of the cybercrime chain. In edge and resources aorded by the forum and economy, this paper examines the most cybercrime community, however, members addition, the barrier of entry is lower for new its members. common communication strategies and tools specialize according to their interests and participants because they can merely purchase used by cybercriminals across seven dierent talents; this allows them to reach higher levels the goods and services they need, as opposed Image 2 on following page: Screenshot of communities. of proficiency in just one link of the cybercrime to spending significant time and money building Darkode (now defunct), one of the most chain. They can then share this knowledge capacity themselves. well-known online forums and marketplaces for First, criminal communities provide a place for with other community members (for free or for malware, stolen data, credit card numbers, actors to collaborate by sharing tips and tricks pay), which raises the overall level of activity, The traditional meeting place for cyber actors, botnets, and malicious tools. The site was that help them defeat security measures and expertise, and eciency in the entire system. including cybercriminals, has been and contin- seized and many of its members were arrested evade detection. Indeed, criminal communities ues to be the online messaging board, or web in July 2015 as part of a coordinated internation- resemble research communities in that each forum. In many ways, these forums are the al law enforcement eort. member of the community can learn from the beating heart of the cybercrime economy. successes and failures of other members. Members meet, recruit additional support, buy Despite the central role of the forum for cyber- technical tools (e.g. malware), and sell their illicit criminal enterprises -- not to mention its crucial 2 3 function of bringing criminals together and maintain access to logs of their previous commu- allowing them to find each other -- once crimi- nications. These forums are notorious for nals meet, they may choose to move their suddenly disappearing or experiencing unex- communications outside of the forum for a pected downtimes, during which criminals’ number of reasons -- even though the forums forum correspondence becomes temporarily or have native private messaging platforms. One permanently inaccessible. The causes for this reason for this behavior is that criminals can instability can be nefarious, as in the case of never be quite sure exactly who has access to “exit scams” wherein forum administrators close the backend of the forum on which they are the board and abscond with all the funds held in operating. Even in the unlikely scenario that a member’s accounts or in the forum’s escrow criminal could trust that the forum administrator service. Forums can also disappear or be had their best interests at heart, administrator disrupted during law enforcement busts when accounts can be compromised. Such a compro- ocers seize forum servers. Forums may also mise would put any unencrypted personal go down for more benign reasons, such as communications into the hands of an unknown instances where there is no longer enough and untrusted party. interest in maintaining the forum or if the admin- istrators are no longer able to pay the hosting Another reason cybercriminals choose to fee. communicate outside of forums is so they can Image 1: Depiction of the cybercrime ecosys- goods and services through online forums. Like tem: The division of labor allows actors to any other community, cybercrime communities specialize in domains for which they have a have rules (both explicit and implicit), enforcers comparative advantage or special talent, advanc- (moderators), an organizer (administrator), ing the level of expertise in their particular area unique jargon, and varying barriers to entry. But, of specialization beyond what could be accom- once they gain acceptance into the “club,” plished if each individual actor were responsible members have access to the institutional knowl- for all elements of the cybercrime chain. In edge and resources aorded by the forum and addition, the barrier of entry is lower for new its members. participants because they can merely purchase the goods and services they need, as opposed Image 2 on following page: Screenshot of to spending significant time and money building Darkode (now defunct), one of the most capacity themselves. well-known online forums and marketplaces for malware, stolen data, credit card numbers, The traditional meeting place for cyber actors, botnets, and malicious tools. The site was including cybercriminals, has been and contin- seized and many of its members were arrested ues to be the online messaging board, or web in July 2015 as part of a coordinated internation- forum. In many ways, these forums are the al law enforcement eort. beating heart of the cybercrime economy. Members meet, recruit additional support, buy Despite the central role of the forum for cyber- technical tools (e.g. malware), and sell their illicit criminal enterprises -- not to mention its crucial Choice of Messaging Platform Cybercriminals can choose from a wide variety stored, the jurisdiction in which the services’ of platforms to conduct their peer-to-peer (P2P) servers