Data Recovery,
Digital Forensics
and
Cybersecurity
Professional diagnostics and data recovery from HDDs, SSDs, RAID arrays, memory media and damaged devices. Cybersecurity incident response and digital forensic analysis for businesses, institutions and individuals.
Specialised services for the protection and recovery of digital data
INFOSEC s.r.o. is a specialised company based in Košice. We focus on data recovery, digital forensic analysis, cybersecurity and security incident response.
We provide services to companies, institutions and individuals. We assess every case individually, with an emphasis on discretion, data protection, a transparent process and documentation of the work performed.
In our work, we apply principles and security measures based on ISO/IEC 27001.
This statement does not mean that INFOSEC s.r.o. holds an ISO/IEC 27001 certificate, unless a valid and verifiable certificate is stated on the website.
Ing. Norbert Naď
Expert in cybersecurity, digital forensic analysis and security state assessment. Professional consultant for IT and security.
Comprehensive IT services
From recovering lost data, through security check and IT consulting, to digital forensic analysis.
Data recovery
Diagnostics and recovery of data from non-functional, damaged or accidentally deleted storage. We work with HDDs, SSDs, NVMe, USB media, memory cards, RAID arrays, NAS systems and other types of digital storage.
- HDD, SSD, NVMe and M.2
- USB media and memory cards
- RAID 0 to 6, SHR, NAS and selected SAN storage
- Logical, electronic and mechanical damage
- A wide range of common and specialised file systems
- Recovery of access to cryptocurrency wallets from damaged devices, where technically and legally possible
Cybersecurity and incident response
Security state assessment, response to security incidents, root-cause analysis of a breach, and design of appropriate technical measures. We help restore safe operation and reduce the risk of recurrence.
- Security state assessment
- Security incident response
- Digital identity theft and hijacked accounts (social media, Google and other online services)
- Malware and compromised system analysis
- Operational recovery after an incident
- Design of security measures and internal procedures
We assess technical and organisational measures within the scope agreed with the customer. The assessment provided is not an audit under the Cybersecurity Act, nor a certification audit, unless expressly agreed otherwise and carried out by an authorised entity.
Enquire about incident responseDigital forensic analysis
Securing, preserving, analysing and documenting digital traces from computers, storage media, mobile devices and information systems. The procedure and output are determined by the purpose of the analysis and the legal standing of the client.
- Forensic acquisition of digital data
- Creation and verification of forensic images
- Analysis of compromised systems
- Recovery of deleted or damaged data
- Event timeline and documentation of findings
- Professional statements and forensic reports
Professional statements and forensic reports can be used as supporting material in legal proceedings. If the output is not an expert opinion prepared by an expert registered in the relevant register, we do not present it as an expert opinion.
Enquire about forensic analysisAdditional professional IT services
Software and security tool development
We design and develop software, automation solutions and security tools according to agreed requirements. This may include analysis, architecture design, development, testing, documentation and post-deployment support.
- Bespoke security tools
- Security process automation
- ERP and business systems
- Rust, Python, TypeScript, C/C++
Software security analysis
We assess the security properties of applications, source code, binaries and firmware within the scope for which the client is authorised. The output is a report with findings, risk assessment and remediation recommendations.
- Source code security analysis
- Dynamic analysis at runtime
- Analysis of applications without source code
- Desktop, mobile, server, firmware
- Vulnerability scanning for domains and email servers
- Recommendations for stronger security
We can carry out the analysis with or without source code. The specific scope and accuracy of the results depend on the type of application, the materials available and the client's authorisation.
Non-binding consultationNetwork infrastructure
Design, implementation and security of network infrastructure, remote access, firewalls, network segmentation and monitoring according to customer requirements.
- Network design and implementation
- Remote access and VPN
- Firewalls and network segmentation
- Monitoring and management
Technical measures for personal data protection
Design and implementation of technical measures for personal data protection, for example access control, encryption, backup, network segmentation, logging and security monitoring.
- Access control and encryption
- Backup and network segmentation
- Logging and security monitoring
Legal GDPR assessment, preparation of legal documentation and performing the role of data protection officer are not part of the service, unless provided by an authorised legal or professional partner.
