The Lab

Spot drift in the wild

Read a real situation. Identify two stages of the Drift Model where the gap opened up. Get structured feedback on your reasoning. Theory only sticks when you apply it.

Where you are

You haven't attempted any scenarios yet. Pick one to begin — the Easy tier is a good starting point.

Hard tier

Domain

Difficulty

Type

Showing 12 scenarios

Finance · Easy

The Quarterly Access Review

An Australian fintech's quarterly privileged-access review looks complete on paper. The reality is different.

Start scenario →

Healthcare · Easy

Real-world

Medibank — The MFA That Wasn't

Australia's largest health insurer had MFA on paper. Two prior audits flagged the gap. Then the breach happened.

Start scenario →

Education · Easy

Real-world

Deakin University — The SMS Vendor

A staff member's credentials gave an attacker access to a third-party SMS provider holding details on 47,000 students.

Start scenario →

Industrial · Easy

Real-world

DP World Australia — Ports Offline

Four major Australian ports went offline for three days. The vulnerability had been publicly known and patchable for over a year.

Start scenario →

Finance · Moderate

Real-world

HWL Ebsworth — The Law Firm Holding Everything

A law firm holding data for the Big Four banks, RBA and most of the ASX 50 was breached. The exposure had been quietly accumulating for years.

Start scenario →

Healthcare · Moderate

Real-world

Australian Clinical Labs — Acquired Without Inspection

ACL inherited a pathology business with weak security controls and treated the existing arrangements as adequate. Eight months later, the OAIC took action.

Start scenario →

Education · Moderate

Real-world