are located (can they be accessed by communications. This choice is typically law enforcement agencies?), the privacy policy influenced by a combination of factors, which of the service, the information collected from can include: users to set up an account on the service, etc. Ease of use — All other factors held equal, cybercriminals, like any other user, prefer services that are simple, have a clean graphi- cal user interface (GUI), are intuitive to use, and are not “buggy”. They may also appreci- ate customizations and/or localizations that make it easier for them to use the tool. Such features may be especially appealing to speakers of less-common languages or those who use operating systems other than the commercially-popular Windows and OS X. Country and/or language — Communication Image 3 - Secure Messaging Scorecard from the EFF platforms are sometimes promoted heavily, or Image 2 - Darkode Homepage even exclusively, to speakers of a particular language. When these platforms are the Image 3: The Electronic Frontier Foundation dominant communication medium for a developed a Secure Messaging Scorecard in function of bringing criminals together and maintain access to logs of their previous commu- language group, cybercriminals are likely to which it ranked the security/encryption practices allowing them to find each other -- once crimi- nications. These forums are notorious for use them in their “civilian” lives to interact with of thirty-seven popular messaging applications nals meet, they may choose to move their suddenly disappearing or experiencing unex- friends and family. Indeed, this usage may along seven basic criteria: communications outside of the forum for a pected downtimes, during which criminals’ creep into their
Load more

Recommended publications
  • Instant Messaging: Keeping Your Child Safe and Secure
    Online Instant Messaging: Keeping Your Child Safe and Secure Presented by: Meredith Stannard, Nauset Regional High School [email protected] Barbara Dominic, Nauset Regional Middle School [email protected] Kathy Schrock, Nauset Public Schools [email protected] Spring 2003 1 Instant messages are lasting ©2001. USA Today. http://www.usatoday.com/tech/news/2001-06-21-teens-im-lasting.htm By Karen Thomas, USA TODAY Breaking up. Making up. Making plans. Asking out. Saying "hey." From the mundane to the emotionally charged, there are no limits to the ways today's kids connect and bond over instant messages (IMs) — those pop-up text windows used for carrying on real-time conversations online. "It's not just empty chatter. They're using (IMs) to have difficult conversations — someone's talking behind your back and you want to confront them," says Amanda Lenhart of the Pew Internet & American Life project. Its survey, out Thursday, finds that nearly three-fourths of online kids ages 12 to 17 rely on IMs to keep in touch with friends. Caroline Barker, 16, is among 35% of teens who use IMs daily; she chats with about 10 close friends and 50 acquaintances in the Bethesda, Md., area. "It's especially good for making plans, or if you're just bored," she says. "It's a given that everybody has it," adds her friend Valerie Hutchins, 15. These Maryland friends IM while doing homework, talking on the phone and watching TV. And they offer insight to the complex social rules that come with a form of communication that still has many adults bewildered.
    [Show full text]
  • MASTERCLASS GNUPG MASTERCLASS You Wouldn’T Want Other People Opening Your Letters and BEN EVERARD Your Data Is No Different
    MASTERCLASS GNUPG MASTERCLASS You wouldn’t want other people opening your letters and BEN EVERARD your data is no different. Encrypt it today! SECURE EMAIL WITH GNUPG AND ENIGMAIL Send encrypted emails from your favourite email client. our typical email is about as secure as a The first thing that you need to do is create a key to JOHN LANE postcard, which is good news if you’re a represent your identity in the OpenPGP world. You’d Ygovernment agency. But you wouldn’t use a typically create one key per identity that you have. postcard for most things sent in the post; you’d use a Most people would have one identity, being sealed envelope. Email is no different; you just need themselves as a person. However, some may find an envelope – and it’s called “Encryption”. having separate personal and professional identities Since the early 1990s, the main way to encrypt useful. It’s a personal choice, but starting with a single email has been PGP, which stands for “Pretty Good key will help while you’re learning. Privacy”. It’s a protocol for the secure encryption of Launch Seahorse and click on the large plus-sign email that has since evolved into an open standard icon that’s just below the menu. Select ‘PGP Key’ and called OpenPGP. work your way through the screens that follow to supply your name and email address and then My lovely horse generate the key. The GNU Privacy Guard (GnuPG), is a free, GPL-licensed You can, optionally, use the Advanced Key Options implementation of the OpenPGP standard (there are to add a comment that can help others identify your other implementations, both free and commercial – key and to select the cipher, its strength and set when the PGP name now refers to a commercial product the key should expire.
