Great News!
Many students who study using our platform have reported that a large number of the practice questions here are very similar to those that appear in real exams. View Courses
Many students who study using our platform have reported that a large number of the practice questions here are very similar to those that appear in real exams. View Courses
An auditor is reviewing an evidence log associated with a cyber crime. The auditor notices that a gap exists between individuals who were responsible for holding onto and transferring the evidence between individuals responsible for the investigation. Which of the following best describes the evidence handling process that was not property followed?
The correct answer is D. Chain of custody.
The chain of custody refers to the documented and traceable handling process of evidence from the time it is collected until it is presented in court or used in further investigation. This process ensures that the evidence remains in a secure, tamper-free state, and it provides a clear record of who had access to the evidence at every stage.
If there is a gap between individuals who were responsible for holding or transferring evidence, it means that the chain of custody was not properly followed. This could potentially undermine the integrity of the evidence, as it would be difficult to prove that the evidence was not tampered with during the gap.
Why the others are incorrect:
Validating data integrity: Validating data integrity refers to ensuring that the evidence has not been altered or corrupted, which is important but is part of the broader chain of custody. The issue described focuses on the tracking of the evidence, not data integrity.
Preservation: Preservation refers to maintaining the evidence in its original form to prevent alteration or degradation. While this is critical, the gap described relates specifically to the documentation of who handled the evidence, which falls under chain of custody.
Legal hold: A legal hold is a process used to preserve evidence in anticipation of litigation. This is more relevant when ensuring that relevant documents or materials are preserved during legal proceedings, not necessarily when tracking evidence between individuals during an investigation.
No Payment Cards Needed
Discover a range of courses designed to provide you with the knowledge and skills needed to excel in your chosen field.
You don’t need one month to study and pass your test.
With Prepsaret, it takes you a few days to grasp all the concepts needed to pass your exams
