GuestSSID butnoisolationclosetspaghettipasswordspreadsheetShares with"Everyone,Full Control""We updatewhen thereareproblems"crackedadminpasswordNoEDRInappropriteFirewallrules (notRDP)No driveencryptionComputersnot joinedto DomainPlain textpassworddiscoveredin shareAdobeFlashDNSloggingnotenabledUnlicensedhardwareor softwareWindowsServer2003/2008Whitelisteddomains inemail filter>50%passwordscrackedUnpatchedExchangeNo DRPlanUnidentifiedPCIrequirementsExternalRDPNo truenetworksegmentation"We'venever hadanincident."NoDKIM /DMARC"We're assecure aswe canbe.""We justuseWindowsDefender"DefaultadmincredentialsManualBackupsNoDMZNoSecurityAwarenessTrainingNoMFAStaleObjectsolder than1yearUsersare localadminsMinimalGroupPolicyDefaultSNMPWritevaluePasswordsneverexpireNoSPFrecordTeamviewer/ VNCWindows7WirelessPSK olderthan 2yearsNooffsitebackupsIndividualpermissionsin sharesTelnetNo IRPlanWindowsXPGuestSSID butnoisolationclosetspaghettipasswordspreadsheetShares with"Everyone,Full Control""We updatewhen thereareproblems"crackedadminpasswordNoEDRInappropriteFirewallrules (notRDP)No driveencryptionComputersnot joinedto DomainPlain textpassworddiscoveredin shareAdobeFlashDNSloggingnotenabledUnlicensedhardwareor softwareWindowsServer2003/2008Whitelisteddomains inemail filter>50%passwordscrackedUnpatchedExchangeNo DRPlanUnidentifiedPCIrequirementsExternalRDPNo truenetworksegmentation"We'venever hadanincident."NoDKIM /DMARC"We're assecure aswe canbe.""We justuseWindowsDefender"DefaultadmincredentialsManualBackupsNoDMZNoSecurityAwarenessTrainingNoMFAStaleObjectsolder than1yearUsersare localadminsMinimalGroupPolicyDefaultSNMPWritevaluePasswordsneverexpireNoSPFrecordTeamviewer/ VNCWindows7WirelessPSK olderthan 2yearsNooffsitebackupsIndividualpermissionsin sharesTelnetNo IRPlanWindowsXP

Risk Assessment Bingo - Call List

(Print) Use this randomly generated list as your call list when playing the game. There is no need to say the BINGO column name. Place some kind of mark (like an X, a checkmark, a dot, tally mark, etc) on each cell as you announce it, to keep track. You can also cut out each item, place them in a bag and pull words from the bag.


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
  1. Guest SSID but no isolation
  2. closet spaghetti
  3. password spreadsheet
  4. Shares with "Everyone, Full Control"
  5. "We update when there are problems"
  6. cracked admin password
  7. No EDR
  8. Inapproprite Firewall rules (not RDP)
  9. No drive encryption
  10. Computers not joined to Domain
  11. Plain text password discovered in share
  12. Adobe Flash
  13. DNS logging not enabled
  14. Unlicensed hardware or software
  15. Windows Server 2003/2008
  16. Whitelisted domains in email filter
  17. >50% passwords cracked
  18. Unpatched Exchange
  19. No DR Plan
  20. Unidentified PCI requirements
  21. External RDP
  22. No true network segmentation
  23. "We've never had an incident."
  24. No DKIM / DMARC
  25. "We're as secure as we can be."
  26. "We just use Windows Defender"
  27. Default admin credentials
  28. Manual Backups
  29. No DMZ
  30. No Security Awareness Training
  31. No MFA
  32. Stale Objects older than 1year
  33. Users are local admins
  34. Minimal Group Policy
  35. Default SNMP Write value
  36. Passwords never expire
  37. No SPF record
  38. Teamviewer / VNC
  39. Windows 7
  40. Wireless PSK older than 2 years
  41. No offsite backups
  42. Individual permissions in shares
  43. Telnet
  44. No IR Plan
  45. Windows XP