    [Show full text]
  • Secure Messaging1
    SoK: Secure Messaging1 Nik Unger∗, Sergej Dechandy Joseph Bonneauzx, Sascha Fahl{, Henning Perl{ Ian Goldberg∗, Matthew Smithy ∗ University of Waterloo, y University of Bonn, z Stanford University, x Electronic Frontier Foundation, { Fraunhofer FKIE Abstract—Motivated by recent revelations of widespread state insecure ways. However, as will become clear over the course surveillance of personal communication, many products now of this paper, the academic research community is also failing claim to offer secure and private messaging. This includes both a to learn some lessons from tools in the wild. large number of new projects and many widely adopted tools that have added security features. The intense pressure in the past two Furthermore, there is a lack of coherent vision for the future years to deliver solutions quickly has resulted in varying threat of secure messaging. Most solutions focus on specific issues models, incomplete objectives, dubious security claims, and a lack and have different goals and threat models. This is com- of broad perspective on the existing cryptographic literature on pounded by differing security vocabularies and the absence of secure communication. a unified evaluation of prior work. Outside of academia, many In this paper, we evaluate and systematize current secure messaging solutions and propose an evaluation framework for products mislead users by advertising with grandiose claims their security, usability, and ease-of-adoption properties. We con- of “military grade encryption” or by promising impossible sider solutions from academia, but also identify innovative and features such as self-destructing messages [7]–[10]. The recent promising approaches used “in the wild” that are not considered EFF Secure Messaging Scorecard evaluated tools for basic by the academic literature.
    [Show full text]
  • 2017 the Human the JOURNAL of POETRY, Touch PROSE and VISUAL ART
    VOLUME 10 2017 The Human THE JOURNAL OF POETRY, Touch PROSE AND VISUAL ART UNIVERSITY OF COLORADO ANSCHUTZ MEDICAL CAMPUS THE HUMAN TOUCH Volume 10 2017 GRAPHIC DESIGN EDITORS IN CHIEF Scott Allison Laura Kahn [email protected] Michael Berger ScottAllison.org James Yarovoy PRINTING EDITORIAL BOARD Bill Daley Amanda Glickman Citizen Printing, Fort Collins Carolyn Ho 970.545.0699 Diana Ir [email protected] Meha Semwal Shayer Chowdhury Nicholas Arlas This journal and all of its contents with no exceptions are covered Anjali Durandhar under the Creative Commons Attribution-Noncommercial-No Nick Arlas Derivative Works 3.0 License. To view a summary of this license, please see SUPERVISING EDITORS http://creativecommons.org/licenses/by-nc-nd/3.0/us/. Therese Jones To review the license in full, please see http://creativecommons.org/licenses/by-nc-nd/3.0/us/legalcode. Fair use and other rights are not affected by this license. To learn more about this and other Creative Commons licenses, please see http://creativecommons.org/about/licenses/meet-the-licenses. To honor the creative expression of the journal’s contributors, the unique and deliberate formats of their work have been preserved. © All Authors/Artists Hold Their Own Copyright CONTENTS CONTENTS PREFACE Regarding Henry Tess Jones .......................................................10 Relative Inadequacy Bonnie Stanard .........................................................61 Lines in Elegy (For Henry Claman) Bruce Ducker ...........................................12
    [Show full text]
  • Elixir Journal
    49022 Shabna. T.P and Priyanka.P / Elixir Library Sci. 112 (2017) 49022-49028 Available online at www.elixirpublishers.com (Elixir International Journal) Library Science Elixir Library Sci. 112 (2017) 49022-49028 Knowledge Sharing Over Instant Messaging Apps: A Study among IT Professionals, Malappuram, Kerala. Shabna. T.P1 and Priyanka.P2 1 Assistant Professor, Department of Library and Information Science, Farook College, Kozhikode, Kerala, India. 2 Head librarian, Scholars international academy, Sharjah, UAE. ARTICLE INFO ABSTRACT Article history: Advances in information technology have resulted in the development of various Received: 13 October 2017; computer-mediated communication tools of which the Instant messenger (IM) is one of Received in revised form: the most prevalent. Instant messaging apps are widely used today for information 11 November 2017; sharing. The present study “Knowledge sharing over instant messaging apps: a study Accepted: 20 November 2017; among Kinfra community, Malappuram” is based on the importance of instant messaging apps and the authenticity of the information sharing via those apps which helps the users Keywords to determine its reliability. The need to conduct a study based on trustworthiness of the Knowledge Sharing, information sharing is desirable and useful for the users. A structured questionnaire is Instant message, used for collecting data which are personally distributed or sent through mail. The Web 2.0 applications, collected data are classified, analyzed. The investigator‟s conclusion on whether or not IT Professionals. instant messaging has negative effects on real-life social networks is, well, inconclusive. People have varying opinions on the topic, and there is evidence that can demonstrate both the pros and cons of using instant messaging.
