Email lessons from Gen. Petraeus' downfall
Simply put, emails generally lay out the tracking information - where they originated and what servers they touched along the way.
However, Jones also said with some work it is possible to hide that trail when sending emails.
"It's very easy to not be traced," said Jones, who noted that he's able to use email in about half the digital investigations they do. "If you take a little bit of effort, you can make it look like it came from someplace else... You can fake the originating address by using an anonymizer."
An anonymizer -- also known as an anonymous proxy -- is a tool specifically designed to make online activity, like emails, untraceable. With email, it hides the sender's identifying information by accessing the Internet on the sender's behalf.
Jones explained that it's akin to someone handing him an envelope to deliver. Jones makes the delivery instead of the other person and he puts his own information in the return address space on the envelope.
The issue is that most people, whether they're sending emails about corporate marketing plans, threats or messages to mistresses, don't bother to use an anonymizer. They simply think that no one, other than the intended recipient, will ever see the messages that they're sending.
"Most individuals and businesses don't think twice about sending private or confidential information over email," said Patrick Moorhead, an analyst with Moor Insights & Strategy. "All it takes is one person knowing your PC, phone, or email password and your email could be read by another person."
And when it comes to company email systems, people should think twice when assuming that no one is paying attention.
"For work email, assume someone is reading your email as someone or something probably is," said Moorhead. "Most companies have filters that read every email, looking for offending words and images that don't comply with corporate standards."
Jones also noted that for most people sending illicit emails, they are going to be fairly easy to trace.
"You know, they could be texting too," he added. "If I were to cheat, I would be texting instead of emailing. Text message retention policies are usually very short -- just a couple of days with the provider.
"If you're cheating or threatening someone, email isn't the smartest tool to use unless you really know what you're doing," said Jones.
Sharon Gaudin covers the Internet and Web 2.0, emerging technologies, and desktop and laptop chips for Computerworld. Follow Sharon on Twitter at @sgaudin, on Google+ or subscribe to Sharon's RSS feed . Her email address is firstname.lastname@example.org.
- NSA defends collecting data from U.S. residents not suspected of terrorist activities
- Groups fear bill would allow free flow of data between private sector and NSA
- Google's move into home automation means even less privacy
- Bill to require warrant for email searches gains ground in House
- Coming soon to a fridge near you -- targeted ads
- Snowden leaks prompt tech firms to tout privacy, transparency policies
- License reader lawsuit can be heard, appeals court rules
- Is EU's 'right to be forgotten' really the 'right to edit the truth'?
- Tails 1.0: A bootable Linux distro that protects your privacy
- Privacy jitters derail controversial K-12 big data initiative
Read more about Privacy in Computerworld's Privacy Topic Center.
- Enable secure remote access to 3D data without sacrificing visual perfomance Design and manufacturing companies must adapt quickly to the demands of an increasingly global and competitive economy. To speed time to market for...
- The Truth About Virtual Computing for CAD If you're a user of graphics-intensive software such as 3D modeling, simulation and analysis, and visualization, you might be skeptical about moving to...
- Virtually Delivered High Performance 3D Graphics "A picture is worth a thousand words." That old phrase is as true today as it ever was. Pictures (i.e., those with heavy...
- Simplifying Product Design In A Complex World Product design engineering has moved far beyond the confines of ever-more powerful workstations. Companies can't afford to restrict projects to using only local...
- Data Protection and Disaster Recovery with iSCSI and VMware Get this on demand webcast now
- What should I look for in a Next Generation Firewall? SANS Provides Guidance With so many vendors claiming to have a Next Generation Firewall (NGFW), it can be difficult to tell what makes each one different.... All Privacy White Papers | Webcasts
Our new bimonthly Internet of Things newsletter helps you keep pace with the rapidly evolving technologies, trends and developments related to the IoT. Subscribe now and stay up to date!