1. Forum
  2. tqwNet
  3. TQW_GENTECH

  • Enterprise ServiceNow KBs exposed, leaking corporate data

    From TechnologyDaily@1337:1/100 to All on Wed Sep 18 14:30:05 2024
    Enterprise ServiceNow KBs exposed, leaking corporate data

    Date:
    Wed, 18 Sep 2024 14:15:00 +0000

    Description:
    The exposed data includes personally identifiable information

    FULL STORY ======================================================================

    Research from security organization AppOmni has found over 1,000 individual instances at ServiceNow which unintentionally exposed data from Knowledge Bases (KBs). This accounts for 45% of enterprises tested by the researchers. ServiceNow offers KBs, which are self-service platforms for users to store, share, and manage content.

    ServiceNow is used by 85% of the Fortune 500 to manage IT services and processes, and companies use the service to set up systems that define, automate, manage, and structure IT services. This is not the first time ServiceNow has presented vulnerabilities, with security flaws also spotted by researchers earlier this year.

    According to Aaron Costello, chief of SaaS security research at AppOmni, the risk comes from KBs that have been misconfigured by companies, leading to the exposed data. The applications affected were made public, so any threat
    actors could potentially see the information the bases contain. Sensitive
    data

    The information found by researchers contained personally identifiable information (PII) such as names, credentials, phone numbers, and internal system details. Internal information such as HR processes or cyber attack response protocol was compromised, which could cause serious issues for a companys cyber security.

    This is critical for organizations that use ServiceNow to know about because it can lead to the exposure of sensitive information such as PII, internal system information, and active credentials, said Costello. This highlights
    the urgent need for enterprises to routinely check and update their security configurations to prevent unauthorized access and protect their data assets.

    ServiceNow introduced a round of updates in 2023 to their Access Controls Lists (ACLs) which were aimed at improving data protection but crucially
    these didnt include KBs. Whilst externally facing information has legitimate uses, the KBs expose customer information which could be leveraged by threat actors.

    To mitigate the risks of exposed information, the security researchers advise running routine diagnostics and communicating with software platform
    providers for the latest security updates. More from TechRadar Pro We've listed the best firewalls today AWS is bringing OpenSearch to Linux These are the best endpoint protection tools right now



    ======================================================================
    Link to news story: https://www.techradar.com/pro/enterprise-servicenow-kbs-exposed-leaking-corpor ate-data


    --- Mystic BBS v1.12 A47 (Linux/64)
    * Origin: tqwNet Technology News (1337:1/100)