Foreshock — Continuous ICT Vendor Risk Monitoring

Under DORA Article 28, fintechs are legally accountable for continuous oversight of every critical ICT vendor. The leading indicators of a vendor going bad show up in public data weeks before they reach a security score or a questionnaire cycle. Leadership exits. Lawsuits. Hiring freezes. Sentiment collapse. GRC platforms watch paperwork. Security raters watch the attack surface. Neither one watches business health, and that is the gap Foreshock fills. Foreshock runs a daily unattended agent. It pulls signals across five query classes per vendor through Bright Data MCP, and for public companies it pulls SEC EDGAR 8-K filings straight from the source. Every signal gets appended to a Type-2 timestamped history and never overwritten, so the trend is always preserved. A Claude validator throws out the false positives (about 80% of candidates), and a CDC diff scores six weighted dimensions: leadership, legal, headcount, sentiment, news volume, and open roles. When several signals deteriorate at once, a convergence alert fires. AI then writes the risk summary the way a GRC analyst would, and every factual claim carries a citation that resolves to its source signal. A built-in citation audit confirms it, with zero unresolved across all vendors. One click exports a DORA Article 28 ICT Register PDF: cover page, fleet audit, per-vendor sections, the AI narrative with numbered sources, and a methodology appendix. No competitor ships that today. The same engine (watch, detect, score, alert, summarize, source) points at any entity where stale data defeats the purpose. Fintech vendors today. Competitors, suppliers, and acquisition targets next.