Bleeping Computer

New ServiceNow flaw lets attackers enumerate restricted data

A new vulnerability in ServiceNow, dubbed Count(er) Strike, allows low-privileged users to extract sensitive data from tables to which they should not have access. ServiceNow is a cloud-based platform ...
techtimes

ServiceNow Issues Fix Following Recent Data Exposure

In a recent report, ServiceNow, a prominent cloud-based platform, made an unsettling announcement. They warned that misconfigurations within their system had the potential to grant "unintended access" ...
Bleeping Computer

Over 1,000 ServiceNow instances found leaking corporate KB data

Over 1,000 misconfigured ServiceNow enterprise instances were found exposing Knowledge Base (KB) articles that contained sensitive corporate information to external users and potential threat actors.