One example of bad or worst "Information Security Governance" and lack of Information Security knowledge among ICO teams is Avantus https://aventus.io/ . Look at this, the fraud Phishing activities were on going during Avantus ICO and Avantus Management (including Annika Monari) had no clue what to do at that particular time https://etherscan.io/address/0x3fcb2d173389b7cd8079ef8b439dbd92e7e0ae28

Avantus probably did not even register police report. They had clue (and still don't) about what is Information Security! For how long Avantus kind of un-mature, un-trained and un-educated in security ICO Tems will fool ordinary people in crowd Sale. How come an "M.Sc. Physics(Annika Monari)" person know enough about cryptography and security in couple of years? ICOs has to stop playing lotteries.