Non-binding consultationTechnology monitoring
Monitoring of availability, performance and security events within the agreed scope.
- Monitoring according to the agreed regime
- Security event detection
- Alerting and notifications
- Reporting and analysis
Continuous monitoring 24 hours a day, 7 days a week is provided only for a service under a signed service contract that includes oversight and response outside standard working hours.
Non-binding consultationData recovery process in 4 steps
From initial contact to handover of recovered data.
Contact & consultation
Consultation and situation assessment. We will advise you on the best course of action.
Diagnostics
Detailed device analysis and determination of recovery options. Diagnostics for €48 incl. VAT.
Data recovery process
Professional data recovery using specialised tools and technologies.
Payment & handover
Data recovery is performed only after your approval of the price. After successful recovery we deliver your data on a pre-agreed medium (new or your own) once the invoice is paid.
Indicative pricing
The prices shown are indicative and include VAT. The final price depends on the scope, the technical condition of the device and the complexity of the work. Before a paid service is carried out, the customer receives a price calculation or information on the billing method. We do not carry out work beyond the agreed scope without the customer's further consent.
Technical support and expert consultancy
Via TeamViewer, AnyDesk, telephone or in person
'From' prices represent the minimum price for a specifically defined task. For time-based work, the standard hourly rate applies.
Data recovery
Including non-functional devices. For RAID, NAS and SAN storage, price after diagnostics.
Digital forensic analysis (DFA)
Consultation required. Service available for individuals, legal entities, and government institutions.
- Forensic disk image and analysis
- Mobile device analysis
- Network traffic analysis
- Expert statement supporting criminal investigation
Software development & security tools
Complete development lifecycle - from project definition to delivery of the finished solution.
- Bespoke security tools
- Web and mobile applications
- Automation and integrations
- Consultancy, testing and security analysis of applications
- User training and post-deployment technical support
Device diagnostics
Device diagnostics before the actual data recovery process. Assessment of damage extent, determination of recovery options, and price calculation
The diagnostics fee is charged regardless of the outcome, as it includes a professional assessment of the device, determination of the extent of damage, recovery options and preparation of a price calculation.
Processing modes for data recovery from non-functional devices
A surcharge or discount applies to the price of the recovery work, not to the diagnostics fee, replacement parts or a new medium, unless the terms and conditions state otherwise.
Economy
15% discount on the price of recovery work. Total processing time is generally at least 6 weeks. The device is processed according to the current capacity of the workshop.
Standard
Diagnostics generally within 10 working days. After price approval, data recovery generally takes approximately 20 working days. The timeframe depends on the technical condition of the medium, parts availability and the speed of stable reading.
Priority
50% surcharge on the price of recovery work. Diagnostics is carried out within the timeframe stated when the device is accepted. After price approval, recovery is prioritised ahead of standard-mode orders and its target timeframe is up to 7 working days, if the technical condition of the medium allows it.
Express
100% surcharge on the price of recovery work. Work begins within 2 hours of accepting the device during working hours. Estimated completion is within 2 to 5 working days, if the technical condition of the medium allows it and there is no need to wait for replacement parts or perform long-term stabilised reading.
The stated timeframes are targets. Neither the outcome nor the exact recovery time can be guaranteed in advance. The timeframe may be affected by the extent of damage, medium instability, the need for replacement parts, encryption, file system damage, or the number of read errors.
* All prices include VAT. The final price is always determined after diagnostics or consultation.
Contact us
Do not hesitate to contact us with any enquiry. A consultation is the first step towards resolving your issue.
Address
Trieda SNP 407/61
040 11 Košice, Slovensko
Telephone
+421 904 432 786Company details
IČO: 50889109
DIČ: 2120515771
IČ DPH: SK2120515771
Bank details
IBAN: SK67 1100 0000 0029 4503 9675
SWIFT: TATRSKBX
Registration
Mestský súd Košice
Oddiel Sro, vložka č. 41480/V
Frequently asked questions
How long does data recovery take?
The total time depends on the extent of damage, the stability of the medium and the chosen mode. The recovery option and a more precise time estimate can only be determined after diagnostics.
Economy mode: generally at least 6 weeks in total.
Standard mode: diagnostics generally within 10 working days. After price approval, recovery generally takes approximately 20 working days.
