Skip to main content

Who is this article for?

Code42 for EnterpriseSee product plans and features
CrashPlan for Small Business 

CrashPlan for Small Business, no.

Code42 for Enterprise, yes.

Link: Product plans and features.

This article applies to Cloud.

Code42 Support

Risk Exposure reference

Who is this article for?

Code42 for EnterpriseSee product plans and features
CrashPlan for Small Business 

CrashPlan for Small Business, no.

Code42 for Enterprise, yes.

Link: Product plans and features.

This article applies to Cloud.

Overview

The Risk Exposure dashboard gives you an overview of the different file activity in your Code42 environment. This dashboard lets you know when unusual activity is happening, so you can investigate further in Forensic File Search. 

For more information about these dashboards, see Review unusual file activity with the Risk Exposure dashboard.

Considerations

Departing Employees

To view, sign in to the administration console and select Detection > Risk Exposure

Departing Employees tile on the Risk Exposure dashboard

This tile shows a summary of the information shown in the Departing Employees application. Clicking any value brings you to the Departing Employees application with those results shown. 

If you don't have any employees added to the Departing Employees application, then the values will be zero and an Add Departing Employees button is shown. 

Endpoint file activity

To view, sign in to the administration console and select Detection > Risk Exposure

Endpoint File Activity

Item Description
a Timeframe Displays file activity for the last 90 days, 30 days, 7 days, or 1 day.
b File activity graph

Displays file activity for the selected file event type. 

c File event preview Displays a file event preview for a specific day. Click a point to see more information about the file events from that day and to optionally open those files in Forensic File Search. Learn more about using Forensic File Search.
d On Removable Media Displays when files have been moved to an external device such as a USB drive or hard drive. 
e Synced to Cloud Service Displays when a file exists in a folder on the device used for syncing with one of these cloud services:
  • Apple iCloud
  • Box
  • Box Drive
  • Dropbox
  • Google Backup and Sync
  • Google Drive
  • Microsoft OneDrive
f Read by Browser or Other App  Displays details about files opened in an app that is commonly used for uploading files, such as a web browser, Slack, FTP client, or curl.
g Zip Files Displays file events for common archive formats, including compressed files.
h Activity preview Displays a preview of the graph of the files. 
i # File Events Shows the number of file events for the entire timeframe selected. 
j Total File Size Displays total file size for all exposure events in the selected timeframe.
k # Users Displays the number of users who performed the exposure events.
l Investigate last x days in Forensic File Search Opens Forensic File Search. Forensic File Search is pre-populated with the selected timeframe and exposure type. Learn more about using Forensic File Search.

Cloud file activity

To view, sign in to the administration console and select Detection > Risk Exposure
Visible only with licensing for one or more cloud service data sources

Cloud File Activity

Item Description
a Timeframe Displays file activity for the last 90 days, 30 days, 7 days, or 1 day.
b File activity graph Displays file activity for the selected permission increase type and cloud service.
c File event preview Displays a file event preview for a specific day. Click a point to see more information about the file events from that day and to optionally open those files in Forensic File Search. Learn more about using Forensic File Search.
d Public on the Web (Google Drive) Displays when files on your Google Drive are indexed by Google search and are available on the web. Only appears if you are licensed for the Google Drive data source.
e Public via Direct Link (Google Drive) Displays when files on your Google Drive are accessible to anyone with a link. Only appears if you are licensed for the Google Drive data source.
f Public via Direct Link (OneDrive) Displays when files on your OneDrive are accessible to anyone with a link. Only appears if you are licensed for the OneDrive data source.
g Public via Direct Link (Box) Displays when files on your Box account are accessible to anyone with a link. Only appears if you are licensed for the Box data source.
h Activity preview Displays a preview of the graph of the files.
i # Permission Increases Displays the number of events where a user changed the permission of a file, folder, or drive from private to public. This applies to both public via a direct link or public on the web.
j Total File Size Displays total file size for all exposure events in the selected timeframe. Does not include Google file types such as Google Docs or Google Sheets.
k # Users

Displays the umber of users who interacted with the file within 5 minutes of when it was made public. This could include the user who changed the permissions or a user who interacted with the file shortly after the permission change.

l Investigate last x days in Forensic File Search Opens Forensic File Search. Forensic File Search is pre-populated with the selected timeframe and exposure type. Learn more about using Forensic File Search.