Bleeping Computer

Over 1,000 ServiceNow instances found leaking corporate KB data

Over 1,000 misconfigured ServiceNow enterprise instances were found exposing Knowledge Base (KB) articles that contained sensitive corporate information to external users and potential threat actors.
Dark Reading

Thousands of ServiceNow KB Instances Expose Sensitive Corporate Data

One-thousand instances of enterprise knowledge bases (KBs) hosted by ServiceNow were found to be exposing sensitive corporate data over the past year, despite improvements in data protection that the ...
CRN

5 Things To Know About ServiceNow Data Leak Discovery

A researcher from security vendor AppOmni uncovered more than 1,000 ServiceNow instances that have been exposing Knowledge Base data. More than 1,000 ServiceNow instances have been discovered to be ...

erm4sn 6.0 Adds Cross-Instance Drift Detection and CMDB Intelligence

New release improves documentation, governance visibility, and architectural alignment for ServiceNow at scale. There ...
Bleeping Computer

Critical ServiceNow RCE flaws actively exploited to steal credentials

Threat actors are chaining together ServiceNow flaws using publicly available exploits to breach government agencies and private firms in data theft attacks. This malicious activity was reported by ...
Dark Reading

Patch Now: ServiceNow Critical RCE Bugs Under Active Exploit

A threat actor on BreachForums is claiming to have harvested email addresses and associated hashes from more than 105 ServiceNow databases after exploiting two recently disclosed critical ...
ZDNet

Microsoft and ServiceNow's exploitable agents reveal a growing - and preventable - AI security crisis

Researchers discover exploitable agentic AI technologies from ServiceNow and Microsoft. Securing agentic AI is already proving to be extremely challenging. Cybersecurity pros should adopt a "least ...