It's my company's "Let's piss off the staff in every country in which we operate with some compulsory security awareness training" time again. They've really shot themselves in the foot with this one.
"Secure the Sauce - Challenge 1 - Investigate the Attack," is in the form of a game, with animated sections, in which you have to decipher some clues to determine missing numbers to complete the IP address of a miscreant who's trying to hack into your company. The 'sauce' in question, is what is manufactured by the fictitious company in the challenge
Unfortunately, the clues don't seem to appear in the animations for some trainees, including me. Maybe we have to use a particular browser, but there's nothing in the intro to alert you to this. I just let the initial link open Edge, which is the default browser on my new laptop, and no clues were to be seen. If you are unable to decipher each clue on your own, there are three 'Hints' you can reveal, telling you where in the animation you've just watched the answers are to be found. The third hint actually just gives you the answer, then allows you to move on to the next section. Thus, you can complete the game without successfully deciphering any of the clues.
There are four challenges, each with three answers, giving a total score of. ....... 175 points. Fuck knows how they arrive at that, unless that's the total score possible when you've completed all the modules that are being drip fed to us over the next few weeks.
Anyroadup, I had no idea what was going on, and from the staff's reviews, allowing up to 5 stars and supporting comments, neither have a whole lot of others, who've given it one star and a lot of scathing comments.
Here's my score card at the end of challenge 1. But my question is, how have I earned the first row of the ransomware decryption key?
Attachment:
Challenge 1.jpg