FREE Briefing - you won't look back, just read our testimonials:


Blog updates coming up - there is no better, faster alternative to end litigation than with eVestigator®. Major success stories. See blog section shortly for updates:  
eVestigator® launches a new Android App that is capable of penetration testing 65,535 ports - leaving no chance for risk - as freeware running on more than 40 devices - including most Android and Amazon capable hardware.
eVestigator® is invited to Channel 9's "Today Show" to help demonstrate a major security flaw in the Worldwide Credit Card systems called EMV, demonstrating how easy it is for hackers to electronically pickpocket your credit card details through the air via simple NFC technology available on Android 4.4 devices and above, which bypasses the RFID security and utilises the Contactless credit card technology to get the credit card number and expiry date. You can protect yourself by buying a simple credit card sleeve for 99c off eBay or most wallets these days come with a metallic coating that holds cards. As long as there is metal surrounding the chip - the signal cannot be detected.
eVestigator® Identifies an unprecedented Criminal Reverse Cyber-Stalker behind 7 fake IP entities impersonating others.
eVestigator® prepares to issue a major public cyber-security warning to the entire country by releasing intelligence to the media that will likely influence the country's criminal cyber-laws forever.

An expert witness is a person who has specialised knowledge based on that person's training, study or experience. There are many factors' that distinguish opinions and facts, and in my life, I have been lucky enough to have over 20 years+ of industry experience from the very bottom upwards - not just some limited outdated paper from a jump in the middle of the supercharged industry (without a lifetime of background), although, eVestigator® has lots of formal paper to add to his collection too. His name is Simon Smith (FPI, GDipFDR, Investigator, CEW). He occasionally offers a Free Briefing service with an NDA. eVestigator® has over 20 years+ experience as an master Computer Programmer, former sessional University lecturer for Swinburne 17 years ago in advanced programming, and an extreme business and IT portfolio in between. For the last six years he has been utilised as a Digital Forensic Expert and Court Witness and Private/Factual Investigator, as well as an Expert Cyber Security Investigator and Auditor and Data Recovery Expert. He is also a Digital Forensics Expert Court Witness for any court, Mobile Cyber Security Analyst, Patentee, Mobile Device Author and a Computer Systems Source Code Auditor. He is able to offer a vast range of Specialist Investigative services. He is renowned in Australia as "Today Tonight's" Cyber-bullying Expert, Digital Forensic Expert Court Witness, Cyber Security / Cyber Crime Investigator, Insurance Risk Analyst, Data Loss/Prevention, Online/Offline Fraud, Intellectual Property eDiscovery / Due Diligence Expert, Education Expert, iPhone, iPad, Android, Windows, Linux, Unix, Mac, Windows CE, Nokia Computer Forensics Data Recovery Expert, Windows Certified Programmer, Family/Dispute Resolution Practitioner, Nationally Accredited Mediator, Source Code Inspection, Ethical Hacking/Reverse Engineering Expert, Corruption Investigator, Surveillance/Bug Detection & Litigation Support. He is highly qualified, experienced and has proven to attain fast and cost effective factual outcomes, complimented by his Commonwealth Graduate Diploma in Family Law Disputes Resolution, Counselling & Grief and Trauma Author.

Simply call 0410643121 (Direct) to book in a time where he will provide you with an opportunity to sign a NDA and receive evidence from you and give you a definitive answer as to the direction he would give to add actual positive value to your situation. You may email or SMS. The email is help@evestigator.com.au. He only works on successful cases and offers an initial FREE service to assist in ensuring the client has travelled down the right path. Complimenting this, he is also a Nationally Accredited Mediator and Family Dispute Resolution Practitioner, and General Factual Investigator. It costs you nothing. Give him a call on 0410643121 (Direct) and you are welcome to fill in the Non Disclosure Agreement.

An expert that goes above and beyond and aims straight for the point
I am known Nationally as eVestigator® and in the media for my specialist cyber expertise. I am a licensed Private Investigator, holding several Qualifications, being a Practicing Forensic Private Investigator, Trained Computer Hacking Forensic Investigator, Expert Witness taught by Hugh Selby of Unisearch, holder of several Graduate Diploma's, Graduate Certificates, Diploma’s in Security and Risk Management, Government Investigations, Information Technology and Strategic Management, Cyber Security, Government (Fraud Control), Government (Security) and so much more (see below for so much more).

Skill, Experience & Speed equals low cost service! The higher the Skill, Experience and Speed, the lower the cost. That is what our customers have found out, sadly often too late
My main experience comes from 25 years of the majority of my child, teen and adult life consisting of extensive Commercial Computer Programming and interest in innovation and creation. It all started when I was 11 years old initially programming from a tape deck green screen AMSTRAD CPC464, growing up programming continuously before the birth of the consumer Internet, then programming throughout high school during the birth of the consumer internet with every main language that existed, designing my own mail and internet servers, continuing to this day with knowledge of all frameworks including now as an App Store accredited mobile developer to patentee and Master Programmer (from ground up - not like the template ones they teach today). When I was 19, I was literally handpicked and employed as an Analyst Programmer and taken straight out of year 1 University and offered a full time job as an Analyst Programmer leading to a Senior Analyst Programmer position after being recognised as one of a small group of 3% of Australians who received Quadruple A++ in Information Systems and Processing and Management CATs. In that role the mix between my IT expertise and investigative expertise began to show. I was investigating the binary of a QuickBooks QIF file one day for a corporate client and came across a RAW credit card number. I immediately called QuickBooks who took no interest. Since then I have worked at multiple workplaces and created from ground up several multimillion dollar enterprises all in relation to IP, web, cyber security, reporting, educational, project management, corporate application, mobile, data and voice analysis applications and enterprises from scratch. When I say from scratch, I fundamentally mean from scratch. There is an article I wrote about 'template' programmers you might find interesting on this site.
Computer forensics begin with the necessity of being computer programming master. Gone of the days where people say, "I have this Company certificate from this famous networking firm who happen to develop a widely used product. Developers make products - from scratch, and makers of products are able to understand the engineering underneath. A true expert computer programmer holds the skills and abilities of every other IT discipline, because through the Software Development Life Cycle (SDLC) they have had to conduct the equivalent work and ensure that ultimately their software works with Database X on Server Y or Conditions Z. In the past, I have used my programming abilities within investigations and forensics 'on the job'. If I need the job done, I programmed it myself. A true computer forensics expert is no expert unless they understand the raw essentials of the inner operations of programming from machine code to today's language layers - that way you understand the vulnerabilities from the lowest end. That is what you call a real computer forensics expert. I have often resulted back to source code to help solve cases. I don't rely on other people's tools. The fundamental learning comes from knowing the very backbone of computer programming, its history, (over 25m years- the birth of the consumer internet) its protocols from start to end, its languages from "IMM R0, 0x80" to what they call programming today and beyond. At this point, I knew that I was more than a Senior Analyst Programmer from knowing the complete roots of programming (now at 21 teaching advanced computer programming seasonally), having an advantage over everyone as I don't rely on software, even in investigations, I invent it. I am considered an expert in my field by way of experience and recognition of that experience, complimented by many side fields, especially knowledge of cyber stalking, family intervention and relationship battles and nationally accredited mediator status and it shows in the cases I succeed in. I have solved multimillion dollar fraud SCAM’s (including the fake Microsoft tech-support SCAM and dating SCAMS), resolved reverse cyber-stalking cases, family law cases, plenty of IP tracing and identity theft cases, and corporate crime and insurance fraud cases. I also work and train as a Cth. FDRP (Professional Family Court Mediator), and have trained many Barristers at law to become Family Dispute Resolution Practitioners’ appointed now by the Commonwealth. I am a Nationally Accredited Mediator (NAM) and hold a Certificate of Bail Justice from Victoria University. I am considered a Master in Digital Computer Forensics and Online Education and have developed patents in the subject matter. I have appeared on Today Tonight (7), the Today Show (9) and other media and to the courts as a Cyber Forensic Expert/Witness. I am independent and will act for and/or against the police/government or body corporate without fear or favour as my duty is to the law and the courts.
I have succeeded in every case I have taken on. I have had parties including government department, police prosecutors, and civil litigators withdraw once knowing I have the evidence to stand up against them.

