One of my regular podcast listens is Security Weekly News. The regular host is Doug White. He is an interesting fellow.
Back on topic …
In Episode #93, Doug shared some thoughts on the breech of the Capitol on January 6, 2021. He didn’t delve into the politics but rather covered the IT security risks.
His advice was “If you’re physically compromised, you’re screwed.”
Then he asked “What happens when you get a physical breech of your offices?”
In normal times, you’d probably say that this wasn’t very likely. And that your facility isn’t the Capitol.
But, think about it. Have you reviewed your physical security of a pandemic non-workplace?
There aren’t employees walking around who would notice intruders. Once an intruder gets by the security at the door, they would probably have free access to all the workplaces.
And that’s where they would find OSINT.
Go into the office. Walk around looking for yellow stickies. Pick up the keyboards and look under them. Look in the drawers.
Oh, keep a list of what you find so you can educate those employees.