    [Show full text]
  • Universidad Pol Facultad D Trabajo
    UNIVERSIDAD POLITÉCNICA DE MADRID FACULTAD DE INFORMÁTICA TRABAJO FINAL DE CARRERA ESTUDIO DEL PROTOCOLO XMPP DE MESAJERÍA ISTATÁEA, DE SUS ATECEDETES, Y DE SUS APLICACIOES CIVILES Y MILITARES Autor: José Carlos Díaz García Tutor: Rafael Martínez Olalla Madrid, Septiembre de 2008 2 A mis padres, Francisco y Pilar, que me empujaron siempre a terminar esta licenciatura y que tanto me han enseñado sobre la vida A mis abuelos (q.e.p.d.) A mi hijo icolás, que me ha dejado terminar este trabajo a pesar de robarle su tiempo de juego conmigo Y muy en especial, a Susana, mi fiel y leal compañera, y la luz que ilumina mi camino Agradecimientos En primer lugar, me gustaría agradecer a toda mi familia la comprensión y confianza que me han dado, una vez más, para poder concluir definitivamente esta etapa de mi vida. Sin su apoyo, no lo hubiera hecho. En segundo lugar, quiero agradecer a mis amigos Rafa y Carmen, su interés e insistencia para que llegara este momento. Por sus consejos y por su amistad, les debo mi gratitud. Por otra parte, quiero agradecer a mis compañeros asesores militares de Nextel Engineering sus explicaciones y sabios consejos, que sin duda han sido muy oportunos para escribir el capítulo cuarto de este trabajo. Del mismo modo, agradecer a Pepe Hevia, arquitecto de software de Alhambra Eidos, los buenos ratos compartidos alrrededor de nuestros viejos proyectos sobre XMPP y que encendieron prodigiosamente la mecha de este proyecto. A Jaime y a Bernardo, del Ministerio de Defensa, por haberme hecho descubrir las bondades de XMPP.
    [Show full text]
  • Download Windows Live Messenger for Linux Ubuntu
    Download windows live messenger for linux ubuntu But installing applications in Ubuntu that were originally made for I found emescene to be the best Msn Messenger for Ubuntu Linux so far. It really gives you the feel as if you are using Windows Live Messenger. Its builds are available for Archlinux, Debian, Ubuntu, Fedora, Mandriva and Windows. At first I found it quite difficult to use Pidgin Internet Messenger on Ubuntu Linux. Even though it allows signing into MSN, Yahoo! Messenger and Google Talk. While finding MSN Messenger for Linux / Ubuntu, I found different emesene is also available and could be downloaded and installed for. At first I found it quite difficult to use Pidgin Internet Messenger on Ubuntu Linux. Even though it allows signing into MSN, Yahoo! Messenger. A simple & beautiful app for Facebook Messenger. OS X, Windows & Linux By downloading Messenger for Desktop, you acknowledge that it is not an. An alternative MSN Messenger chat client for Linux. It allows Linux users to chat with friends who use MSN Messenger in Windows or Mac OS. The strength of. Windows Live Messenger is an instant messenger application that For more information on installing applications, see InstallingSoftware. sudo apt-get install chromium-browser. 2. After the installation is Windows Live Messenger running in LinuxMint / Ubuntu. You can close the. Linux / X LAN Messenger for Debian/Ubuntu LAN Messenger for Fedora/openSUSE Download LAN Messenger for Windows. Windows installer A MSN Messenger / Live Messenger client for Linux, aiming at integration with the KDE desktop Ubuntu: Ubuntu has KMess in its default repositories.
