"We justuseWindowsDefender"WindowsServer2003/2008DefaultSNMPWritevalueNo DRPlanDNSloggingnotenabledNoDKIM /DMARCNooffsitebackupsclosetspaghettiStaleObjectsolder than1yearManualBackupsMinimalGroupPolicyWindows7Whitelisteddomains inemail filter"We'venever hadanincident."No driveencryptionTelnetComputersnot joinedto DomaincrackedadminpasswordUnidentifiedPCIrequirements>50%passwordscrackedGuestSSID butnoisolationNo IRPlanNoSecurityAwarenessTrainingPlain textpassworddiscoveredin shareWindowsXPUnlicensedhardwareor softwareNoSPFrecordExternalRDPNoMFADefaultadmincredentialspasswordspreadsheetUsersare localadminsNoEDRUnpatchedExchangeNo truenetworksegmentationInappropriteFirewallrules (notRDP)"We updatewhen thereareproblems"Teamviewer/ VNCWirelessPSK olderthan 2yearsShares with"Everyone,Full Control""We're assecure aswe canbe."AdobeFlashNoDMZIndividualpermissionsin sharesPasswordsneverexpire"We justuseWindowsDefender"WindowsServer2003/2008DefaultSNMPWritevalueNo DRPlanDNSloggingnotenabledNoDKIM /DMARCNooffsitebackupsclosetspaghettiStaleObjectsolder than1yearManualBackupsMinimalGroupPolicyWindows7Whitelisteddomains inemail filter"We'venever hadanincident."No driveencryptionTelnetComputersnot joinedto DomaincrackedadminpasswordUnidentifiedPCIrequirements>50%passwordscrackedGuestSSID butnoisolationNo IRPlanNoSecurityAwarenessTrainingPlain textpassworddiscoveredin shareWindowsXPUnlicensedhardwareor softwareNoSPFrecordExternalRDPNoMFADefaultadmincredentialspasswordspreadsheetUsersare localadminsNoEDRUnpatchedExchangeNo truenetworksegmentationInappropriteFirewallrules (notRDP)"We updatewhen thereareproblems"Teamviewer/ VNCWirelessPSK olderthan 2yearsShares with"Everyone,Full Control""We're assecure aswe canbe."AdobeFlashNoDMZIndividualpermissionsin sharesPasswordsneverexpire

Risk Assessment Bingo - Call List

(Print) Use this randomly generated list as your call list when playing the game. There is no need to say the BINGO column name. Place some kind of mark (like an X, a checkmark, a dot, tally mark, etc) on each cell as you announce it, to keep track. You can also cut out each item, place them in a bag and pull words from the bag.


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
  1. "We just use Windows Defender"
  2. Windows Server 2003/2008
  3. Default SNMP Write value
  4. No DR Plan
  5. DNS logging not enabled
  6. No DKIM / DMARC
  7. No offsite backups
  8. closet spaghetti
  9. Stale Objects older than 1year
  10. Manual Backups
  11. Minimal Group Policy
  12. Windows 7
  13. Whitelisted domains in email filter
  14. "We've never had an incident."
  15. No drive encryption
  16. Telnet
  17. Computers not joined to Domain
  18. cracked admin password
  19. Unidentified PCI requirements
  20. >50% passwords cracked
  21. Guest SSID but no isolation
  22. No IR Plan
  23. No Security Awareness Training
  24. Plain text password discovered in share
  25. Windows XP
  26. Unlicensed hardware or software
  27. No SPF record
  28. External RDP
  29. No MFA
  30. Default admin credentials
  31. password spreadsheet
  32. Users are local admins
  33. No EDR
  34. Unpatched Exchange
  35. No true network segmentation
  36. Inapproprite Firewall rules (not RDP)
  37. "We update when there are problems"
  38. Teamviewer / VNC
  39. Wireless PSK older than 2 years
  40. Shares with "Everyone, Full Control"
  41. "We're as secure as we can be."
  42. Adobe Flash
  43. No DMZ
  44. Individual permissions in shares
  45. Passwords never expire