Nearly 70% of tested ServiceNow instances leaking data - Cyber Security News

Read Time:30 Second

A configuration error in the SaaS platform of an S&P 500 company is leaking data on the internet. News of the misconfiguration mistake found in nearly 70% of ServiceNow instances tested was reported Wednesday by AppOmni, a SaaS security provider.

According to AppOmni, the misconfiguration resulted from a combination of customer-managed configurations and over-provisioning of permissions to guest users. ServiceNow has more than 25,000 customers, most of them with 50 to 200 employees and with revenues in the $1 million to $10 million range.

To read this article in full, please click here

More Stories

Patch Tuesday, April 2025 Edition

Microsoft today released updates to plug at least 121 security holes in its Windows operating systems and software, including one...

The AI Fix #45: The Turing test falls to GPT-4.5

In episode 45 of The AI Fix, our hosts discover that ChatGPT is running the world, Mark learns that mattress...

Google Releases April Android Update to Address Two Zero-Days

Google’s latest Android update fixes 62 flaws, including two zero-days previously used in limited targeted attacks Read More

NIST Defers Pre-2018 CVEs to Tackle Growing Vulnerability Backlog

NIST marks CVEs pre-2018 as “Deferred” in the NVD as agency focus shifts to managing emerging threats Read More

Half of Firms Stall Digital Projects as Cyber Warfare Risk Surges

Armis survey reveals that the growing threat of nation-state cyber-attacks is disrupting digital transformation Read More

CISA Warns of CrushFTP Vulnerability Exploitation in the Wild

The US Cybersecurity and Infrastructure Security Agency (CISA) has added CVE-2025-31161 to its Known Exploited Vulnerabilities (KEV) catalog Read More