Han Lai

Han’s professional experience includes, but is not limited to:

• U.S. District Court (Northern California) Appointed Forensic Neutral Expert – Provided forensic analysis, expert testimony, and cross examination as a forensic neutral expert in a deposition related to the evidence spoliation dispute in a high-profile U.S./China autonomous car trade secret misappropriation case. (Weride Corp. et al, V. Kun Huang et al., Case No. 5:18-cv-07233-EJD)
• UK Tribunal Court Computer Forensic Expert Witness – Provided computer forensic analysis, expert testimony, and cross examination on behalf of the UK Solicitors Regulation Authority (SRA) to give electronic evidence in Tribunal Court related to document fabrication allegation for a payment fraud case. (SRA -v- Mrs Gupta. Case No: 10567-2010)
• U.S. Sanction and Export Control Compliance – Led a technology team that worked with a major China telecom company in their compliance function specifically covering sanctions and export controls risks for U.S. Export Administration Regulations (EAR). Assisted client in responding to U.S. regulator requests related to ongoing compliance monitoring and investigative enquiries associated with export controls, activities including capture and preserve data (from bespoke in-house developed technology platforms and unique data formats), performed digital forensic analysis for fact validation, attended U.S. regulator interview requests, and facilitated the review of large structured and unstructured data by the compliance team.
• U.S. SEC FCPA Investigation – Led a year-long complex investigation for potential U.S. Foreign Corrupt Practices Act (FCPA) violations related to marketing and promotional activities in China for a global healthcare company. The project involved collection, processing, and review of multiple complex data sources and cross-border jurisdictions in response to Securities and Exchange Commission (SEC) enquiry.
• U.S. SEC Fraud Investigation – Led the data and technology aspects of a major accounting fraud investigation into a NASDAQ listed Chinese food and beverage company on behalf of the special committee and their independent counsel following a short seller report alleging fictitious and inflated revenues. Scope included collection of data (laptops, mobile WeChat, and server database) across multiple locations in China, forensic artifacts and timeline analysis, provided forensic expert opinion, transactional database analytics, and managed document review services.
• Cyber Incident Response and Recovery (Ransomware Attack) – Response to a ransomware attack (LockBit 2/3) for a global energy product company, advised on incident response plan, performed digital evidence gathering, and attack pattern investigation to discover the full extent of attack chain. Identified the initial root cause of the attack, determined the risk impact of affected data, assisted outside counsel in responding to regulatory reporting in multiple jurisdictions, negociated with threat actors in ramsom demands, and provided overall cybersecurity improvement program and continuous threat monitoring.
• Cybersecurity Assessment – Led a cybersecurity assessment for an international automotive auction house, performed network penetration testing on various in-house developed web application servers, database, and hosted VMware virtual machines. Effective penetration testing identified serious design flaws existed in the web application and network configuration, which had prevented a potential critical cross-border cyber breach and avoided financial loss impacts.
• Business Email Compromise Investigation – Response to a malware and phishing attack campaign on a financial institute’s network targeting their email systems. Effective cyber incident response and forensic investigation assisted client to avoid the potential financial loss and legal implication.
• Software Licensing Compliance Audit – Assisted global software company in coordinating and performing external software licensing compliance audit at their customers across Greater China regions. Identified potential licensing gap and assisted with compliance remediation plan.