Close Menu
Read Us 24×7
    What's Hot
    SOA OS23

    SOA OS23: The Future Blueprint for Scalable, Agile Digital Systems

    May 29, 2025
    Inter vs. Estrella Roja

    Inter vs. Estrella Roja: Full Match Guide and Detailed Stats

    May 29, 2025
    VCWeather

    VCWeather.org: The New Face of Hyperlocal Weather Reporting

    May 28, 2025
    Facebook X (Twitter) Instagram Pinterest LinkedIn
    Trending
    • SOA OS23: The Future Blueprint for Scalable, Agile Digital Systems
    • Inter vs. Estrella Roja: Full Match Guide and Detailed Stats
    • VCWeather.org: The New Face of Hyperlocal Weather Reporting
    • Baltimore Orioles vs San Francisco Giants Match Player Stats
    • Benefits of Sukanya Samriddhi Yojana for Savings
    • 10 Best Automated Penetration Testing Tools
    • 7 Best Backlit Keyboards for Every Budget
    • Top 11 “Best Buy” Alternatives for Your Electronics Needs in 2025
    Facebook X (Twitter) Instagram Pinterest LinkedIn
    Read Us 24×7
    • Home
    • Technology
      SOA OS23

      SOA OS23: The Future Blueprint for Scalable, Agile Digital Systems

      May 29, 2025
      VCWeather

      VCWeather.org: The New Face of Hyperlocal Weather Reporting

      May 28, 2025
      Best Automated Penetration Testing Tools

      10 Best Automated Penetration Testing Tools

      May 13, 2025
      Backlit Keyboards

      7 Best Backlit Keyboards for Every Budget

      May 12, 2025
      Dark Oxygen

      Dark Oxygen: Redefining Our Understanding of Oxygen Production in the Deep Ocean

      May 9, 2025
    • Business
      Sukanya Samriddhi Yojana

      Benefits of Sukanya Samriddhi Yojana for Savings

      May 13, 2025
      7 Smart Ways to Earn Extra Money in 2025

      7 Smart Ways to Earn Extra Money in 2025

      May 10, 2025

      A Deeper Look at What It Is Like Working at a Prop Firm

      May 1, 2025
      FintechZoom.IO

      FintechZoom.IO: Revolutionizing Fintech in 2025

      April 7, 2025
      Crypto Management

      Unhosted: Revolutionizing Crypto Management with Advanced Wallet Technology

      March 20, 2025
    • Entertainment
      YouTube Audio Downloader

      YouTube Audio Downloader: Your Music Liberation Tool 🎵

      May 9, 2025
      Firestick

      10 Amazing Benefits of Owning a Firestick You Need to Know

      April 24, 2025
      nhentainet

      nhentai.net – Why It’s Attracting Global Attention?

      April 20, 2025
      chatgpts-ghibli-art-generator-goes-viral-why-is-everyone-obsessed

      ChatGPT’s Ghibli Art Generator Goes Viral – Why is Everyone Obsessed?

      March 29, 2025
      Taylor Swift's Producer Suggests New Album on the Horizon

      Taylor Swift’s Producer Suggests New Album on the Horizon

      March 28, 2025
    • Lifestyle
    • Travel
    • Tech Q&A
    Read Us 24×7
    Home » Major Data Leak: 1,000+ ServiceNow Instances Found Exposing Corporate KB
    Technology

    Major Data Leak: 1,000+ ServiceNow Instances Found Exposing Corporate KB

    Sayan DuttaBy Sayan DuttaSeptember 19, 20243 Mins Read
    Share Facebook Twitter Pinterest LinkedIn Reddit Email WhatsApp
    Major Data Leak: 1,000+ ServiceNow Instances Found Exposing Corporate KB
    Share
    Facebook Twitter LinkedIn Pinterest Email Reddit WhatsApp

    A recent security report revealed that over 1,000 ServiceNow instances are leaking sensitive information through misconfigured Knowledge Base (KB) articles. This leak poses a risk by exposing private company data to anyone on the internet. This article discusses how this happened and what companies can do to protect their information.

    What is ServiceNow?

    ServiceNow is a popular software platform used by many organizations. It helps manage tasks across different departments. Companies use it for IT services, handling customer inquiries, and keeping a knowledge base of articles. The knowledge base contains useful guides and information for employees. However, some of this information should not be publicly available.

    Why is the Leak Serious?

    The leaked KB articles contained sensitive data. This includes personally identifiable information, system details, user credentials, and access tokens to live systems. Any person who finds these articles could exploit the information for harmful purposes. This makes it essential for companies to control who can access their data.

    How Did This Happen?

    The problem is with how some ServiceNow instances are set up. Many organizations do not configure their access settings correctly. This mistake allows outsiders to see important KB articles. Although ServiceNow introduced updates in 2023 aimed at improving security, these updates did not fully protect KBs.

    Aaron Costello from AppOmni discovered these issues. His team found that many KBs use an outdated permission system called “User Criteria.” The security updates focused on Access Control Lists (ACLs), but these do not apply to KBs. As a result, many KBs are still at risk.