I am a Computer Forensics Expert specialising in Cyber eDiscovery and Expert Evidence and Expert Witness Services for the Court. I have extensive Investigation, Government, Risk and Fraud Management Skills and am a Private Investigator. I have performed hundreds of successful high-tech-crime cases and appeared in court to give expert evidence. I have uncovered many high profile scams and given federal police crucial cyber intelligence in many cases. I specialise in online cyber stalking and cyber bullying cases, and also workplace investigations and family and personal intervention order and court strategic evidence related cases. I am a Nationally Accredited Mediator and Commonwealth Appointed Family Dispute Resolution Practitioner. I have taught Psychologists and Barristers to become FDRP mediator's also under the Family Law Act and have built Australia's largest Marriage Celebrant Academy and software, making over 5,000 celebrants, naturally being Commonwealth appointed myself. I have over 20 years as an expert computer programmer and have created my own commercial full desktop software packages and mobile software packages and was training advanced computer programming 16 years ago for Swinburne University at the tender age of 20. I have built computer based patents and ran large educational institutions. I have built Australia's largest training multi-million dollar non-funded private training organisations, software companies and mobile applications. I now dedicate my advanced programming knowledge to cyber security and ethical hacking and combined with my other credentials have found an extreme niche to help people in this area which one could describe as the step between litigation and crime/civil disputes and the police, that is a mixture of investigation, strategy and forensic evidence and intelligence gathering with advocacy, mediation and knowledge to attain an outcome.



eVestigator® issues Cyber-Security warning regarding 'Electronic Pickpocketing' with RFID to EMV via NFC.

There are no major surprises in this story except one. Approximately 65% of Australian and International consumers are carrying a 'Smartphone' that is capable of skimming the numbers electronically from an unsuspecting persons' credit card, right from their pocket. First we should start by saying right out that you can purchase for about $2 on eBay a little sleeve that you should put over any card you wish to protect that uses either Pay pass or Pay wave. Seriously, now! The every day mobile phone with some technical software modifications not so far out of reach of the every day person could be used to swipe someone's digits right from their pocket. Let's first begin with some definitions. Firstly, RFID stands for "Radio frequency identification" and it is a wireless technology incorporates the use of electromagnetic as well as electrostatic coupling in the radio frequency (RF) to give a object a digital identity. This is not new to us, and certainly if one had to crack the algorithm of RFID they would be quite stuck. Now, mobile phones do not have RFID.

Introducing, 'NFC'. NFC is Near Field Communication (NFC) is a short range wireless standard (Ecma-340, ISO/IEC 18092) that similarly uses magnetic field induction to enable communication between two devices as they pair, but only within a few centimetres. It is a shortcut if you like for a digital handshake that can emulate an RFID transaction by learning from another. It can also, on its own act in a capacity to uniquely identify an object but used for much smaller distances like key tags, or elevators etc. Then we introduce 'EMV'. EMV stands for Europay, MasterCard and Visa. It is a combined initiative and worldwide standard for cooperation of integrated circuit cards and IC card capable POS or 'Point of Sale' terminals and ATM's or 'Automated Teller Machines'. It is used quite frequently for authenticating credit and debit card transactions for small amounts under $100 here in Australia, and typically is dependent on the locality. It is limited because it contactless, and therefore vulnerable, but apparently not so much for the three key credit card companies to see as a threat for taking or virtualising a pretend transaction using a simple phone. So, to cut it short, an NFC enabled phone with the right configured firmware with programattical changes (easily demonstratable but not for sale gladly) can technically read and both write the transaction from its memory purporting to mirror the cards first signal. This is the technology already in use but controlled in Google Wallet, Samsung Pay, PayPal Cardless payments, etc. It uses NFC and Android Beam. eVestigator® warns consumers of the absolute possibility that this could be used to fake a transaction, as well as steal the credit card number and expiry date from somebody's pocket. Without going into detail, eVestigator® has recreated the technology already known to be a flaw in the system in the US and in Australia but not to the extent people should wonder if it could be used by anyone.

In my opinion, based on the fact that now Smart Phones are easily accessible with NFC and Android Beam, the technique opens the door to non hackers, and broadens the reach of Cyber-Crime. To protect yourself, you just need to make sure that your chipped cards are covered in foil, metal or some sought of pouch with metal inside as mentioned earlier. Are RFID or contactless credit cards more trouble than they are worth? How much more effort is it to swipe a card and enter a PIN? When did our time get so limited that taking no more than a second to pay for a purchase is worth more than financial security? Sure you can buy a little pocket or sleeve to protect your card from skimming and cloning that takes seconds, with little to no initial risk to the perpetrator as they never touch your wallet and costs them very little to get what they need to steal your credit card information and as little as $35 to create a fake card using the stolen information. The time it takes to remove and replace your card in the sleeve negates the time saved using 'tap and go'. I remember one of the benefits of the added chip being touted as 'extra security'; now people are seeing demonstrated what many of us warned - in front of my own eyes and in a controlled testing environment - IT IS POSSIBLE!

There is virtually no security, on these kinds of payments, but the worse part to this is that it gives you the raw digits, so potentially you could purchase online. It is even possible to generate a Random CVV with the technology. The $100 limit limits the damage of one transaction, but you only need the number once - as people still rely on MOTO (Mail Order Telephone Order). Specifically just limiting ourselves to this technology and forgetting about knowing the card number, we can reproduce a real-time transaction in quick succession, and they can add up before the theft is discovered and the banks have detected any suspicious activity. RFID is easily hackable, by using a 'back-door' style approach via NFC which kind of does away with the encryption of the RFID! All that is needed to make a purchase, particularly online or over the phone is usually the credit card number and expiry date and as a merchant myself eVestigator® can safely say that the card companies do not require a CVV for MOTO transactions, hence the risk has heightened due to the availability of the technology being conveniently packed into an Android Smart Phone which has all the bits and pieces (without software intervention) to replay or copy a card transaction. The name on the card being incorrect is a human fraud check that can be made after the fact but to actually make a purchase it is unnecessary. You don't even need the three or four digit CVV number on the back of the card for most purchases. In any case social media makes identity theft even easier.

The technology in your phone now may be able to take a persons' credit card number and expiry in certain circumstances of which we shall not outlay, but it is not replayable to the average person. Be mindful that even if you have your card packed in your pocket or wallet, a skilled indiscreet passer can brush past you and take what they need. This leads to even further privacy concerns. Birthday messages on Facebook for example, make it pointless to hide your birthdate. So it just might be worth disabling RFID and sticking to swipe and PIN, as credit card numbers are used to sometimes authenticate passwords or gain access to internet banking. eVestigator® will assist the various companies in their cyber-security issues if needed. How it got this far, who knows. Until a revelation or specific information becomes available eVestigator® is happy to keep people safe, and even though this possibly may be another risk or exploit, he sees thousands every year that don't even require technology. He has solved over 15 major scams, and sometimes people don't realise how trusting they are. There is a consumer and criminal disconnection, and whether it is blamed on the computer or not, it still follows traditional methods, so beware!

