WindowsServer2003/2008InappropriteFirewallrules (notRDP)Windows7"We'venever hadanincident."DefaultSNMPWritevalueUnpatchedExchangeNoMFApasswordspreadsheetNoSecurityAwarenessTrainingAdobeFlashNo truenetworksegmentationNoDMZWirelessPSK olderthan 2yearsIndividualpermissionsin sharesWindowsXPGuestSSID butnoisolationclosetspaghetti"We're assecure aswe canbe."Teamviewer/ VNCDefaultadmincredentialsPlain textpassworddiscoveredin shareComputersnot joinedto DomainWhitelisteddomains inemail filterDNSloggingnotenabledNo IRPlanPasswordsneverexpireUnidentifiedPCIrequirementsExternalRDPUnlicensedhardwareor software>50%passwordscrackedManualBackups"We updatewhen thereareproblems"StaleObjectsolder than1yearNo DRPlanNo driveencryptionTelnetNoEDRNoDKIM /DMARC"We justuseWindowsDefender"Usersare localadminscrackedadminpasswordShares with"Everyone,Full Control"MinimalGroupPolicyNoSPFrecordNooffsitebackupsWindowsServer2003/2008InappropriteFirewallrules (notRDP)Windows7"We'venever hadanincident."DefaultSNMPWritevalueUnpatchedExchangeNoMFApasswordspreadsheetNoSecurityAwarenessTrainingAdobeFlashNo truenetworksegmentationNoDMZWirelessPSK olderthan 2yearsIndividualpermissionsin sharesWindowsXPGuestSSID butnoisolationclosetspaghetti"We're assecure aswe canbe."Teamviewer/ VNCDefaultadmincredentialsPlain textpassworddiscoveredin shareComputersnot joinedto DomainWhitelisteddomains inemail filterDNSloggingnotenabledNo IRPlanPasswordsneverexpireUnidentifiedPCIrequirementsExternalRDPUnlicensedhardwareor software>50%passwordscrackedManualBackups"We updatewhen thereareproblems"StaleObjectsolder than1yearNo DRPlanNo driveencryptionTelnetNoEDRNoDKIM /DMARC"We justuseWindowsDefender"Usersare localadminscrackedadminpasswordShares with"Everyone,Full Control"MinimalGroupPolicyNoSPFrecordNooffsitebackups

Risk Assessment Bingo - Call List

(Print) Use this randomly generated list as your call list when playing the game. There is no need to say the BINGO column name. Place some kind of mark (like an X, a checkmark, a dot, tally mark, etc) on each cell as you announce it, to keep track. You can also cut out each item, place them in a bag and pull words from the bag.


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
  1. Windows Server 2003/2008
  2. Inapproprite Firewall rules (not RDP)
  3. Windows 7
  4. "We've never had an incident."
  5. Default SNMP Write value
  6. Unpatched Exchange
  7. No MFA
  8. password spreadsheet
  9. No Security Awareness Training
  10. Adobe Flash
  11. No true network segmentation
  12. No DMZ
  13. Wireless PSK older than 2 years
  14. Individual permissions in shares
  15. Windows XP
  16. Guest SSID but no isolation
  17. closet spaghetti
  18. "We're as secure as we can be."
  19. Teamviewer / VNC
  20. Default admin credentials
  21. Plain text password discovered in share
  22. Computers not joined to Domain
  23. Whitelisted domains in email filter
  24. DNS logging not enabled
  25. No IR Plan
  26. Passwords never expire
  27. Unidentified PCI requirements
  28. External RDP
  29. Unlicensed hardware or software
  30. >50% passwords cracked
  31. Manual Backups
  32. "We update when there are problems"
  33. Stale Objects older than 1year
  34. No DR Plan
  35. No drive encryption
  36. Telnet
  37. No EDR
  38. No DKIM / DMARC
  39. "We just use Windows Defender"
  40. Users are local admins
  41. cracked admin password
  42. Shares with "Everyone, Full Control"
  43. Minimal Group Policy
  44. No SPF record
  45. No offsite backups