A public authority in the Cayman Islands suffered from an unauthorised information leak. An internal thread of emails was leaked into the public domain and subsequently published in the media.
The authority anticipated that relevant electronic data evidencing the unauthorised leak would be found on the workstations and/or cell phones of the six employees that were copied on the original thread, as well as on the email servers/backups.
KRyS Global was engaged by the public entity to perform a forensic review of the relevant laptops, mobile phones, and the servers.
With minimal impact on the authority’s daily business operations, KRyS Global preserved email from a live Exchange server, collected PSTs from the workstations, and associated data from the cell phones in order to perform a thorough forensic analysis.
KRyS Global established that the system used by the public entity included a complex network of servers. As a result of its careful preparation and expertise in ESI collections and data analysis, KRyS Global was able to take forensic images without delay and without a negative effect on productivity.
Ingesting the emails into its secure review platform, and applying data analytics in conjunction with the forensically collected system information, KRyS Global provided timely reporting to the client on its progress and ensured the investigation remained strictly confidential.
The authority expressed its pleasure with the outcome of the investigation and was satisfied that the review delivered the message to all employees that any further breach of data policy would be taken seriously and not tolerated.