Hosted on MSN

Worrying ServiceNow security flaw could let hackers steal private table data

A mishap in ServiceNow access control lists meant users could be granted access, without meeting all the conditions New controls were added to mitigate the risk Users are advised to review their ...
ZDNet

ServiceNow releases guidance on Access Control List misconfigurations after report highlights prevalence

ServiceNow has published guidance for its customers related to Access Control List (ACL) misconfigurations after an AppOmni security report found that 70% of the instances they tested had the issue.
Bleeping Computer

New ServiceNow flaw lets attackers enumerate restricted data

A new vulnerability in ServiceNow, dubbed Count(er) Strike, allows low-privileged users to extract sensitive data from tables to which they should not have access. ServiceNow is a cloud-based platform ...
SiliconANGLE

ServiceNow instances found vulnerable to misconfiguration and leaking data

New research released today by software-as-a-service security management startup AppOmni Inc. details how ServiceNow Inc. instances are vulnerable to misconfiguration. The issue relates to data ...
Business Wire

Major Security Misconfiguration Impacting ServiceNow Instances Discovered

SAN FRANCISCO--(BUSINESS WIRE)--AppOmni, the leading provider of SaaS Security, has discovered a common ServiceNow Access Control List (ACL) misconfiguration present in nearly 70% of ServiceNow ...