    The Nature of the Attack

    Malicious actors can easily exploit this vulnerability. They use tools like Burp Suite to send lots of requests to the vulnerable ServiceNow instances. The KB article IDs follow a simple pattern, making it easy to guess. For instance, a cybercriminal can start at KB0000001 and keep trying the next numbers until they access an exposed article.

    This technique is called brute-forcing. It allows an attacker to find and retrieve sensitive articles without any authentication or permission.

    What Can Companies Do?

    Organizations need to take action now. They must block unauthorized access to their Knowledge Bases. Here are the steps they can implement:

    1. Set User Criteria: Admins should set the correct user permissions for their KB articles. They need to ensure that only authorized users can read the content.
    2. Turn Off Public Access: If a KB does not need public access, organizations should turn it off. This reduces the risk of exposing sensitive information.
    3. Use the Right Security Settings: ServiceNow provides several security settings that can help. Admins should enable these options:
      • glide.knowman.block_access_with_no_user_criteria (True): This blocks access to users if no permission is set.
      • glide.knowman.apply_article_read_criteria (True): This makes sure users need explicit permission to read each article.
      • glide.knowman.show_unpublished (False): This keeps unpublished articles hidden from users.
    4. Activate Default Rules: Companies should use ServiceNow’s built-in rules. These rules automatically add ‘Guest Users’ to the “Cannot Read” list for new KB articles. This means that guests cannot access any new content unless explicitly given permission.

    Conclusion

    The potential for leaks through misconfigured ServiceNow instances is alarming. Over 1,000 KB articles expose sensitive information. Companies must act quickly to fix their configurations and protect data. With proper access controls and security settings, organizations can reduce the risk of future leaks. Secure practices will keep sensitive knowledge safe and maintain trust with customers and employees. Keeping data secure is every organization’s responsibility.

    Share. Facebook Twitter Pinterest LinkedIn Email Reddit WhatsApp
    Previous ArticleNew Microsoft Office Version Released Without Subscription Fees
    Next Article Windows 12: Release Timeline and Latest Feature Updates
    Avatar for Sayan Dutta
    Sayan Dutta
    • Website
    • Facebook
    • X (Twitter)
    • Pinterest
    • Instagram
    • LinkedIn

    I am glad you came over here. So, you want to know a little bit about me. I am a passionate digital marketer, blogger, and engineer. I have knowledge & experience in search engine optimization, digital analytics, google algorithms, and many other things.

    Related Posts

    SOA OS23
    Technology

    SOA OS23: The Future Blueprint for Scalable, Agile Digital Systems

    May 29, 2025
    VCWeather
    Technology

    VCWeather.org: The New Face of Hyperlocal Weather Reporting

    May 28, 2025
    Best Automated Penetration Testing Tools
    Technology

    10 Best Automated Penetration Testing Tools

    May 13, 2025

    Table of Contents

    • What is ServiceNow?
    • Why is the Leak Serious?
    • How Did This Happen?
    • The Nature of the Attack
    • What Can Companies Do?
    • Conclusion

    Top Posts

    SOA OS23

    SOA OS23: The Future Blueprint for Scalable, Agile Digital Systems

    May 29, 2025
    Inter vs. Estrella Roja

    Inter vs. Estrella Roja: Full Match Guide and Detailed Stats

    May 29, 2025
    VCWeather

    VCWeather.org: The New Face of Hyperlocal Weather Reporting

    May 28, 2025
    baltimore-orioles-vs-san-francisco-giants-match-player-sats

    Baltimore Orioles vs San Francisco Giants Match Player Stats

    May 28, 2025
    Popular in Social Media
    Anon IG Viewer

    Anon IG Viewer: Best Anonymous Viewer for Instagram

    April 3, 2025
    CFBR

    How to Use CFBR Appropriately? (Pros and Cons)

    September 24, 2024
    EU to Get WhatsApp, Messenger Interoperability with iMessage, Telegram and More

    EU to Get WhatsApp, Messenger Interoperability with iMessage, Telegram and More

    September 9, 2024
    New in Health
    9 Reasons Why People in Their 40s Should Take Daily Supplements

    9 Reasons Why People in Their 40s Should Take Daily Supplements

    April 8, 2025
    Why Put Your Tampons In The Freezer

    Why Put Your Tampons In The Freezer? (Answered)

    November 26, 2024
    WellHealthOrganic Buffalo Milk Tag

    WellHealthOrganic Buffalo Milk Tag: Unveiling Nutritional Brilliance

    November 13, 2024

    google news

    google-play-badge

    Protected by Copyscape

    DMCA.com Protection Status

    Facebook X (Twitter) Instagram Pinterest
    • Terms of Service
    • Privacy Policy
    • Contact Us
    • About
    • Sitemap
    Copyright © 2025 - Read Us 24x7

    Type above and press Enter to search. Press Esc to cancel.