Cybercrime Expert Witness Simon Smith discusses the 'hidden defendant' appearing in almost every case.

Well, in my words it is "CYBERGEDDON". Not to be dramatic but I have now experienced an element of cybercrime in every single case that I have had to deal with in every jurisdiction including employee fraud, stalking, computer crime, theft (including identity theft), international crimes, police prosecution, civil disputes and extremely aggressive family law cases. As a Family Dispute Resolution Practitioner also, I can appreciate the enormity of mudslinging that goes on in such cases that depend heavily on the credibility or lack thereof, and have reversed many cases by an interesting element of cyber-fraud where the Internet has reversed cases showing fake email evidence admitted into evidence, almost causing loss of custody and destroying families. This is real!

I would like to introduce two short stories of fact anonymised for the benefit of counsel and readers of this newsletter to explain that from conducting a slight investigation and thinking outside the square, almost all cases are resolvable in such a way that they can be mediated or favourable to one side through computer forensics; as despite people thinking they are smart in sending anonymous emails or purporting to be someone else through TOR networks (of which I happen to own ‘Orion Elite Hidden IP Browser Pro++', the largest iOS software but it is supposed to be for the purposes of protecting the users privacy) they are not immune. I have saved many cases where justice has almost been destroyed because sadly in some situations the Magistrate, Justice, Judge or Member do not understand the complexity or the relationship between the technological credentials and reliability of the human and sometimes neither can the client explain it properly to their counsel or lawyer. This is detrimental because if nobody understands how to properly construct pleadings then they are likely to be struck out.

In my first case scenario, a person from India came to Australia to work for a company and provide Search Engine Optimisation (SEO) services. In other words, they simply came down and suggested that they would take over the company's Google marketing. This company was spending about $4000 a month on AdWords marketing. This new "employee" happened to own a SEO company in India, so he contracted himself to perform the work in conjunction with himself as an employee of this Australian company. He also set up various servers and operated several businesses from within this organisation—unbeknownst to the employers—through the company's network. From Google's perspective, all operations were performed by the employer. However, at least seven servers were set up, racking up a bill of $500 000 of debt without permission of the business owner; fraudulently, to the benefit of this employee who later was sacked and then demanded the employer pay more money as an alleged debt with the SEO company, money he claimed to be owed based on the trading relationship. What an ironic situation. I was called in to a very frantic company to determine how to get Google off their back for a half-a-million-dollar debt racked up by this ex-employee. The Google user account and IP address (internet location) pointed naturally to my client because the ex-employee had opened up several ports where he could dial in from home and pretend to be on my client's network in performing his illegal activities, then he left the country. I took a very strong lead in finding negligence on Google's side and technicalities in policy in attaining credit where credit was not authorised in order to defend my client's liability and explain from a cyber legal perspective, before it even got to the point of litigation, that the company was not responsible for this debt. In normal law, most of you would agree that the liability, despite the crime, would still fall on my client. This was an enormous success. This is what I would call a ‘hidden defendant'. You cannot always trust that the defendant is actually visible to you. This is also the case in many jurisdictions; one of which I would like to share with you that is quite extreme and how I completely overturned a massive case.

Most people would like to think that people tell the truth in family law cases, especially doctors. I had a case where I was called in to validate the characteristics of who may be telling the truth based on some SMS's and forensic iPhone discovery. However, I found much more than that. As it happens in this Family Law case, the mother had taken the child and as possession, as they say, is 9/10ths of the law it was up to the father (who had nothing wrong with him) to seek psychiatrist reports, counseling, visitation rights, initiate family law proceedings and go through an enormous amount of trauma to prove that there was nothing wrong with him to still potentially be on the losing side as he didn't have possession. An enormous amount of Affidavits were exchanged with the Family Court. Most Judges do not like to discuss perjury but I am a stickler for evidence and fact and I say it how it is; I did not intend on coming up with what I came up with. What I found was the last Affidavit of the mother, which was all allegations and no witnesses (and most allegations were in regards to forgery, rape, violence and no evidence other than her word as well as no police reports) and were very serious allegations. All of these accusations were of a man who seemed like a normal father, that due to this, limited him to three hours visitation, every three weeks to see his daughter of four months old with no notice. I do not take sides in cases however, I do take fact.

I, in my investigations, usually look at what comes to me rather than what the client asks as my first duty is to the court. In what I found by perusing through what we like to call "big brother" Google records is that a strange IP address appeared that had hacked into his Gmail account. However, what this person did not realise was that this IP address, once in Gmail is also recorded to have searched Google for methods of fabricating evidence in Family Law Courts against ex-husbands, planning methods of suicide and/or faking suicide and cutting brake wires of the same model car as my client. Subpoena evidence showed that the IP address that conducted these searches and hacked into my clients Gmail account, came from the credible doctor who had submitted over 40 Affidavits alleging the opposite to the Court of Law. It also shows that the searcher was looking for fake emailers and on the header of the emails that were submitted as evidence to the court, I note that the exact emailers that she was searching for sent those emails purporting to be somebody else. This is also a crime as we know it of impersonation. Needless to say, I stumbled on something quite large here. My advice to the client was to start talking closely with the other side.

My final words are that I can make a big difference to any case in relation to cyber intelligence. It is part of every case at the moment. Everybody uses their mobile phone, I can find out what they have done, what they have searched for, what their intentions are and what their personality really is. Everybody has a record that is usually uploaded to iCloud in the case of iPhones or the Cloud if they are using Android. Everybody uses some form of security-based email like Gmail or Hotmail that tracks you. There is always a record. I would advise everybody to test the evidence before accepting the inevitable because sometimes, on a simple technicality of fact at a very low cost, an entire case can be destroyed and these are where my successes lie. These are just two examples of some very successful cases. I am currently working on an enormous case which is very similar and involves an accused that is facing a jail term of at least seven years who, based on current evidence, did not do the crime and the withholding of that evidence seems to be an abuse of his rights. I always give counsel, lawyers or clients a free pre-investigation on any case to determine whether I can help to ensure that I can maintain my 100% success rate. I will only assist in cases that I know will produce an outcome.

You are an expert in litigation and cyber elements have unfortunately always existed but people have never realised how serious and how present they are in proceedings, now and in the past. Expert opinions and facts make a difference. Call me anytime on 0410 643 121 or visit www.evestigator.com.au and I'm happy to talk, anywhere in Australia. Simon Smith is a Cyber Forensics and Cyber Security Expert Private Investigator, Certified Ethical Hacker, Technologist and Computer Forensics Expert Witness. He has over 20 years+' computer programming experience and has appeared in various news publications regarding smart phone technology and on Channel 7's Today Tonight in relation to Cyber bullying and recently the Today show on Channel 9, discussing credit card security. Simon has a strong persistence in finding a very fast and cost-effective approach to assist cases with evidence that can be detrimental to one side based on his extensive knowledge of programming. An example of this is just in knowing that he has prepared to stand behind somebody in support of two convictions from a legal services commissioner in a state of Australia, based on a technical inaccuracy on their part, they dropped all charges. Being a Nationally Accredited Mediator, although in the court room, Simon works for the court, ultimately his goals is to help produce an outcome that joins all the dots and perhaps resolve a situation in or out of court without compromising fact.

eVestigator® predicts census cybercrime three days before warning Australia

10 August 2016 - eVestigator® - "Only 3 days after releasing the blog entry entitled below, 'Cybergeddon is here - eVestigator® Simon Smith announces the inevitable', comes the news of the 'Website for Australian census 2016 attacked' by a DoS (Denial of Service) attack. The best way to define a Denial of Service attack is for an attacker who attempts to prevent proper and legitimate users from accessing the normal use of a website by overwhelming it with requests, data, sessions, etc."

