Which of the following tasks DOES NOT come under the investigation phase of a cybercrime forensics investigation case?
Which of the following tasks DOES NOT come under the investigation phase of a cybercrime forensics investigation case?
The first response task does not come under the investigation phase of a cybercrime forensics investigation case. It is part of the incident response phase, which involves initial actions taken when a cybercrime is reported. These actions include securing the scene, identifying potential evidence, and taking steps to prevent further damage. The investigation phase typically includes tasks such as data collection, securing the evidence, and data analysis.
The correct answer is C. First response. First response is actually part of the incident response phase, which occurs before the investigation phase. First response involves initial actions taken when a cybercrime is reported, such as securing the scene, identifying potential evidence, and taking steps to prevent further damage. The investigation phase includes: A. Data collection: Gathering evidence and data related to the cybercrime. B. Secure the evidence: Ensuring the integrity and security of collected evidence. D. Data analysis: Examining and interpreting collected data to reconstruct events and identify potential suspects.