IP Theft


CCC has been providing high-quality investigation services to clients since 1996. Where the experience of former members of new Scotland Yard’s Computer Crime Unit and Company Fraud Department come to bear. As detectives working at NSY, they were involved with some of the largest and most complex crimes of their times. Where circumstances have dictated, officers worked independently, while being part of a team. That experience remains with those at CCC equally at home, working either independently or as part of a team. The investigations we have undertaken are many and varied, and include the following areas:

  • Asset Tracing
  • Asset Stripping
  • Banking, On-shore & Off-shore
  • Blackmail
  • Company Fraud
  • Computer Forensics
  • Domestic Violence
  • Due Diligence
  • Hostile Takeover
  • Industrial Espionage
  • Intellectual Property (IP Theft)
  • Mergers & Acquisitions
  • Murder
  • Sexual Abuse
  • Share Ownership
  • Shipping Frauds
  • Unauthorised Access to computer networks

We understand how sensitive inquiries of any kind can be to all parties and that badly handled or insensitive investigations can cause more damage than the original incident. All our investigations are undertaken in a considered and controlled manner, where the potential risk to reputation is always at the forefront of our thoughts when making suggestions as to a particular course of action that may be required.

We also appreciate that in many, if not all cases where it may not be possible to conclusively prove that an individual was responsible for an incident. It is just as important to prove they were not responsible. Especially where there is an need for trust between the parties to remain.

Although many of our investigations start with the examination of digital devices. We can also undertake more traditional elements of investigations, such as due diligence or risk assessments. As well as having access to other investigative services that include bespoke qualitative due diligence services internationally, bug sweeps or TSCM (Technical Surveillance Counter-Measures), covert surveillance, vehicle tracking, through a long-standing trusted partner.

For more information on any of our capabilities, please email contact@ccc-ltd.com

Open Source Intelligence OSINT - Computer Crime Consultants

Open Source Intelligence (OSINT)

Open Source Intelligence (OSINT) is the application of information gathering from public sources, which includes the collection, processing and analysis of data. With a view to utilising the results in the best possible way. At CCC, we understand the diversity of data sources and how to apply information identified.

Sources information include databases, published records, patent records and other data available to the public, effectively garnering such information, may require a variety of specialist techniques.

Where sources of information are likely to include social media and there is a possibility that the information could be used for litigation, there is a need to ensure that this information is from a legitimate source, accurate and has been obtained in an acceptable manner, with appropriate records being kept. Simply taking a series of screenshots while taking notes on a site may not be either sound or acceptable. Social media platforms are not designed to be ‘imaged or copied’ using conventional methods. Our tools and techniques meet those needs.

Most intelligence gathering exercises typically fall into the following areas:

  • Corporate
  • Criminal
  • Personal
  • Political

As such, these elements often form part of a case. Whether a fraud investigation, asset tracing enquiry or part of a larger and more comprehensive due diligence exercise. It is a discipline that we have become proficient at priding ourselves on being able to provide bespoke services that concentrate on a client’s specific needs within their specific arenas.

The aggregation of data from a variety of sources exponentially increases value

For more information regarding this service, please email contact@ccc-ltd.com

Industrial Espionage – Consumer Sector - North America


As part of a bi-annual internal security audit undertaken by our client. We were asked to confirm the findings of a report which stated that no abnormal activity had been identified during a review of firewall and router logs.

During our review, one anomaly we felt warranted further investigation was that for the preceding month, on the same three days of the week at 3am, the same workstation came to life. The initial review attributing the activity to a poorly configured ‘at’ command that did not warrant further investigation.


It transpired that the workstation in question was in one of the few areas it was possible to get to, without passing CCTV cameras at the main entrances, or main walkways and thoroughfares within the facility.

CCC was asked to monitor activity emanating from the workstation, as well as reviewing historical data. From an examination of the historical data, it was possible to determine that the activity had not previously occurred, whilst electronic monitoring of the machine identified additional human activity.

Further monitoring showed that the user was targeting systems specifically used in relation to the research and development of new products. It was also possible to determine that an authorised user’s of those systems credentials was being used to gain access to the restricted part of the network.

Following a combination of electronic monitoring and traditional surveillance, the person identified as being responsible for accessing the computer was a cleaner employed by a contracted third party providing the services. It further transpired that ‘the cleaner’ was in fact an out of work research scientist, having been dismissed from his former employment for what was described as ‘inappropriate activity.’ Now looking for work, he thought it might be possible to either sell or use the information as a bargaining chip or tool with which to get a job with a competitor of the client’s. His knowledge of computer systems, and also allowed him to increase his user privileges to administrative levels by identifying and exploiting a vulnerability within the system. Giving him unrestricted access to the data found within research network.

Surveillance of the subject also found him visiting one of the client’s competitors. Before any harm could be done and agreement between the two companies was reached preventing litigation, whilst ensuring the client’s information would remain proprietary for a significant period.

Leaving the ‘cleaner’ looking for another job.

For more information regarding any of the services associated with this assignment, please email contact@ccc-ltd.com

Intellectual Property Theft - Oil & Gas Sector


A long-standing client working in the Oil and Gas industry had been at the forefront of developing innovative technologies in relation locating and identifying new sources of ocean borne energy had become concerned they were being targeted as a result of a break-in at an executive’s home where very little had been taken. Although there was evidence of documents being examined as well as items being moved in an area where the telephone lines entered the property and routers that provided both intra and internet services were accessible.


Having been provided with rudimentary details of the client’s business and home networks, CCC deployed black boxes to monitor for unusual activity, which within days found that their mail server and back-up servers were being targeted and that the source of the attack emanated from a legitimate third-party connection.

Further investigation established that the specific email accounts being targeted belonged to members of staff, primarily engaged in the development as well as assisting with the provision of information in relation to patent applications.

As the client trusted the third-party, and with their co-operation, we were able to identify a wireless access point which had been compromised and despite our best efforts; it was not possible to specifically identify those responsible for the attack. Although the systems were secured together with additional protective measures were deployed.

For more information regarding any of the services associated with this assignment, please email contact@ccc-ltd.com

Scroll to Top