"Ethical hackers (and those unethical ones) know the limits of TCP/IP connections that are allowed on various servers - and if not protected can cause a exhaustion of the resources of the server, by flooding it with fake connections. Such attacks stop real people from getting onto the server to do what it was intended to do. This is why Cybersecurity is so important."

"I myself have written my own Denial of Service and even Distributed Denial of Service detection and blocking software that others pay tens to hundreds of thousands of dollars for. It really is quite simple. People often test websites to see if they have the proper infrastructure in place to 'put up' with such an attack. If I was investigating this, the first thing I would do would look for traces of mini tests before the incident, and that is often the way you would catch the Cyber criminal."

"I have reported on this issue officially in 'The New Daily' magazine - and as I predicted in my earlier blog Australia just is not ready. This is not a different world to what it was 10 years ago. People have chosen to ignore the same crimes being adapted differently. My view is strong. WAKE UP AUSTRALIA!"

"The published article is here and below (credited).

"It's the most simple attack": How the ABS bungled the 2016 Census
The Australian Bureau of Statistics was unprepared for the "simple" and "obvious" cyber attack that apparently shut down the Census, an internet security expert has said.
On Tuesday evening, the Census website crashed thanks to repeated "Denial of Service" (DoS) attacks, according to the ABS. A DoS attack is designed to make a network unusable by flooding it with millions of fake users.
At 7:45pm - as millions of Australians went online to complete their Census - the ABS chose to shut down the system, for fear of further DoS attacks (see a timeline of the Census night drama below).
The site remained offline all Wednesday and an update posted at 9.15pm was pessimistic about its chances of getting up and running that day.

"We continue to work with Australian Signals Directorate and our providers to get our secure online Census form back up as soon as possible," the ABS said in a statement. "A further update will be provided tomorrow [Thursday]."
It's still unclear what caused the website failure.
Cyber experts have questioned whether a DoS attack caused the online Census to shut down.
Online security researcher Dr Mike Johnstone wrote in Computerworld that it was more likely the failure was caused by too many Australians logging on to do their Census at once, rather than a DoS attack.
He conceded it may have been possible that a combination of a DoS attack and the system buckling under the weight of traffic caused the website shutdown.
But Dr Johnstone concluded: "If it's probable the Census servers simply failed under the weight of their task, then that's the most likely explanation, rather than a deliberate DDoS attack".

Australian government 'cyber security novices'
Computer forensics expert and cyber intelligence investigator Simon Smith told The New Daily that the government's lack of preparation and expertise on cyber security was proved on Census night.
"Wake up Australia, 'Cybergeddon' is here," Mr Smith said. "Australia is probably one of the weakest places in the world (cyber security-wise).
"I'm very afraid to say that we are extremely crap at protecting ourselves. It's not as if the government really put much effort into security, is my first reaction to the Census crash.

"Denial of services attacks are the most obvious attacks, they happen every day."

The ABS and minister responsible for the Census, Michael McCormack, said the attack likely came from overseas.
By Wednesday afternoon, Mr McCormack appeared to have been the subject of hacking on his own website, as News Ltd political editor Samantha Maiden confirmed to Channel Ten's The Project.
'It was a successful attack, not a hack'
Special advisor to the PM on cyber security, Alistair MacGibbon, told Sky News he did not know if the attack intended to steal information, or just to make a point about the hackers' abilities.
"It was successful because the ABS made the decision to take the website offline, because they wanted to make sure the worst case scenario [loss of data] didn't occur," Mr MacGibbon said.
He said the government believed no sensitive data was stolen.
Mr MacGibbon continually referred to the DoS as an "attack", but not a "hack", even though earlier in the day Mr McCormack refused to use the word "attack".

© The New Daily - Credit: URL

eVestigator® shows the public how they are broadcasting their identity without knowing it

A mobile phone finds and connects to Wi-Fi networks by periodically sending out "probe requests". In simple terms these are "Hello, remember me, I connected to these Wi-Fi stations previously? Anyone out there? Here is my Unique mobile phone address to check (MAC Address)". These requests includes a unique identifier called a MAC address, which while making it faster and more convenient to connect to a network, it also makes it possible to collect this information and use it to track people. Knowing your MAC address goes a long way to track your phone if it is ever lost or stolen. While not impossible to change, it is a very difficult process and probably not worth a thief's time. Turning off your Wi-Fi when you are not actively using your phone and/or have no need to access a network, stops this method of tracking while Wi-Fi is not enabled.

A second of inconvenience for a little extra security might just be worth the twinge of annoyance. There are Android apps available that automatically switch your Wi-Fi off once your leave the range of trusted networks, though I personally can handle swiping down the top menu and pressing the Wi-Fi icon myself so I haven't looked into these and prefer not to place control of my privacy into someone else's hands. For iOS apps are limited without jail-breaking your phone, though iOS 7 introduced a swipe menu with quick access to certain settings including Wi-Fi. I won't go into the technical steps of how to create a Wi-Fi monitoring system to track people as is used in some stores for marketing and research purposes but I will say it is a fairly straight forward process and needs a router or a single board computer like a Raspberry Pi with a Wi-Fi adapter. It is not just possible tracking that you should be wary of but also "free Wi-Fi" or open networks.

These networks tend to have little or no security. It gives potential attackers a way in and makes any information sent over them visible. It is why you should never log into your internet banking or secure account using McDonalds Wi-Fi, as an example. A faked or compromised access point to a network, is called a Rogue Access Point (Rogue AP). Using such a network, essentially sends any information you enter to the access point's creator giving them access to email, Facebook and whatever else you might access while online on an insecure network. It can be just to monitor or a backdoor into an otherwise secure system, even if it is a soft AP set up by an employee of a business with or without permission for easier mobile access to the business network to work off premises it behaves as a Rogue AP (Access Point).

eVestigator® draws the line between a phone and smart phone

24 April 2016 - eVestigator® - "While Apple hardware may be well-built and likely to last for years, the software is another story as Simon Smith of eVestigator® discussed with Jackson Stiles of New Daily earlier this week. Read the article here. (link on the 'The New Daily' website at the time of placing this blog - dated April 18 2016)

'A phone is a phone but a smart phone is not just a phone,' says Simon Smith. 'it is fair to say that the majority of phone users these days are smart phone users' therefore this must be considered when discussing phone in general and this is what came up recently."

"With every iOS update consistently, and so it would seem intentionally, aspects of previous coding becomes obsolete, different or removed altogether forcing iOS programmers to update their apps or risk incompatibility with new devices and operating systems. Effectively limiting the usability and life of a smart phone."

"An example of this is the iOS 9 implemented an update which restricted access to insecure websites on older phones. Although this is great for developers like myself who already use an encrypted system internally, such encryption should be part of the operating system and such encryption is welcome. However, with little to no notice to developers such an implementation caused havoc to software and their developers. 'The life expectancy of a phone is three years, in a way. It would probably hold up in a court of law (misquoted as 'life') if something went out of warranty.' you can have a phone, but you’re not going to get the most advantage and functionality out of a smart phone as technology grows because the phone is only as good as the hardware and the software they allow you to use. And sometimes you can actually get more out of the phone with the software, but they don’t let you.”

"A phone is a phone and will last as long as the hardware does but the other functionalities of a smart phone decrease and become obsolete over a far shorter period of time."




