>50% passwords cracked External RDP Whitelisted domains in email filter Telnet Wireless PSK older than 2 years No IR Plan No DMZ Unlicensed hardware or software "We update when there are problems" No MFA Default SNMP Write value No EDR Windows Server 2003/2008 Shares with "Everyone, Full Control" cracked admin password Computers not joined to Domain No true network segmentation Stale Objects older than 1year Minimal Group Policy No DR Plan "We're as secure as we can be." Users are local admins No offsite backups Passwords never expire No Security Awareness Training DNS logging not enabled Unidentified PCI requirements Windows 7 Guest SSID but no isolation "We've never had an incident." closet spaghetti Plain text password discovered in share password spreadsheet Adobe Flash Default admin credentials "We just use Windows Defender" Manual Backups Windows XP No drive encryption Inapproprite Firewall rules (not RDP) Individual permissions in shares No DKIM / DMARC Unpatched Exchange No SPF record Teamviewer / VNC >50% passwords cracked External RDP Whitelisted domains in email filter Telnet Wireless PSK older than 2 years No IR Plan No DMZ Unlicensed hardware or software "We update when there are problems" No MFA Default SNMP Write value No EDR Windows Server 2003/2008 Shares with "Everyone, Full Control" cracked admin password Computers not joined to Domain No true network segmentation Stale Objects older than 1year Minimal Group Policy No DR Plan "We're as secure as we can be." Users are local admins No offsite backups Passwords never expire No Security Awareness Training DNS logging not enabled Unidentified PCI requirements Windows 7 Guest SSID but no isolation "We've never had an incident." closet spaghetti Plain text password discovered in share password spreadsheet Adobe Flash Default admin credentials "We just use Windows Defender" Manual Backups Windows XP No drive encryption Inapproprite Firewall rules (not RDP) Individual permissions in shares No DKIM / DMARC Unpatched Exchange No SPF record Teamviewer / VNC
(Print) Use this randomly generated list as your call list when playing the game. There is no need to say the BINGO column name. Place some kind of mark (like an X, a checkmark, a dot, tally mark, etc) on each cell as you announce it, to keep track. You can also cut out each item, place them in a bag and pull words from the bag.
>50% passwords cracked
External RDP
Whitelisted domains in email filter
Telnet
Wireless PSK older than 2 years
No IR Plan
No DMZ
Unlicensed hardware or software
"We update when there are problems"
No MFA
Default SNMP Write value
No EDR
Windows Server 2003/2008
Shares with "Everyone, Full Control"
cracked admin password
Computers not joined to Domain
No true network segmentation
Stale Objects older than 1year
Minimal Group Policy
No DR Plan
"We're as secure as we can be."
Users are local admins
No offsite backups
Passwords never expire
No Security Awareness Training
DNS logging not enabled
Unidentified PCI requirements
Windows 7
Guest SSID but no isolation
"We've never had an incident."
closet spaghetti
Plain text password discovered in share
password spreadsheet
Adobe Flash
Default admin credentials
"We just use Windows Defender"
Manual Backups
Windows XP
No drive encryption
Inapproprite Firewall rules (not RDP)
Individual permissions in shares
No DKIM / DMARC
Unpatched Exchange
No SPF record
Teamviewer / VNC