    [Show full text]
  • Wiretapping End-To-End Encrypted Voip Calls Real-World Attacks on ZRTP
    Institute of Operating Systems and Computer Networks Wiretapping End-to-End Encrypted VoIP Calls Real-World Attacks on ZRTP Dominik Schürmann, Fabian Kabus, Gregor Hildermeier, Lars Wolf, 2017-07-18 wiretapping difficulty End-to-End Encryption SIP + DTLS-SRTP (SIP + Datagram Transport Layer Security-SRTP) End-to-End Encryption & Authentication SIP + SRTP + ZRTP Introduction Man-in-the-Middle ZRTP Attacks Conclusion End-to-End Security for Voice Calls Institute of Operating Systems and Computer Networks No End-to-End Security PSTN (Public Switched Telephone Network) SIP + (S)RTP (Session Initiation Protocol + Secure Real-Time Transport Protocol) 2017-07-18 Dominik Schürmann Wiretapping End-to-End Encrypted VoIP Calls Page 2 of 13 wiretapping difficulty End-to-End Encryption & Authentication SIP + SRTP + ZRTP Introduction Man-in-the-Middle ZRTP Attacks Conclusion End-to-End Security for Voice Calls Institute of Operating Systems and Computer Networks No End-to-End Security PSTN (Public Switched Telephone Network) SIP + (S)RTP (Session Initiation Protocol + Secure Real-Time Transport Protocol) End-to-End Encryption SIP + DTLS-SRTP (SIP + Datagram Transport Layer Security-SRTP) 2017-07-18 Dominik Schürmann Wiretapping End-to-End Encrypted VoIP Calls Page 2 of 13 wiretapping difficulty Introduction Man-in-the-Middle ZRTP Attacks Conclusion End-to-End Security for Voice Calls Institute of Operating Systems and Computer Networks No End-to-End Security PSTN (Public Switched Telephone Network) SIP + (S)RTP (Session Initiation Protocol + Secure Real-Time
    [Show full text]
  • Openfire Service Level Agreement
    Service Level Agreement Technical Services — Communications Service University Technology Services 1. Overview This Service Level Agreement (SLA) is between University Technology Services (UTS) and either departments or groups choosing to utilize the internal Oakland University instant messaging (OUIM) service. The OUIM service is currently referenced by talk.oakland.edu and runs XMPP/Jabber software called Openfire. Under this SLA, UTS agrees to provide specific information technology (IT) services. This SLA also covers performance and reliability targets and objectives. Section 7 requires the signature and contact information of the group coordinator as an agreement to the SLA. OUIM is an online service that is available on campus and off campus. The requirements to utilize the service are a NetID, an XMPP client, and an Internet connection. XMPP clients are available online. The UTS Helpdesk supports the XMPP clients Spark, Pidgin, and Adium. Instructions are available on the UTS Web site at http://www.oakland.edu/?id=13849&sid=70. 2. Purpose The purpose of this SLA is to establish a cooperative partnership between UTS staff members with the community of customers who may opt into its use by clarifying roles, setting expectations, and providing service objectives and limitations. 3. Terms of Agreement This service is provided on an ongoing basis. From time to time, it may be reviewed and modified by UTS. Modifications to this agreement will be done at the sole discretion of UTS and the Technical Support and Services team (TSS). 4. Service Hours Regularly scheduled maintenance will be scheduled during low-use hours as much as possible; such work will be done either before 8:00 A.M.