List of Australian Courts and Tribunals eVestigator can provide expert testimony

High Court of Australia
Registry - Business List
List of Sittings by Capital City

Australian Capital Territory - Courts
Family Court of Australia - Canberra Registry
Court List
Federal Court of Australia - ACT Registry
Current List
Federal Circuit Court of Australia - Family Law - Canberra List
Daily Court List
Federal Circuit Court of Australia - General Federal Law - Canberra List
Daily Court List
Magistrates Court
Current List

Tribunals/Commissions
Administrative Appeals Tribunal - ACT Registry
Current List
Fair Work Commission - Canberra
Current List

New South Wales - Courts
Search NSW court lists
Compensation Court
Current List
District Court - Sydney Civil List
Current List
District Court - Sydney Criminal List
Current List
District Court - Parramatta Civil List
Current List
District Court - Parramatta Criminal List
Current List
District Court - Penrith Criminal List
Current List
District Court - regional areas
Current List
Family Court of Australia - Sydney Registry
Court List
Family Court of Australia - Newcastle Registry
Court List
Family Court of Australia - Parramatta Registry
Court List
Federal Court of Australia - NSW Registry
Current List
Federal Circuit Court of Australia - Family Law - Sydney List
Daily Court List
Federal Circuit Court of Australia - Family Law - Newcastle List
Daily Court List
Federal Circuit Court of Australia - Family Law - Parramatta List
Daily Court List
Federal Circuit Court of Australia - Family Law - Albury Circuit
List
Daily Court List
Federal Circuit Court of Australia - Family Law - Armidale
Circuit List
Daily Court List
Federal Circuit Court of Australia - Family Law - Coffs Harbour
Circuit List
Daily Court List
Federal Circuit Court of Australia - Family Law - Dubbo Circuit List
Daily Court List
Federal Circuit Court of Australia - Family Law - Lismore Circuit List
Daily Court List
Federal Circuit Court of Australia - Family Law - Orange Circuit List
Daily Court List
Federal Circuit Court of Australia - Family Law - Port Macquarie Circuit List
Daily Court List
Federal Circuit Court of Australia - Family Law - Tamworth Circuit List
Daily Court List
Federal Circuit Court of Australia - Family Law - Wauchope Circuit List
Daily Court List
Federal Circuit Court of Australia - Family Law - Wollongong Circuit List
Daily Court List
Federal Circuit Court of Australia - General Federal Law - Sydney List
Daily Court List
Land and Environment Court
Current List
Local Courts
Current List
Supreme Court
Current List
Tribunals/Commissions
NSW Civil & Administrative Appeals Tribunal (NCAT)
Administrative and Equal Opportunity
Daily List

Consumer & Commercial Division
Hearing Lists
Appeals Panel
Hearing Lists
Fair Work Commission - Sydney
Current List
Dust Diseases Tribunal of NSW
Current List Industrial Relations Commission
Current List

Northern Territory - Courts
Family Court of Australia - Darwin Registry
Court List
Federal Court of Australia - Northern Territory Registry
Current List
Federal Circuit Court of Australia - Family Law - Darwin List
Daily Court List
Federal Circuit Court of Australia - Family Law - Alice Springs Circuit List
Circuit Court List
Federal Circuit Court of Australia - General Federal Law - Darwin List
Daily Court List
Supreme Court
Current List
Commissions
Fair Work Commission - Darwin
Current List

Queensland - Courts
Family Court of Australia - Brisbane Registry
Current List
Family Court of Australia - Townsville Registry
Current List
Federal Court of Australia - Queensland Registry
Current List
Federal Circuit Court of Australia - Family Law - Brisbane List
Daily Court List Federal Circuit Court of Australia - Family Law - Cairns List
Circuit Court List
Federal Circuit Court of Australia - Family Law - Townsville List
Weekly Court List
Federal Circuit Court of Australia - General Federal Law - Brisbane and Townsville List
Daily Court List
Queensland Courts: Supreme, District, Planning and Environment and Children's Courts
Current List
Tribunals/Commissions
Administrative Appeals Tribunal - Queensland Registry
Current List
Fair Work Commission - Brisbane
Current List

South Australia - Courts
Family Court of Australia - Adelaide Registry
Court List
Federal Court of Australia - South Australia Registry
Current List
Federal Circuit Court of Australia - Family Law - Adelaide List
Daily Court List
Federal Circuit Court of Australia - General Federal Law - Adelaide List
Daily Court List
Tribunals/Commissions Administrative Appeals Tribunal - South Australia Registry
Current List
Fair Work Commission - Adelaide
Current List

Tasmania - Courts Family Court of Australia - Hobart Registry
Court List
Federal Court of Australia - Tasmania Registry
Current List
Federal Circuit Court of Australia - Family Law - Hobart
Daily Court List
Federal Circuit Court of Australia - Family Law - Launceston
Daily Court List
Federal Circuit Court of Australia - General Federal Law - Hobart List
Daily Court List
Supreme Court of Tasmania
Current List
Tribunals/Commissions Administrative Appeals Tribunal - Tasmania Registry
Current List
Fair Work Commission - Hobart
Current List

Victoria - Courts
County Court
Civil List
Crime and Appeals List
Family Court of Australia - Melbourne Registry
Court List
Family Court of Australia - Dandenong Registry
Court List
Federal Court of Australia - Victoria Registry
Current List
Federal Circuit Court of Australia - Family Law - Melbourne List
Daily Court List
Federal Circuit Court of Australia - Family Law - Dandenong List
Daily Court List
Federal Circuit Court of Australia - General Federal Law - Melbourne List
Daily Court List
The Magistrates Court of Victoria
Current List
Supreme Court of Victoria
Current List
Tribunals/Commissions Administrative Appeals Tribunal - Victoria Registry
Current List
Fair Work Commission- Melbourne
Current List
Civil and Administrative Tribunal
Current List

Western Australia - Courts
District Court of Western Australia
Current List
Family Court of Western Australia
Daily Court List
Federal Court of Australia - Western Australia Registry
Current List
Federal Circuit Court of Australia - General Federal Law - Perth List
Daily Court List
Supreme Court of Western Australia
Current Lists
Tribunals/Commissions Administrative Appeals Tribunal - Western Australia Registry
Current List
Fair Work Commission - Perth
Current List


CyberBlog™ eVestigator® provides anonymised case stories and experience
(not legal advice)

Go to the eVestigator® regularly updated Cyber-Blog™
Expert samples of how he can help

Cyber Security, Cyber Bullying, Workplace Issues, Criminal Success, Civil Success, Digital Forensic Expert Evidence and so much more..

His successes - not even a fraction, check testimonials and request advice

He has saved people hundreds of thousands of dollars in establishing hard facts prior to and in avoidance of litigation. Such facts are unknown to the general community and the investment in his services has proven this over and over again. Human testimonials are available.

The Industry

As a successful Expert Programmer and former Lecturer of Advanced Programming and Entrepreneur at a very young age, he grew up with the birth of the internet and knows the skeleton foundations of where to look, making this statement fact, proving successful outcomes in many cases.

Cyber Crime

Statute and treaty law both refer to cybercrime. In Australia, cybercrime has a narrow statutory meaning as used in the Cybercrime Act 2001 (Cwlth), which details offences against computer data and systems. However, a broad meaning is given to cybercrime at an international level. In the Council of Europe's Cybercrime Treaty (EST no. 185), cybercrime is used as an umbrella term to refer to an array of criminal activity including offences against computer data and systems, computer-related offences, content offences, and copyright offences. This wide definition of cybercrime overlaps in part with general offence categories that need not be ICT dependent, such as white-collar crime and economic crime as described in Grabosky P & Sutton A 1989, Stains on a white collar. Sydney: Federation Press.

