Essay

Enterprise Classification – Minimizing the Impact of Data Breaches

Typical Response Tasks ·   Preservation ·   Forensics ·   Log analysis ·   Malware reverse engineering ·   Surveillance ·   Remediation ·   Endpoint detection & response ·   Exfiltration – eDiscovery ·   Physical security ·   Regulatory compliance ·   Consumer notification ·   Legal response ·   Law enforcement liaison The latest Microsoft Exchange breach moved downstream to 60,000+ SMB victims from the Solar Wind’s hack that targeted Microsoft and government [...]

By |2021-03-07T15:47:22-06:00March 7th, 2021|Analytics, Essay, Content Management, ESI Sources, Architecture, Search|0 Comments
Read More

Handling M365 AED Unindexed Content

A question to the eDiscovery Facebook group asked how others were handling the unindexed items reported in M365 core and AED searches. If you have not run M365 eDiscovery searches yet or not noticed the Status section of the search detail page, it provides the item count and volume of ‘unsearchable items’ in the sources that your search. In my recent legal hold validation [...]

By |2021-03-03T18:04:28-06:00March 3rd, 2021|Essay, ESI Sources, Architecture, Search|0 Comments
Read More

Relativity-X1 – Well Timed for the Pandemic

Today’s announcement of the Relativity-X1 Enterprise integration had me puzzled at first. After all, Relativity Collect has been integrated with X1 Discovery files/emails since 2019. So what is the difference? Digging into the announcement and their documentation, my take on the new integration with X1 Enterprise Platform is the indexing of remote custodians and other data sources for in place search/collection. There are two [...]

By |2021-02-16T11:44:23-06:00February 16th, 2021|Platform, Essay, Collectors, Search|0 Comments
Read More

Your Amazon Account has been Hacked, Or Has It?

Got great feedback after my last skirmish with a phishing attempt so here is today’s attempt: [Greg] Hello, how may I help you? [digitized voice] This is Amazon security calling in regard to a recent $1499 purchase. Our system flagged this purchase because of suspicious elements and we need you to either confirm or contest this purchase. To be fair, I buy a lot [...]

By |2021-02-11T17:23:31-06:00February 11th, 2021|Essay, Security|1 Comment
Read More

Hackers Targeting M365 eDiscovery Services

Thanks to my friend Jason Velasco for drawing my attention to the article Hidden Dangers of Microsoft 365’s Power Automate and eDiscovery Tools. Hitesh Sheth at DarkReading.com is extrapolating from a massive data collection study from 4 million Cognito Detect for Office 365 customers by Vectra. I am not sure that I agree with his red flag alert that hackers are actively using Power [...]

By |2021-02-10T10:29:24-06:00February 10th, 2021|Essay, Security, ESI Sources, Architecture|0 Comments
Read More

eDiscovery Tech Bugs: The Emperor’s Clothes?

I want to thank you all for the flood of responses to my tech alert. Our peers stepped up to confirm this and other potential issues experienced in Microsoft 365 (M365) and other market leading eDiscovery tech. Most have been aware of various issues going back years. Your feedback confirms my assertion that technical bugs, system limits and undocumented exceptions are common and always [...]

By |2021-02-04T12:56:53-06:00February 4th, 2021|Provider, Essay, Tech, Search|0 Comments
Read More

M365 eDiscovery Search Alert

For enterprise on M365 E3/E5 that have been running keyword searches to export data from OneDrive and SharePoint for discovery in 2020, you may have had a problem. This will be a long piece, so I will try to pack the important parts up front. Last August, while testing the new online Microsoft  (“MSFT”) Word transcription feature I stumbled onto what appeared to be [...]

By |2021-01-31T10:55:04-06:00January 31st, 2021|Essay, Collectors, Legal Holds, Architecture, Search|0 Comments
Read More

Reveal: Building AI Driven eDiscovery

If you missed the news, Reveal took a $200M round of funding from K1 Capital and promptly acquired Brainspace. I was lucky enough to get an early briefing on this while brainstorming with the Reveal team on using their platform to analyze the Parler data to support the FBI investigations. In the last year Reveal acquired Mindseye (triage/ECA), LexLP (AI/ML) and even picked up [...]

By |2021-01-27T17:21:27-06:00January 27th, 2021|Provider, Platform, Essay, Analytics, Analysis, Review, Market, Purchase|0 Comments
Read More

IM eDiscovery: Resurrecting the 5000:1 Rule

One of my Litsupport team wearing the departmental t-shirts. Used with permission Blame Jonathan Maas for reminding me of my 5000:1 rule from the Enron email review. “For every 5,000 emails we review someone gets fired.” To put that rule in late 1990’s context, everyone having a corporate email account was still a relatively new thing. Just like the pandemic driven adoption [...]

By |2021-01-12T12:38:17-06:00January 12th, 2021|Essay, Compliance, Collectors, Legal Holds, Privacy, ESI Sources|0 Comments
Read More

What is Your Messaging App Tracking?

In the days of on-site policy assessment engagements, I loved asking random attendees to step away from their laptops so that I could ‘compliance check’ them. For new or stuffy clients I would ask the MIS/Security stakeholder to pick some random ‘safe’ machines on the floor for the check. Inevitably, every poor admin chosen had stashes of PSTs/MSGs, private gmail mailboxes open, various chat [...]

By |2021-01-11T14:59:12-06:00January 11th, 2021|Essay, Investigation, Preservation, Collectors, Legal Holds, Collection, Processing, ESI Sources|0 Comments
Read More
Go to Top