    [Show full text]
  • The Islamic State's Use of Online Social Media
    Military Cyber Affairs Volume 1 Issue 1 Article 4 2015 The Islamic State’s Use of Online Social Media Lisa Blaker University of Maryland, Baltimore County, [email protected] Follow this and additional works at: https://scholarcommons.usf.edu/mca Part of the Communication Technology and New Media Commons, and the Social Influence and Political Communication Commons Recommended Citation Blaker, Lisa (2015) "The Islamic State’s Use of Online Social Media," Military Cyber Affairs: Vol. 1 : Iss. 1 , Article 4. https://www.doi.org/http://dx.doi.org/10.5038/2378-0789.1.1.1004 Available at: https://scholarcommons.usf.edu/mca/vol1/iss1/4 This Article is brought to you for free and open access by Scholar Commons. It has been accepted for inclusion in Military Cyber Affairs by an authorized editor of Scholar Commons. For more information, please contact [email protected]. Blaker: The Islamic State’s Use of Online Social Media The Islamic State’s Use of Online Social Media LISA BLAKER, University of Maryland, Baltimore County 1. INTRODUCTION The Islamic State of Iraq and Syria (ISIS) has made great use of the Internet and online social media sites to spread its message and encourage others, particularly young people, to support the organization, to travel to the Middle East to engage in combat—fighting side-by-side with other jihadists, or to join the group by playing a supporting role—which is often the role carved out for young women who are persuaded to join ISIS. The terrorist group has even directed sympathizers to commit acts of violence wherever they are when traveling to the Middle East isn’t possible.
    [Show full text]
  • Instant Messaging
    Instant Messaging Internet Technologies and Applications Contents • Instant Messaging and Presence • Comparing popular IM systems – Microsoft MSN – AOL Instant Messenger – Yahoo! Messenger • Jabber, XMPP and Google Talk ITS 413 - Instant Messaging 2 Internet Messaging •Email – Asynchronous communication: user does not have to be online for message to be delivered (not instant messaging) • Newsgroups • Instant Messaging and Presence – UNIX included finger and talk • Finger: determine the presence (or status) of other users • Talk: text based instant chatting application – Internet Relay Chat (IRC) • Introduced in 1988 as group based, instant chatting service • Users join a chat room • Networks consist of servers connected together, and clients connect via a single server – ICQ (“I Seek You”) • Introduced in 1996, allowing chatting between users without joining chat room • In 1998 America Online (AOL) acquired ICQ and became most popular instant messaging application/network – AIM, Microsoft MSN, Yahoo! Messenger, Jabber, … • Initially, Microsoft and Yahoo! Created clients to connect with AIM servers • But restricted by AOL, and most IM networks were limited to specific clients • Only recently (1-2 years) have some IM networks opened to different clients ITS 413 - Instant Messaging 3 Instant Messaging and Presence • Instant Messaging – Synchronous communications: message is only sent to destination if recipient is willing to receive it at time it is sent •Presence – Provides information about the current status/presence of a user to other
    [Show full text]
  • Intella Connect 1.8.3 Release Notes
    Intella Connect 1.8.3 Release Notes Highlights One can now export HTML emails to PDF with preservation of their layout. Improved performance of concurrent access on the same case. Added several admin permissions. Added a Chat Account facet. General Improved performance of a shared case serving multiple, concurrently active reviewers. The server admin can now assign admin and case management permissions to specific users. Users can now share the ability to perform admin tasks without the need for sharing the single admin account, improving accountability. Server management and case management permissions can be assigned independently of each other. Various fixes for supporting Internet Explorer 8 and certain Google Chrome versions. Minor UI improvements. Case Management Changed passwords are now effective immediately; they no longer require a case restart. Added the ability to delete a case from the cases list. Searching Optimized the performance of saved searches involving location and parent/child searches. Reorganized the Type facet to better support items from cellphone reports. For example, branches have been added for Accounts, Browser Artifacts, Databases, System files and User Activities. Added a Chat Account facet, containing the senders and receivers of chat messages from instant messaging applications such as Skype, ICQ, WhatsApp, etc. Previously these were covered by the Phone Number facet, Email Address facet or not at all. SMS and MMS messages are covered by both the Phone Number and Chat Account facets. Added a checkbox in the keyword search options for searching the Export ID. Resolved an issue with the results of queries with leading wildcards not being hit- highlighted.
    [Show full text]