The Hacker News

ServiceNow Flaw Exploited to Gain Unauthorized Access to Customer Instances

A ServiceNow security issue allowed unauthenticated users, in certain circumstances, to gain greater access to susceptible ...
CPO Magazine

ServiceNow Security Breach Exposes Enterprise Customer Data

Cloud computing company ServiceNow has confirmed a security breach that affected enterprise customers’ instances stemming ...

ServiceNow Security Incident Tests Core Workflow And AI Governance Story

ServiceNow (NYSE:NOW) has disclosed a security incident involving unauthorized access through a vulnerable API endpoint. The ...
Bleeping Computer

ServiceNow discloses security incident exposing customer data

Update 6/10/26: Added details below from a new ServiceNow advisory regarding the observed activity and bug bounty submissions. ServiceNow is warning about a security incident after attackers exploited ...
Threat Post

Most ServiceNow Instances Misconfigured, Exposed

Customers aren’t locking down access correctly, leading to ~70 percent of ServiceNow implementations tested by AppOmni being vulnerable to malicious data extraction. Nearly 70 percent of instances of ...

ServiceNow to customers: A bug may have exposed your data on the internet as 'we have detected ...'

ServiceNow has alerted customers to a software bug that allowed unauthenticated internet users to access their data. The ...
techtimes

ServiceNow Data Breach: Gated Advisory Left Customers Unaware of Exploited Zero-Auth API

Enterprise security teams are auditing logs and rotating credentials this week after ServiceNow confirmed that attackers successfully queried sensitive customer instance data through an ...
Dark Reading

Thousands of ServiceNow KB Instances Expose Sensitive Corporate Data

One-thousand instances of enterprise knowledge bases (KBs) hosted by ServiceNow were found to be exposing sensitive corporate data over the past year, despite improvements in data protection that the ...