LIFARS - Digital Forensics and Incident Response Investigations Company

LIFARS Computer & Digital Forensics New York Laboratory

The LIFARS New York City Lab was established in collaboration with the FBI, Department of Homeland Security and US Secret Service to examine digital evidence of all forms of cyber crime. We operate globally on cases including ransomware, cyber extortion, data breaches, celebrity hacking, Facebook hacking, insider threats, Twitter hacking, Gmail hacking and more.

Digital Forensics and Cyber Security Incident Response Company

With offices in NYC and Europe, we can deploy our team virtually anywhere in the world. For mission critical systems LIFARS implements effective remote cyber incident response by deploying cyber-attack response team to the local enterprise environment. The LIFARS digital forensics process then laterally engages to affected systems and potentially compromised endpoints in the network with high speed and precision

Our mission is to mitigate the attack surface, minimize the extent of the compromise and  the resulting impact of the cyber-attack. Our digital forensics methodology leverages our in-depth expertise from numerous highly complex digital forensics review, combined with IoCs and TTPs from our proprietary knowledge base.

  Request FREE Consultation From LIFARS  
LIFARS Cyber Security Forensics Services and Digital Investigations Company

Forensics Services

LIFARS digital forensics support criminal and civil proceedings and follows established guidelines for processing electronically stored information. The cyberworld has fractured the physical barriers that shield nations, enterprises, and world citizens. Through cyberspace, threat actors target anything connected and exploit its weakness.

Digital forensics heavily relies on artifacts collected form compromised systems, recorded network communications, and digital evidence. The LIFARS team has performed collection and preservation of digital evidence , and forensics imaging for many domestic and international matters. The LIFARS Computer Forensics methodology for detailed analysis and scientific examination established in our New York Laboratory is replicated in our field offices around the globe.

LIFARS mobile forensics team - mobile-forensics is an emerging trend in digital investigations

Mobile Forensics Services

Mobile forensics is an emerging trend in digital forensic review, since almost every criminal is using portable devices. A critical component to many forensic cases is recognizing information and data from mobile devices, which includes cell phone forensics, mobile device forensics, iPad forensics, and others. LIFARS can answer questions about phone calls, various chat messages, images and video, and hidden stored artifacts. Geo location GPS and EXIF metadata stored on mobile devices can provide significant forensics value

Methods for collection and examinations are constantly changing and the LIFARS Computer Forensics New York Laboratory is an industry trendsetter in the methodologies used.

The LIFARS Incident Response team has developed automated and expert manual processes for memory forensics

Memory Forensics Services

Advanced threat actors are using memory implants, malware that resides and lives only in the memory of digital systems, to avoiding leaving artifacts of compromise on the computer's hard disk drive. Many nation state attacks are leveraging memory malware and covert operations to avoid detection. The LIFARS Computer Forensics New York Laboratory has developed a unique proprietary methodology to discover memory implants.

The LIFARS Incident Response team has developed automated and expert manual processes for memory forensics, and state of the art techniques that are used to review every offset of memory for malicious program injections.

LIFARS Network forensics team operate with comprehensive collection of proprietary and public domain tools

Network Forensics Services

Detecting malicious network traffic in intrusion detection systems and live network streams is very depended on communication protocols, decoding and extraction of meaningful artifacts, metadata and data. Network protocol forensics and automation of the process is done with MantOS, an operating system developed by LIFARS, which provides a comprehensive collection of proprietary and public domain tools.

The LIFARS Computer Forensics New York Laboratory developed methodologies to detect nation states attacks in real time through network communication IoCs while additionally profiling malicious network traffic with Artificial Intelligence and Machine Learning algorithms.

LIFARS Computer Forensics New York Laboratory in Action

LIFARS developed advancements in malware analysis and blockchain forensics to combat the hacking of bitcoin wallets. When fraudulent bitcoin payment is made, it is often is processed by “cryptocurrency mixer,” which splits the transaction into fragments and reassembles them at the end. New methods for blockchain transaction analysis were developed and tested in the LIFARS Computer Forensics New York Laboratory, when LIFARS was involved in a real case of stolen bitcoins valued close to 70 million USD.

The threat actor used TTPs very similar to a nation state attacker, and deployed Microsoft scripting and powershell command execution. Leveraging command and control infrastructure on internet, the Threat Actors were able to abuse native operating system tools to perform explorations, lateral movement, and to keep persistence. The LIFARS Incident Response Team with state of art knowledge and methodologies, was able to identify the actions of this sophisticated threat actor and provided evidence for prosecution.