Cellular Records Review and Analysis Part 1: AT&T

Slides:

Advertisements

Similar presentations

Aspire Vertical Markets Executive Suite Solution.

Advertisements

Intermediate 2 Computing

Unified Communications (UC) Quick Reference Guide USING YOUR UC CLIENT This guide is designed to provide you with a quick overview of the Unified Communications.

OfficeTrack Mobile Employees Location Management Service.

OfficeTrack Mobile Employees Location Management Solution.

CC4100 Active Cellular Intercept Technologies

CDR Analysis & Investigation Basic Course - Presentation

CDR Analysis & Investigation Basic Course - Presentation

Telecom Analytics – by Arindam Guptaray. Few words about me... B. TECH FROM IIT KHARAGPUR. MBA (FINANCE) FROM UNIV. OF MINNESOTA, CARLSON SCHOOL. HAVE.

INTERNET A collection of networks. History ARPANet – developed for security of sending in case of a nuclear attack IDEA – the system would not go down.

Aspire Vertical Markets Real Estate Office. Real Estate.

Internet Basics 1 Internet Basic includes two lessons:  Lesson 1: The Internet  Lesson 2: The World Wide Web.

SIM Card Facts. SIM Card Form & Definition SIM is short for Subscriber Identity Module. SIM cards are small removable smart cards that are used in many.

Network security policy: best practices

EC4019PA Intrusion & Access Control Technology (IACT) Chapter 4- CAMS Prepared by Sandy Tay.

MessageSync™ Exclusively By: TELETOUCH PAGING, LP A Critical Alerts System Company.

Mobile Phone Networks Dr. Hassan Nojumi1 MOBLIE PHONE NETWORKS Dr. Hassan Nojumi.

Use of IT Resources for Evidence Gathering & Analysis Use of IT Resources for Evidence Gathering & Analysis Raymond SO Wing-keung Assistant Director Independent.

WIRELESS IN YOUR LIBRARY The Anatomy of a Library Communications Network.

Privacy, Security and Confidentiality for Calls, Texts and Contact Lists Secure Mobile Communications.

Activating Clarity  Activating Clarity  Activation  Online Activation  Fax Activation  Review and Verify Activation and License Terms  Updating.

Logging Service Desk calls Need ICT Help?. Contacting ICT Service Desk What information should I supply for computer or account issues What to do once.

GSM TOWARDS LTE NETWORKS

ONE® Pages Training Presentation North York General Hospital.

Emily Mikesell.  Started in 1875  Founder Alexander Graham Bell's invention of the telephone.  AT&T became the parent company of the Bell System ›

Watching the Detectives: Spotting Stingray and Digital Surveillance ANDREW NORTHRUPCHRIS SOGOHIAN ASSISTANT PUBLIC DEFENDERPRINCIPAL TECHNOLOGIST FORENSICS.

Mobile Phone Forensics Michael Jones. Overview Mobile phones in crime The mobile phone system Components of a mobile phone The challenge of forensics.

Kids’ GPS watch Q50 Q523 Step by step guide Apply for the watch ID starting with 145.

Renub Research Table of Contents 1. Executive Summary 2. Worldwide Ultrasound Device Market & Volume (2010 – 2021) 2.1 Worldwide Ultrasound.

Mobile Device Data Population for Tool Testing Rick Ayers.

Cellular Records Review and Analysis Part 2: Verizon.

Cell Phone Forensics Investigator - ICFECI

Renub Research Table of Contents 1. Executive Summary 2. Global Electric Vehicles Market (2012 – 2020) 3. Global Electric Vehicles Share.

Renub Research Table of Contents 1. Executive Summary 2. United States Biopsy Test Market, Volume & Forecast (2008 – 2020) 2.1 United States.

Dial For Twitter Support Number. How to Join Twitter to Use for Business and Marketing? While the registered users can post and share tweets,

Renub Research Global Electric Vehicles Market & Volume (Plug- in, Battery, Hybrid, Fuel Cell) Motors According to our research findings.

How to Track the Location of a Mobile Phone.

A tour to all products and services Introducing the SMSS Reseller Opportunity Your Own branded SMS Business.

10. Mobile Device Forensics Part 2. Topics Collecting and Handling Cell Phones as Evidence Cell Phone Forensic Tools GPS (Global Positioning System)

Cellular Records Review and Analysis Part 3: Sprint

Cellular Records Review and Analysis Part 1: AT&T

TEXT MARKETING | TEXT MESSAGE MARKETING

Mobile communication methods

Table of Contents 1. Executive Summary

Welcome to Customer Interaction Center (CIC) Client and Phone Training

Oxygen Forensic Detective

GLOBAL SYSTEM FOR MOBILE COMMUNICATION

QUESTRA HOLDINGS ACCOUNT REGISTRATION

PhoneSheriff – Best Parental Control Software For Mobiles and Tablets

Powered By G-2, Plot No. 29, Marudhar Vihar, Near Reliance Fresh, Khatipura Circle, Jaipur , Rajasthan, India Mobile No: ,

NEW PRODUCT – KONFTEL 300Wx

Mobile communication methods

Published Date: 24 February, 2016

ANALYSIS OF CELL PHONES

Advanced Techniques in Forensic Examination of Smartphones

Accounting and Finance Staff Database

Cellular Records Review and Analysis Part 5: Miscellaneous

Cellular Records Review and Analysis Part 4: T-Mobile

Cellular Records Review and Analysis Part 3: Sprint

ONE® Pages Training Presentation

University of Washington, Autumn 2018

Smart Personal Console (SPC)

ShotSpotter, Cellular Data, and the Future of Digital Forensics

Dept. of Business Administration

Connect Client Training

Everyone is talking about

Caller ID for Managed Critical Communication

Acupuncturists List One campaign free along with b2b list Purchase.

