CCC has been providing high-quality investigation services to clients since 1996. Where the experience of former members of new Scotland Yard’s Computer Crime Unit and Company Fraud Department come to bear. As detectives working at NSY, they were involved with some of the largest and most complex crimes of their times. Where circumstances have dictated, officers worked independently, while being part of a team. That experience remains with those at CCC equally at home, working either independently or as part of a team. The investigations we have undertaken are many and varied, and include the following areas:

  • Asset Tracing
  • Asset Stripping
  • Banking, On-shore & Off-shore
  • Blackmail
  • Company Fraud
  • Computer Forensics
  • Domestic Violence
  • Due Diligence
  • Hostile Takeover
  • Industrial Espionage
  • Intellectual Property (IP Theft)
  • Mergers & Acquisitions
  • Murder
  • Sexual Abuse
  • Share Ownership
  • Shipping Frauds
  • Unauthorised Access to computer networks

We understand how sensitive inquiries of any kind can be to all parties and that badly handled or insensitive investigations can cause more damage than the original incident. All our investigations are undertaken in a considered and controlled manner, where the potential risk to reputation is always at the forefront of our thoughts when making suggestions as to a particular course of action that may be required.

We also appreciate that in many, if not all cases where it may not be possible to conclusively prove that an individual was responsible for an incident. It is just as important to prove they were not responsible. Especially where there is an need for trust between the parties to remain.

Although many of our investigations start with the examination of digital devices. We can also undertake more traditional elements of investigations, such as due diligence or risk assessments. As well as having access to other investigative services that include bespoke qualitative due diligence services internationally, bug sweeps or TSCM (Technical Surveillance Counter-Measures), covert surveillance, vehicle tracking, through a long-standing trusted partner.

For more information on any of our capabilities, please email

Open Source Intelligence OSINT - Computer Crime Consultants

Open Source Intelligence (OSINT)

Open Source Intelligence (OSINT) is the application of information gathering from public sources, which includes the collection, processing and analysis of data. With a view to utilising the results in the best possible way. At CCC, we understand the diversity of data sources and how to apply information identified.

Sources information include databases, published records, patent records and other data available to the public, effectively garnering such information, may require a variety of specialist techniques.

Where sources of information are likely to include social media and there is a possibility that the information could be used for litigation, there is a need to ensure that this information is from a legitimate source, accurate and has been obtained in an acceptable manner, with appropriate records being kept. Simply taking a series of screenshots while taking notes on a site may not be either sound or acceptable. Social media platforms are not designed to be ‘imaged or copied’ using conventional methods. Our tools and techniques meet those needs.

Most intelligence gathering exercises typically fall into the following areas:

  • Corporate
  • Criminal
  • Personal
  • Political

As such, these elements often form part of a case. Whether a fraud investigation, asset tracing enquiry or part of a larger and more comprehensive due diligence exercise. It is a discipline that we have become proficient at priding ourselves on being able to provide bespoke services that concentrate on a client’s specific needs within their specific arenas.

The aggregation of data from a variety of sources exponentially increases value

For more information regarding this service, please email

Blackmail - Personal - Southern Europe


We were contacted by our clients who received an SMS message from an unknown number demanding several million euros payment. Suggesting they could place compromising information into the public that that would cause even greater losses. The Client’s request was that those responsible for sending the message the identified and dealt with in such a way that they were no longer a threat and that the matter did not find its way into the public domain.


Through a series of communications with the potential blackmailers, limited evidence was provided to suggest they could potentially damage both our client’s wealth and reputation.

Enquiries in relation to the phone number associated with the messages. Only identified, the likely service provider, country of origin and that the number was from a range associated with ‘pay as you go’ services.

The blackmailers were then informed that the client had appointed an agent to act on their behalf, with whom they would have to deal with in the future, which they agreed too.

As a result, an e-mail account with an appropriate domain name, together with mobile communications, was set up. That, if searched for, would appear to be in another country, but one which was well known to be associated with the client.

A series of further SMS communications between the parties that took place, implying that we wanted further proof of the evidence they had before any payments would be made. Because of the limitations of SMS messaging, the blackmailers agreed to communicate via anonymized e-mail, sending attachments they could not send via the phone. The information contained within the messages provided sufficient information to trace messages being sent to an internet café they were using in southern Europe.

Physical surveillance of the café was organised to coincide with an email response being sent and telephone call being made to the number provided, which led to identifying four individuals responsible for the attempted blackmail. One of whom was a former employee of the client.

Local legislation allowed for ex-parte orders to be obtained, allowing for all copies of potentially damaging material and electronic storage devices could be seized for destruction.

The blackmailers were also required to sign NDA’s or risk the prospect of a lengthy term of imprisonment.


When the damaging material was eventually identified and examined forensically, it was found to be composite pictures of the client together with other compromising material that had been morphed together using sophisticated techniques that were not apparent to the naked eye. With copies of the original images being found in an encrypted file on one of the blackmailer’s laptops.

For more information regarding any of the services associated with this assignment, please email

Murder - Blackmail - Finance Sector


The finance director of an East European branch of a UK company had been found dead locked in his car, in a forested area favoured by lovers, some distance from both his home and normal place of work. The cause of death a single shot to the head.

Having ‘investigated’ the matter, the local police had classified the case as suicide and the matter had been closed. Despite the car being locked and no firearm or suicide note being found either in or near the vehicle.

Having previously worked for the company on another matter, CCC was asked to assist with the investigation, both in relation to the interviewing of employees and the examination of computers used by the deceased. The purpose of which was to establish the real reason for the individual’s death and whether any work-related matters had a bearing.


Once at the regional offices, it soon became clear that the local management appeared resentful and extremely economical with the truth. Preventing access to the victim’s office, stating that the victim’s workstation had been reallocated and that his laptop and mobile phone had gone missing.

It was decided that the only way of getting access to the workstation was to visit the premises when closed overnight and covertly get a forensic copy of the workstation’s hard disk drive for analysis. Having surreptitiously purloined a spare set of office keys and armed with the alarm codes provided by head office, we could get a copy of the hard disk drive with no one knowing.

Forensic Examination

An analysis of the contents identified:

  • Numerous files that had been deleted from the system on the day of our arrival.
  • Within the deleted files were several spreadsheets.
  • Also found in some file slack were partial elements of falsely created invoices.
  • Elements of communication between the victim and others, containing the location where the victim had been found.

Based on information found on the computer and several additional enquiries, it was possible to show that:

  • The victim was being blackmailed.
  • In order to service the extortion, he had been creating false records, including invoices, to cover the fact that he had been diverting company monies to make the pay-offs.
  • The location where the body was found appeared to be the regular meeting place for monies to change hands.

Further analysis of the false invoices identified a loss close to £1 million.

Further investigation into the background of the victim’s background and lifestyle strongly suggested that he had been involved with those ultimately responsible for blackmailing him for a number of years, and that they were closely associated with a local organised crime syndicate. And having reached a stage where he either refused or was unable to make any further payments, he was murdered to preserve the identity of those responsible. This it transpires was also the reason for the Police’s classification of suicide as opposed to murder.


Given the apparent collusion between local police and organised crime, together with other company specific risk factors. No further action has ever been taken.

For more information regarding any of the services associated with this assignment, please email

Scroll to Top