High tech crime

High tech crime is a common label used by both the Australian High Tech Crime Centre and by the National High Tech Crime Unit in the United Kingdom. These agencies deal with crimes that rely on the use of ICT, or which target ICT equipment, data and services. Their focus is on the complex networking capacity of ICT, which creates a previously unimaginable platform for committing and investigating criminal activity. High tech emphasises the role of ICT in the commission of the offence. Different practical considerations arise according to whether ICT equipment, services or data are the object of the offence, or whether ICT is the tool for the commission of a 'material component of the offence'.


©Commonwealth of Australia - Australia Cyber Crime & Security Survey Report 2015

eVestigator® (a 100% positive result success rate to date)

Civil, Criminal, Corporate Factual & Digital Forensic Investigations, Fact Finding, Data Recovery, Bug Detection (iPhone, Android, Surveillance & Computer Forensic Expert), Litigation Support, Corporate Security Penetration Testing, Intelligence

Hi I'm Simon Smith, Cyber Forensics Expert Court Witness, Expert Investigator and the eVestigator®. I have worked on too many high, middle and low profile cases to count. This page only lists very few. It is amazing to see how much difference fact makes and how much money it can save a client. I often see clients who have wasted $100,000+ on litigation and got nowhere, and then I have a result for them (in one particular case) in just 2 weeks. That is how I work. I am just the person, with the independence, skills, knowledge and background, equipped as a specialist forensic, qualified Private Investigator to trace conduct back to its source, to affirm, expand on or re-create a scenario of alleged conduct for you.

I was born in an era of technology and rapid advancement, I manage and have managed enormous enterprises for over 20 years+ - programming in every language combined with strong and proven civil, criminal, factual and government investigation skills and credibility, having given intelligence to Ombudsman, Ministers and the Auditor-General. My knowledge and unique experience gives me that competitive edge to give independent, expertly obtained fact.

When I was 20, I started a three-year stint as a lecturer in Advanced Computer Programming at Swinburne University of Technology. I was also employed as an Analyst Programmer at the time, I already had about 10 years (mostly childhood) experience of programming in earlier languages and programming a server capable of handling the very first real commercial internet traffic. eCrime and White Collar Fraud, eFraud, Cyber-Squatting, Cyber-Legal assistance, Cyber-Stalking, Cyber Attacks (denial of service and more), Intellectual Property Breaches and so much more have grown from systemic mistakes made in the growth of the public internet/intranets over the years, and *will* continue. As the inventor of computer-reliant patents, I am making history and was praised by three Federal Court Judges in the full Federal Court of Australia in a case related to defeating the Commissioner of Patents attempt to revoke a patent.

I am an expert in software related IP marks. I am in a position to demonstrate algorithms that can assist a Court or jury with understanding a crime or offence in simple terms. With experience, credibility (Commonwealth FDRP, NMAS Mediator, CMC, Forensic Investigator and more) alongside commercial experience programming and investigating software engineering holes, and expert programming on all platforms spanning 20 years+, I can help illustrate to the court, justice and/or jury, beyond reasonable doubt, how, when and why events occur in simple terms to affirm intent and conduct.

Corporate & Government Forensic Investigations (Any kind of investigation or SCAM discovery including corruption, fraud and more)

I am independent and provide a completely impartial service. I can and have used my abilities to assist the government in many ways by providing external investigations and forensic dispute resolution. I specialise in high-tech white collar fraud and can and have identified system issues of corruption in government departments, be it influenced internally or externally. Rightly so, the public expect the government act in a way consistent with their charters and legislation and the guidance of their Ministers.

I have had exclusive experience in unveiling fraud in government departments and providing intelligence to senior independent officers like the Auditor-General and the Ombudsman. My Mediation skills are often used in conjunction with my forensic programming/reverse programming skills to determine fact to apply policy.------- In the corporate world Cyber-crime, Cyber-stalking, Cyber-bullying, Facebook abuse, email abuse, YouTube abuse and cyber-related staff harassment/stalking has become a systemically increasing problem for internal personnel as well as the corporation.

I have assisted in cases by gathering intelligence via the new world of social media, I assisted in jailing a person in Victoria for the serious offence of stalking. It is important to trust your employees and a breach of that trust must not go unnoticed. There are three main qualities that when combined, produce absolutely super cost effective output. See below.
"We do not have to all be experts, sometimes common sense is enough". eVestigator® - Simon Smith

Keep Reading...

Why Me? - I'm not just a Forensic Cyber Expert

I am also a Nationally Accredited Mediator, Family Dispute Resolution Practitioner, Reverse Engineering Expert and Cyber Security / Cyber-Legal Expert. I also have Graduate Diploma level skills Digital Education and Management and have a strong business understanding, as well as businesses experience when it comes to disputes and how to save money and not fall into a loop where you spend money and get nowhere. I have had significant experience in IP disputes, Patents and Trademarks and I am an expert in the Education Industry, as well as a commercial authorised Apple, Android and Certified Windows Developer, having made several commercial applications and having built several multi-million dollar enterprises. I understand, which is where my advocacy service assist greatly, and saves you or your client money.

I am a Forensic Private Investigator qualified under the Victoria Police Private Investigator Licencing Regulation Department - Simon Smith t/as eVestigator

This gives me the skills to see through the lines, get fact, without fear or favour, whether its for or against the government or for or against a civil entity, I find fact.

I am a Nationally Accredited Mediator accredited by the MSB under the NMAS and Commonwealth Appointed Family Dispute Resolution Practitioner

These skills are an absolute necessity and are often what is missing with other professionals. It enables me to determine the suitable jurisdiction and to better understand the dispute and resolutions, which saves you or your client money, and my client's praise this ability. Especially with family situations, as in many cases an FDRP, in normal circumstances, is the only person that can sign a s60(i) under the Family Law Act granting permission to enter proceedings involving children after mediation.

I am a Professional Advocate

This is the most important part. I am happy to say that by joining all my skills together, and gaining permission from my clients to work with others like Lawyers, Barristers, Government Authorities, the Police, I can guide them through to an actual total outcome. Many people deliver services in pieces, and you either end up wasting your money with nothing, or having to re-explain everything again multiple times costing you more money. I like to see them through. My clients have told me I have saved them hundreds of thousands of dollars, and come to an expedited outcome after years of fighting.



Success (Samples have been de-Identified)

Note: This is only a very early stage layout of some successes. There has been many more over the years and many more happening almost daily. They tend to now appear either anonymously or via way of comment, updated regularly as time permits in both the blog or evident in the numerous testimonials. Please make sure you check them out.


I love my job - the best way to show competence is with fact, so here is just a sample of de-identified cases Simon Smith, Australia's very own eVestigator® has been involved in.

I found the IP identity of the fake Microsoft Tech Support Scammer (or one of them - and gave it to ACORN). Now this was interesting. More than 90% of my clients come to me frustrated after not having any luck with the police or ability to make a statement. This one particular client (a very smart man) received a call one day and being the trusting person he is, he was strongly led to believe his computer was infected with a virus and Microsoft have detected it and are calling him to fix the problem. Everyone has different thresholds and trust levels but I can understand how an older gentleman would believe this could be the case. To cut a long story short the person with an Indian accent got him to install remote control software on his machine, allowing the 'hacker' to install malware, giving full access to his computer when connected and online at anytime. Plus, he thought he would throw in a low level password and bribe the gentleman to pay money in order for Microsoft to remove the password from his computer.

The gentleman spent $1500 (it could have been more) to this 'entity' and nothing happened. They still however said they needed more money. The gentleman then reported the crime to the police who did not take a statement despite it being a crime under the Crimes Act 1958, and sent him to ACORN. ACORN (people believe) is a division of the police force to report and act on cyber-crime. The gentleman swiftly received notification from ACORN with a fact sheet and some general advice and said nothing could be done.

