This car hailing company was breached in September 2022 when a user left admin credentials in a script obtained by hackers.
Who is Uber?
This is who in the organization is ultimately responsible for information security.
Who is all employees 😃
What are the names of the 4 InfoSec personnel at Globality?
Who are Vance, Jon x2, and James?
This attack occurs when someone uses the source name and wrong email address.
What is spoofing?
What is Snyk?
Name of the person who recently blew the whistle on Twitter’s poor cybersecurity practices.
Who is Peiter “Mudge” Zatko
This online SaaS tool is used by Globality for issuing annual security awareness training and policy attestations
What is KnowBe4?
InfoSec Policies and Standards are stored here.
What is InfoSec Confluence Page (or OneDrive)
This vulnerability is often paired with a famous comic featuring “Little Bobby Tables”
What is SQL injection?
In the #infosec channel PSA from Vance, what did he cite as the cause for the most of the breaches so far this year.
What is Social engineering?
This credit reporting agency had the largest data breach of SSN records as of 2017 impacting 147.9 million Americans along with 15.2 million British citizens.
Who is Equifax?
This security attack is when hackers manipulate individuals to divulge confidential or sensitive information.
What is Social Engineering?
These are annual Security Certifications that Globality maintains.
What is ISO 27001 & SOC 2?
This high profile vulnerability in Apache identified at the end of 2021 continued making headlines through 2022?
What is Log4Shell (in Log4j2)
This is the name of the Slack channel for engineers and developers to post PR requests or Eng questions to InfoSec.
What is #infosec-dev-chatter?
This is the name of the group that Mudge was member of when first testifying to Congress in 1998?
What is l0pht?
This is the year CyberSecurity Awareness month was established.
What is 2004?
This is the amount of time for Globality’s default screen lockout setting (MacOS & Windows)?
What is 10 min (MacOS) or 15 min (Windows)?
This computer exploit developed by the U.S. NSA and was leaked by the Shadow Brokers hacker group in April 2017, one month after Microsoft released patches for the vulnerability.
What is EternalBlue?
According to Welzy's #techtalk, what are the four methods to mitigate risk?
Avoid, Reduce, Transfer, Accept
Name of the Russian Kremlin-linked company behind an influence campaign that targeted the 2016 elections.
Who is the Internet Research Agency (IRA)?
Special Publication 800-50, Building an Information Technology Security Awareness and Training Program, is published by this Dept of Commerce org.
Who is NIST?
This is the % of Globality employees who have fallen for a phishing test in the past 3 months.
What is 22% (anything between 20-25% will count)?
A known, patched vulnerability in this software was the initial intrusion vector in the Equifax hack.
What is Apache Struts?
In the #infosec channel PSA from James, what is the name of the first antivirus created in 1972?
What is Ray Tomlinson's Reaper