hi,
assume someone got raided for unknown reason, besides police saying "signs pointing in ur direction", and they take basically everything of electronics, and demanded privacy while searching (not allowing anyone to get near).
after leaving, they left one computer.
what is the chance, if at all likely, that the computer they left behind for unknown reason, is actually bugged/backdoored? As in a tool that would evade common packet loggers, would not be visible from Win event logs etc... - no signs of compromise.
I know that "good" viruses are not detected by antivirs/firewalls, not before after a while anyway (and mainly non-targeted/mass-spreading ones, then).
What is the likelihood of government agents using such an undetected tool to gather intel? This is in Europe.
The case appears small (drugs arriving in neighbors mailboxes), but it apparently is taken very seriously and police being very aggressive and hostile. A dozen armed people parking in all nearby driveways and spending a good part of the day doing "their thing" (whatever it was - their search was very thorough)
Much chance that the privacy they demanded being left alone while searching and seizing was to.. for example subtly power on the comp, yank in a pre-configured usb-stick with some bios-firmware hardware keylogger, or something like that.. ?
What level of paranoia is warranted.
Also. Assume something like a Truecrypt container was mounted with various other nested encrypted containers,truecrypt disk mounted during initial LEO penetration..
but power got cut (and then remained off for several minutes at least).
- Can any keys, data content as mounted, or other sensitive data, be easily or at all recovered from Windows' memory dump or such, following such a sudden power outage (pulling the plug), or is "cold boot attack" and acting fast as such, the only way?
Any difference in recovery as such with SSD vs magnetic/normal-type hard drives?
How long back in time (in regards to internet traffic) to consider it likely they are digging, and how extensively?
It's been silent for months now. Every day I am just waiting for them to return... I am depressed and very much bothered by this situation, mostly the unknowns..
Note, there was no arrest, merely detained during the search/seizure. I fear what is to come, though .. but not knowing much it's hard to say.
I really want to know how likely it is that local cops, for such a relatively small (imo.) case, does a "james bond"-maneuver and installs some bugs, rootkits or such.. if at all, or that just paranoia?
Thanks for any input!
hey i would be paranoid as shit if that happened to me too