This is when I got involved. When he presented his laptop to me I was able to take off the important data and remove the entire malware/virus, and even further since they were still trying to get money out of him, I decided to locate them. Via proprietary techniques, I attained the criminals IP Address, IP, Mobile device make, firmware which was in India. As it turns out, ACORN ended up making a complaint about me for not telling them what I found out - saying I had a duty to report it. I did tell my client to report it but must admit was taken back from that approach and was insulted. Nevertheless I got over it, and sent ACORN the identifying details so they 'might' take action. What happened to Interpol? The police have always had the ability to report international crimes. I have seen letters from customers where ACORN have said "we cannot investigate international crimes" or words to that effect. So, I solved perhaps one of Australia's biggest SCAM's that ever existed. My client thanked me profusely and that was relieving. I ended up taking it further with ACORN but at the end of the day it is a small world and a lot of crime and this was something that they may have been too busy for. Nevertheless I continue to help people get real justice.

I uncovered one of the largest DDOS cyber-attacks (with this case being followed closely in the media) involving defamation of a celebrity. I uncovered and traced an underground crime syndicate that was responsible for spamming over 24 million people at the request of a disgruntled ex-business partner. I found the link to identify the accused on the balance of probability. This was a massive find, with no leads, and with sheer investigative work, a series of events have led to what could be considered extreme reasonable doubt against the accuser's story. The case is privileged and ongoing, no more generic information can be provided in this matter.

I was approached on behalf of one of the world's largest insurance companies to assist in the underwriting, in conjunction with their solicitors, of new Cyber-Security and Indemnity policies, the development of new risks in this ever changing industry, requesting assistance in indemnity wording and risk and creating PDS's around new and innovative white collar fraud and cyber-attacks in the media at the moment.

I was requested to analyse voice biometrics to determine if a suspect had made a hoax bomb threat by telephone and was requested to advise the lawyer of the accused on what should technically be requested from the police and gave intelligence as to the voice codec and causing reasonable doubt of biometric distortion in a compressive lossy voice algorithm. This was a very serious case with charges under the new Anti-Terrorism laws.

I was recently approached by an individual seeking help after being accused of several counts of hearsay sexual offenses leading back over eight years, with the evidence reliant on MSN and Facebook data. This case is pending; however as the accused was pleading innocent, I was able to demonstrate beyond reasonable doubt the unreliability of supposed forensic data relying on old MSN messages.

I was approached and subsequently investigated and compiled an expert report in conjunction with a solicitor's privacy policy detailing the privacy implications, after inspection of the source code and auditing of the non-identifiable hash algorithms that intercepted mobile Wi-Fi beacon signals for the purpose of tracking retail customers, I gave security and privacy protection recommendations based on my findings.

I worked with State Regulators, providing intelligence which led to two convictions, stopping an unqualified electrician performing further illegal, unsafe and non-compliant electrical work. He was convicted and fined.

I investigated and provided evidence to ASIC of the deceitful and misleading actions of a Director who allegedly breached the Corporations Act and committed an act of Bankruptcy. He on behalf of his company allegedly applied for deregistration during court proceedings to avoid paying debts arising from judgment against him. I supplied a brief of evidence which is now with the CDPP for prosecution. I also achieved reinstatement of the closed company. The company is now in liquidation.

I uncovered fraud and corrupt conduct within a government department and provided a full investigative report to the Auditor-General and Ombudsman, proving a breach to the Minister's Gazette pricing structures in the education regulatory instrument unveiling over $7m of overcharging of education stakeholders, as well as affirming in person with the Auditor-General and Minister identical evidence found in his audit, uncovering identical breaches to legislation.

I have since uncovered corrupt and improper conduct on the part of the Independent Broad-based Anti-Corruption Commission and the Department of Justice, which will be subject to further legal action initiated by myself.

I have uncovered at least five dating scams involving the usual request for money to 'come to Australia' to meet their new love but never having enough money. I was involved in working with Western Union to take this to the police as a crime to stop the conduct.

I have acted for a high profile corporate client who had been cyber-stalked for five years, living in terror, with the police and their High-tech Crime division investigating without success. After just two weeks I found the accused (via social media, cyber methods and traditional investigative techniques) and my evidence later helped prosecute and convict the stalker under the strict Victorian Anti-stalking laws.

As an expert in social media and cyber-stalking cases, I assisted the NSW police via Interpol in tracking down the stalker of a popular YouTuber to Scotland. And so working with the Scottish police the stalking was concluded.

I have assisted individuals extensively in finding their cyber-stalkers via Facebook, dating websites and email scams, using email tracing and cyber intelligence mechanisms. When in all situations the customer was informed by police that nothing could be done.

In an impersonation case, a man purported to steal the identity of an individual and consequently put up a dating profile soliciting gay sex and sending interested parties to the victim's address. The suspect had blocked his IP address and was difficult to track but using forensic tracking I was able to identify the address of the accused, leading to his arrest.

15 years ago I discovered a flaw in (one of the world's largest accounting software companies) that revealed credit card details in the hexadecimal binary of the unencrypted data file and alerted the producers of the software to the problem.

My mediation skills are often also used in conjunction with my forensic programming/reverse programming skills to determine fact to apply policy.
-"If only you could see information as a jigsaw, releasing via Social Media and its risks could be the final piece". eVestigator® - Simon Smith

Some case studies are subject to Non-Disclosure agreements. Please contact me for a massive list of experience and real Success. My work speaks for itself. Looking for a testimony from a real corporate client who was stalked for five years, living in terror, with the police and their High-tech Crime division investigating without success? After just two weeks I found the accused (via social media, cyber methods and traditional investigative techniques) and my evidence later helped prosecute and convict the stalker under the strict Victorian Anti-stalking laws. Contact: Lifestyle Portraits, Darren Tilnak

Real Life Practical Experience and Qualifications

Below is a redacted SAMPLE of some of my Qualifications/PD (Excluding Case Studies/Experience/Appointments). It is relevant to note that Cyber-Threats in my view is the new world war. New hacking methods are created, and smarter e-Crime is committed day by day. There is not one degree one could do without the knowledge of such degree being expired at conclusion. eVestigator® has a magnitude of Nationally Accredited and Professional Development (Some endorsed by Charles Sturt University) to maintain currency. I grew up with the birth of the internet and every day cases bring new threats that may not have existed yesterday. My work and customer feedback speaks for itself. Please find below a sample of some of the official Qualifications and PD I have undertaken. Mostly, I teach others Cyber-Security trends, and this is something that is popular in America but lacking in Australia's training system. Children should be taught about current cyber risks in primary school as (from experience) the exposure with social networking is so open, people do not realise how much intelligence someone like myself could gain from merely a Facebook profile. This is something we are working on, in educating Australia. There will be more on this shortly.

Professional development is often maintained via world renowned Udemy platform. Udemy has been discussed in The New York Times, The China Post, Fast Company, the BBC and TechCrunch, with much of its coursework originating from Stanford University Expert material noting "Udemy offers an experience that rivals the real classroom, and should prove to be a useful utility for teachers and students of all subject matters.