Priority mode: diagnostics within the timeframe stated when the device is accepted. After price approval, the target recovery timeframe is up to 7 working days.
Express mode: work begins within 2 hours of acceptance during working hours. Estimated completion within 2 to 5 working days, if the technical condition of the medium allows it.
The stated timeframes are targets. Neither the outcome nor the exact recovery time can be guaranteed in advance.
From which media can you recover data?
We work with a wide range of common and specialised storage media:
- HDD hard drives (internal and external), SSD and NVMe drives in M.2 and U.2 formats, USB flash drives
- memory cards of common formats (SD, SDHC, SDXC, SDUC including microSD variants, CompactFlash, CFexpress Type A and B, CFast 2.0, XQD, Memory Stick PRO Duo and M2)
- internal eMMC and UFS storage from embedded devices
- RAID arrays levels 0 to 6 including Synology Hybrid RAID (SHR), NAS network storage and selected enterprise SAN storage
- digital dictaphones
We support a wide range of common and specialised file systems, in particular FAT, exFAT, NTFS, ReFS, HFS, HFS+, APFS, ext2 to ext4, Btrfs, XFS, ZFS, UFS, F2FS, UBIFS and others, depending on the specific device.
Do you also work with mobile devices?
For devices running iOS and Android, we provide forensic extraction of technically accessible data, recovery from available backups, and analysis of physically damaged devices. The scope of recoverable data depends on the device model, system version, storage condition, encryption, access credentials and the manufacturer's security mechanisms. Direct recovery of deleted files from a modern device is often not possible due to encryption, TRIM and continuous data overwriting.
How much does diagnostics cost?
Device diagnostics costs €48 incl. VAT. It includes assessment of damage extent, determination of recovery options, and price calculation. Recovery is carried out only after your approval of the price.
Do you also work with companies and institutions?
Yes, we provide services to individuals, companies, and government institutions. For businesses, we also offer long-term cooperation in cybersecurity, security state assessment, and bespoke security tool development.
Do you also provide remote services?
Yes, we provide technical support and consultancy remotely via TeamViewer, AnyDesk, or telephone. For certain services (e.g. physical media diagnostics), the device needs to be delivered to our address in Košice.
Will this blow up my website? I am worried it might break something.
No. In the basic passive mode we do not touch your website at all - we only read publicly available data, just like Google when indexing or an ordinary visitor to your website. We run nothing, change nothing, delete nothing. Your operation does not even notice. Anything deeper we run only with your signed consent and a pre-agreed scope.
Will you have access to our e-mails?
No, absolutely not. When measuring the e-mail domain we work exclusively with public settings that anyone on the internet can look up, and with the public response of your mail server. We DO NOT access your mailbox, do not read or store any e-mails, and need no passwords from you. We are only interested in whether your domain is configured so that an attacker cannot send fraudulent e-mails in your name. For a complete test it is enough if you send us one test e-mail from your domain - from it we verify the signature settings on a real send. Even then we do not access your mailbox.
Is the security measurement an audit or a penetration test?
No. The basic security measurement is not an audit under the Cybersecurity Act, a certification audit, or a penetration test. It is an assessment of predetermined publicly available parameters or parameters made accessible by the customer. The scope, methods and limitations are stated in the order or in the output report.
Can you check the security of our software or application?
Yes. We perform software security analysis - we examine whether your program is secure and free of vulnerabilities. If you provide the source code, we go deep into the code itself; if you do not have it, we can also inspect the running application or the binary. It works for desktop, mobile and server applications. The condition is that you are authorised to submit the software for analysis. The output is a report with concrete findings and recommendations.
We are a supplier under NIS2 and a partner wants proof we have this under control. Will this help?
Yes. Besides the verdict you receive a dated record of the security state of your website and e-mail domain, which you can file in a due-diligence folder or present to a business partner. It is repeatable, so you can demonstrate the state again in half a year. If the measurement reveals weak spots, we can also fix them for you. And since a supplier under NIS2 must demonstrate the state on an ongoing basis, we can set up regular oversight - we automatically alert you when security deteriorates, and you always have an up-to-date record at hand. If you are interested, we can also advise on broader NIS2 preparation.