Enterprise ServiceNow KBs exposed, leaking corporate data

Research from security organization AppOmni has found over 1,000 individual instances at ServiceNow which unintentionally exposed data from Knowledge Bases (KBs). This accounts for 45% of enterprises tested by the researchers. ServiceNow offers KBs, which are self-service platforms “for users to store, share, and manage content”.

ServiceNow is used by 85% of the Fortune 500 to manage IT services and processes, and companies use the service to set up systems that define, automate, manage, and structure IT services. This is not the first time ServiceNow has presented vulnerabilities, with security flaws also spotted by researchers earlier this year.

According to Aaron Costello, chief of SaaS security research at AppOmni, the risk comes from KBs that have been misconfigured by companies, leading to the exposed data. The applications affected were made public, so any threat actors could potentially see the information the bases contain.

Sensitive data

The information found by researchers contained personally identifiable information (PII) such as names, credentials, phone numbers, and internal system details. Internal information such as HR processes or cyber attack response protocol was compromised, which could cause serious issues for a company’s cyber security.

“This is critical for organizations that use ServiceNow to know about because it can lead to the exposure of sensitive information such as PII, internal system information, and active credentials,” said Costello. “This highlights the urgent need for enterprises to routinely check and update their security configurations to prevent unauthorized access and protect their data assets.”

ServiceNow introduced a round of updates in 2023 to their Access Controls Lists (ACLs) which were aimed at improving data protection but crucially these didn’t include KBs. Whilst externally facing information has legitimate uses, the KBs expose customer information which could be leveraged by threat actors.

To mitigate the risks of exposed information, the security researchers advise running routine diagnostics and communicating with software platform providers for the latest security updates.

More from TechRadar Pro

Sign up to the TechRadar Pro newsletter to get all the top news, opinion, features and guidance your business needs to succeed!

https://cdn.mos.cms.futurecdn.net/LVg6Poe67rd5TpWqhLcfie-1200-80.jpg

Source link

How to watch Pakistan vs England 1st Test, Oct 7 – 11, 2024

My favorite thing about the Samsung Galaxy Z Flip 6 isn’t that it folds

Quordle today – hints and answers for Sunday, October 6 (game #986)

NYT Connections today — hints and answers for Sunday, October 6 (game #483)

What UK political parties are promising in the 2019 general election

Otto Warmbier’s parents want North Korea to suffer for their son’s death

Could a ‘youthquake’ cause Boris Johnson to lose the general election?

People are driving through flames to escape this California wildfire

New ‘Westworld’ trailer introduces us to another dystopian tech company

What’s the point of ‘Charlie’s Angels’ without Sam Rockwell dancing?

These striking photos capture the future of human flight

‘Heathers’ is still the best dark comedy about high school hell

Trump vs. Harris: How the election will affect EV adoption

Lumwana’s Super Pit Expansion Officially Launched By Investing.com

How Biden could use a 1947 law to suspend the dockworkers’ strike

Why your Roth IRA conversions could have ‘unintended’ tax consequences

The YouTuber who has become one of Gen Z’s most beloved celebrities

26 last-minute holiday gifts that are still thoughtful and unique

Practicing gratitude regularly can make you less stressed and sleep better

8 things millennials wish you would just stop getting them for the holidays