Investigating computer hacking, unauthorised access and systems intrusion requires different experience, tools and methodologies from traditional computer forensic cases.

Our unique experience in these investigations, based upon sound forensic tools and methods, sets us apart from other computer forensic providers in Australia.

In the last two years, we’ve conducted over 50 investigations into compromised computer systems, applying our own methodologies and tools, including live forensic analysis and collection, volatile memory analysis, malware reverse engineering, vulnerability scanning and analysing indicators of system compromise.

How we can assist

We can assist in all stages of the investigation process, including:

• Identifying potential sources of evidence that may exist both within your environment and externally, which may help to prove how the intrusion was committed and by whom
• Performing live forensic analysis of running systems to secure volatile evidence that would be lost if the system were imaged using traditional ‘post mortem’ forensic imaging, such as live memory, active network connections, logged on users, active programs (and malware) and running services
• Locating and forensically securing other potential evidence across your environment, such as from web servers, system logs, personal computers, email and file servers, application systems, backup tapes and other devices
• Performing forensic analysis of the collected data for evidence of the intrusion and details of when and how it occurred, including advanced analysis such as live memory analysis, malware reverse engineering, testing of security vulnerabilities and identifying indicators of compromise
• Identifying and helping to remediate computer security vulnerabilities that were exploited as part of the intrusion and identifying other improvements that could help secure your environment
• Liaising with internal and external parties such as internal and outsourced IT providers, security, investigations, risk management, compliance, legal counsel, regulators and law enforcement.

Why choose Klein & Co.

• We are widely recognised as a leading independent Australian computer forensic practice, providing the highest levels of technical skills, expert knowledge, commercial understanding, professionalism and integrity
• We have been engaged as a trusted advisor to hundreds of satisfied clients in Australia and overseas, including top tier law firms, iconic Australian and international companies and government agencies
• We have unmatched experience amongst Australian computer forensic providers in investigating system intrusions, based on sound forensic tools and methods
• As an independent team, we are free of the conflicts and overheads of other providers, enabling us to provide the highest quality of service at the best competitive rates
• All of our work is performed by our own dedicated team; we do not advertise services that we don’t provide ourselves or outsource any aspects of our work to subcontractors
• All evidence is processed and analysed on our in-house, secure computer forensic platforms; we do not send your confidential information and data to subcontractors or overseas
• We are actively involved in the international forensic technology community, maintain cutting edge tools and techniques and enjoy strong connections with leading international experts plus local and international law enforcement.

We can help you confirm when and how your systems were compromised, what data was taken and what security improvements are required to help prevent similar incidents occurring in the future.

To discuss how we can assist, on a confidential basis, please contact us on:

Phone: +61 (2) 9233 3400

Email: This e-mail address is being protected from spambots. You need JavaScript enabled to view it