Culinary Chefs Business Mailing Leads One campaign free along with b2b list.

Presentation transcript:

Cellular Records Review and Analysis Part 1: AT&T

PATCtech Glenn K Bard, Chief Technology Officer Jim Alsup, Director – PATCtech Scott Lucas, Instructor and Examiner Steve Dempsey, Instructor Kathy Enriquez, Instructor Brian Sprinkle, Case Manager and Software consultant Stefani Lucas, Marketing Director

Glenn K. Bard Public Agency Training Council tech Chief Technical Officer PA State Trooper – Retired NCMEC – Project ALERT CISSP, EnCE, CFCE, CHFI, A+, Network+, Security+, ACE, AME

For Starters What can we get from AT&T?

Cell phone technology What can AT&T provide with appropriate legal process? Call detail logs Cell Sites accessed Cell site sector Azimuth Beam Width Direction of call (incoming or outgoing) Calling number Dialed number Call Time and duration (UTC) Data usage location information Location of cell tower 5

Cell phone technology Subscriber information (Name, address, etc) SMS location information IMEI, IMSI of target phone. Phone Model Tower dump Definitions page (Key Codes) Reports of Lost / stolen phone If prepaid, where purchased? Other phones on the same account Cell sites at the time of the incident (Not current) Historical Handset Location (Nelos) Contents of the Cloud 6

Some important definitions IMEI – International Mobile Equipment Identifier IMSI – International Mobile Subscriber Identifier MSISDN - Mobile Station International Subscriber Directory Number (It means your phone number)

Some important definitions LAC / CID – This is the switch (LAC – Location Area Code) and tower along with side (CID – Cell ID) accessed CGI – Cell Global Identifier Azimuth – The median of the sector accessed Beam Width – The width of the sector accessed MCC – Mobile Country Code MNC – Mobile Network Code

Some important definitions Seizure – The time it takes for the call to connect to the network. NOT the elapsed time. ET – Elapsed Time CT – Call Type UTC – Universal Time, also known as GMT

Some important tips The location is Longitude then Latitude This is the opposite of all other companies The records will come in both PDF and TXT If you want Excel, we will learn how to import TXT into Excel in a bit.

Some important tips AT&T can provide locations for Voice, SMS and Data for a very long time. (Which is not common.) Tower Dumps also include Voice, SMS and Data. (Which is not common.) AT&T does not use the terms Lucent or Nortel when describing the tower sides. They simply give the Azimuth. (Which is not common.)

Some important tips NELOS AKA: “historical GPS Locations”, “Historical Handset Location data”, and “Handset triangulation data” Technically: Network Event Location System What it means is an estimate of the location of the handset itself at the initiation of the event. How accurate can it be:

Some important tips NELOS

Contact information (updated) AT&T Wireless 208 South Akard, 10th Floor Dallas, Texas 75202 Phone Number: 800-291-4952 Fax Number: 888-938-4715 E-mail Address: compsent@att.com Note(s): AT&T will now accept service by email at: compsent@att.com

Contact information Two Hints: AT&T now owns Cricket. TracFone sells phones that use the AT&T towers, so the records must come from AT&T. We will get into both of those in Part 5 of this series.

Warrant language Subscriber information for the number _____________ including name, date of birth, mailing address, alternate phone number, and other numbers on the same account. All communication for the wireless number _______________ for the time period of _______________ to include cellular calls, SMS messages and Data communications, tower locations (LAC/CID or eCGI) and azimuth / beam width for the sectors accessed during the communication. Also, identify the existence of any AT&T cloud services associated with the wireless number of ____________________________ and provide any data held within the cloud to include SMS, MMS, and emails communications. Additionally, supply “historical GPS Locations”, “Historical Handset Location data”, “Handset triangulation data”, aka NELOS (Network Event Location System). Also provide any IP (Internet Protocol Addresses) assigned to the device for the time period of _____________________. Lastly, provide a detailed definitions page which identifies all information in the records. Please provide this information to Detective ________________ in digital format on a compact disc in Excel, PDF or TXT format.

Retention periods Subscriber information: 7 years Call History: 7 years Tower Locations: 7 years SMS Content: Not available Tower Dumps: 7 years NELOS: Over 1 year

Now let’s see some examples of what you can get:

Follow PATCtech! Updates & PATCtech Research Public Safety News Forensic Digital Evidence Investigators (LinkedIn Group) Updates & PATCtech Research Public Safety News Training Opportunities