This document discusses three security risks: 1) Allowing unrestricted TCP traffic through a firewall could enable DNS attacks. 2) A mislabeled USB drive found in an office poses a malware risk. 3) An attacker disguised as a technician used social engineering to gain physical access to a company's network switches, putting the LAN at risk. Countermeasures like access controls and input validation can help mitigate these types of risks.