- April 19, 2023: 2023 RAU weight adjustment.
- May 8, 2020: Published.
⇤ Overview of Risk Categories and Risk Vectors
The User Behavior risk category assesses employee activity, such as file sharing and password re-use. These types of activities can introduce malware to an organization or result in a data breach. It accounts for 2.5% of a company’s Bitsight Security Rating. Review how User Behavior is calculated.
Risk Vectors
User Behavior is classified into the following risk vectors:
| Risk Vector | Description |
|---|---|
| File Sharing | Tracks the sharing of files, such as books, music, movies, TV shows, and applications. This includes files shared over the BitTorrent protocol or when observed on company infrastructure. |
| Exposed Credentials | Looks at verified breaches to indicate if the employees of a company had their information publicly disclosed and posted online as a result of a successful cyber attack on their company’s third parties. |