Since I was just an 11yr boy I have been programming in almost every language on every platform available. My brothers played games, I made them! Aside from the 25+ years of HANDS ON major computer programming and cyber security experience, I developed many applications. From web servers, mail servers, my own protocols, all low level, design - pixel by pixel, code line by line, nothing like the 'wizard' and 'open source' attempts of lazy coder attempts today. At 19, whilst employed as an Analyst Programmer and working on integration with a VERY WELL KNOWN commercial accounting package for our CRM software, I found a major security flaw in the raw binary of their database exposing credit card numbers, that's where my interest for cyber security investigative 'programming' developed. Having already becoming a growing expert my commercial experience was like facing a truck head on. As at the same time, after VCE I was in the top 3% in Australia in my VCE (Common Assessment Tasks) for Information Systems and Technology (4 A+++), then after a short stint flying through High Distinctions at first year Uni, I was hand picked and employed immediately to work for real projects as an Analyst Programmer, then Senior Analyst Programmer, and later became a CEO, Assessor, CIO and CSIO, PI, and Forensic Investigator/Expert Witness. In those earlier days in addition to working as an Analyst Programmer I was in demand by Swinburne University as one of the very few who could teach the all new .NET advanced programming suite sessionally and did so for a period of about 4 years after hours. I shortly opened my own international businesses in the Voice Analysis/VOIP medico-legal industries. I programmed handheld devices, multi-million dollar corporate software and systems widely used by physicians overseas to dictate via Windows CE Pocket PC's (way before the iPhone and Android existed) that interacted with custom typist equipment for dictation and transcription.

Since then I built some of Australia's largest IT companies and educational institutes and gained recognition of my expertise both before, during and after my practical experience - calling from the golden principles of expertise from what you cannot learn at school - but what was embedded in me since 11 years old - first programming on an Amstrad CPC 464 64kb tape deck machine. I have seen the entire life cycle of today's computer systems file systems and further, from the perspective of the consumer birth of the internet and have shared this knowledge and lead teams of up to 50 people, developed major commercial applications, built 2 of Australia's largest training institutes, a Computer Implemented Software Patent, and am considered a master in programming principles and reverse ethical hacking. From understanding the roots of programming, something that is not taught these days, I understand client needs, and can understand the full dynamics of source code layers (as they have evolved), enabling me to have an investigative advantage in any matter relating to computer crime or computer related fraud.

I am especially useful in white collar crimes, cyber stalking, cyber harassment, and reverse IP tracing. Much of the API programming tools I have created over the years are used by millions of people all over the world by 'other programmers' as software plug-ins for Microsoft (IE/Spartan/Edge/Surface Pro/Windows Phone), Apple (iPhone/iPad/iTunes), VLC, Real One, and other major vendors. I have always been the programmer for programmers. I have been asked to give expert opinion in cases involving IP theft and high-tech crime requiring analysis code line by line and contracts involving disputes over source code theft and disputes, and I that is one of the reasons why I can attain forensic data that many cannot when it comes to situations where most people give up when they cannot get an IP address on a silver platter. I have succeeded in many cases, because there are many more ways to locate a person who wishes to remain anonymous who is damaging a reputation or company.

Memberships, Affiliations & Appointments...

Victoria Police Licensed Individual Private Investigator (PI) - Simon Joseph Smith
Nationally Accredited Mediatior (NAM)
Commonwealth Appointed Family Dispute Resolution Practitioner (FDRP) and Assessor of Grad.Dip FDRP - Family Court Mediations
Victoria Society for Computers and Law (VSCL)
Information Systems Security Association, Inc (ISSA)
DEFCON® member and cyber intelligence supplier and contributor
International Association of Software Architects (IASA) - Member
Commonwealth Appointed Marriage Celebrant, Family Law Division - Attorney-General's Department

20 years+ industry experience as a Master Computer programmer covering all areas plus...

CWHH - Certified White Hat Hacker, Clickjacking, Cross Site Request Forgery, Cross-Site Request Forgery (CSRF), Cross-site Scripting (XSS), CSRF, Documentation - Oracle VM VirtualBox, File Inclusion, Google Hacking, Google Hacking Database, GHDB, Google Dorks, HII_Remote_and_Local_File_Inclusion_Vulnerabilities.pdf, How to do Cookie Stealing with Cross site Scripting Vulnerability ? : XSS Tutorials| Learn How to Hack| Ethical Hacking, Information Gathering, Intro To Web Apps, Kali Basics, Kali Linux | Rebirth of BackTrack, the Penetration Testing Distribution., Offline Windows pw & reg-editor, bootdisk, Onionland, Password crackers - SecTools Top Network Security Tools, Password Cracking, Phishing, Remote File Inclusion, Sandbox (computer security) - Wikipedia, the free encyclopedia, Sandboxie, Session Hijacking, Session hijacking attack, SHODAN - Computer Search Engine, Social Engineering, Social Engineering: What It Is and How to Help Protect Yourself, SQL Injection, SQLI, Step-by-step tutorial to install Kon-Boot on USB., Virtual machine, Web App Pentesting, What Are Web Applications?, What is Phishing | Phishing Scams | Report Phishing Scams, WHOIS Search, Domain Name, Website, and IP Tools - Who.is, Wifi Packet Capturing / Session Hijacking Using Wireshark ≈ Packet Storm, Windows Hacking, Introduction, Google Hacking Theory, Google Hacking Practical, Shodan, Shodan Practical, Deep Dark Web, Sandboxing and Virtual Machines PDF, Sandboxing, Sandboxing Practical, Sandboxie - Part 2, Virtual Machines, Information Gathering Theory, Virtual Machines Practical, Virtual Box - Introduction, Virtual Box - Part 2, What is a Web Application ?, Web Application Pentesting., Sql Injection Theory, Sql Injection Practical, CSRF Theory, CSRF Practical, Click Jacking Theory, Information Gathering Practical, Click Jacking Practical, File Inclusion Theory, File Inclusion Practical (LFI), File Inclusion Practical (RFI), XSS Theory, XSS Practical (Reflected), XSS Practical (Stored), Kali Basics Theory, Kali Basics Practical, Social Engineering, Password Cracking Theory, Phishing Theory, Phishing Practical Part 1, Phishing Practical Part 2, Windows Hacking Theory, Windows Hacking Practical (Konboot), Windows Hacking Practical (Offline Windows Password & Registry Editor), Intercepting WIFI, Defending against ARP Poisoning(Wifi) on Windows Machine, Defending against ARP Poisoning attack on Win Machine(XARP Tool), Defending against ARP poisoning-WIFI attack(on Android Mobile), Password Cracking Practical, Linux passwd cracking - John the ripper, Session Hijacking Theory, Session Hijacking Using XSS, Session Hijacking Using Wireshark, Deep Dark Web., Information Gathering., Intercepting Wifi with Mobile/Computer - ARP Poisoining, Introduction, Kali Basics, Password Cracking Techniques, Sandboxing and Virtual Machines.
Certified Cyber Investigative Expert (CCIE) - McAfee Institute - Expert Level
McAfee Institute Inc., is a privately held online education company in the U.S. providing professional development and training in the areas of cyber investigations, law enforcement, loss prevention, fraud investigations, deception detection, and leadership. The McAfee Institute has partnered with the Dept of Homeland Securities National Initiative for Cybersecurity Careers and Studies (NICCS) and is listed on their site as a provider of professional certifications in this space. The company was one of the 101 Chicago’s Best & Brightest companies to work for in 2014.[8] On the list of Inc. 500 Fastest Growing Companies, McAfee Institute was ranked 34th overall – 1st in education and 1st in Illinois – in the year 2013 and was ranked 213th overall, 5th in education, and 10th in Illinois in the year 2014.
Advanced Diploma of Integrated Risk Management
Diploma of Database Design and Development
Advanced Diploma of Public Safety (Community Safety)
UNSW Global Pty. Ltd - Expert Witness Training Certificate
Diploma of Website Development
Master of Information Management
Master of Computer Forensics
Master of Cyber Security
Graduate Certificate in Digital Education
Advanced Diploma of Government (Workplace inspection/Investigations/Fraud control)
Certificate III in Investigative Services (Simon Smith is a Licenced Private Investigator)