0x06 · service brief
Subrogation Forensics
Targeted forensic work product supporting insurer recovery against third-party vendors, MSPs, and software suppliers whose failures contributed to the loss. Findings are structured to meet the causation and breach-of-duty standards subrogation counsel must prove, not the operational standards of incident response.
01what you get
- Causation analysis tracing the loss to specific vendor acts or omissions
- Reconstruction of vendor access, configuration, and control failures
- Contractual and standard-of-care benchmarking against the technical record
- Damages-linked artifact mapping for quantum arguments
- Recovery-ready expert report transferable to litigation counsel
02how to start
Reply with the artefact identifiers you have in hand (hashes, firmware version, advisory ID, or a description of the evidence bundle). We confirm authorisation and scope before any analysis begins. If a deadline is in play, name it — we scope depth against the deadline, not against an internal pipeline.
03scoping intake
Identify the third party in the recovery action (vendor, MSP, software supplier), the loss event, the contractual standard of care in question, and the recovery-window deadline driving the engagement.