Cloud expertise large ServiceNow seems to have notified a few of its enterprise clients {that a} software program bug on its platform was permitting anybody on the web to entry their information.
A knowledge base article, which ServiceNow has hidden behind a login wall however has been shared on Reddit, says the corporate on June 5 patched some buyer situations to repair a bug that had allowed unauthenticated customers to “acquire better entry” to ServiceNow-hosted information than supposed.
The bug allowed doubtlessly anybody to acquire information saved in buyer situations with out requiring credentials, resembling a password.
It’s not clear who had improper entry to ServiceNow clients, what information was accessed or taken, or if any group was concerned. Provided that the safety incident seems to stem from a data-exposing bug, it’s unclear if clients might have protected themselves from improper entry.
ServiceNow is a cloud computing large that permits hundreds of its enterprise clients to automate their inside enterprise processes. Firms use the tech large’s platform to construct workflows that join to varied apps and databases, resembling IT and HR programs, which can be utilized to robotically deal with repeat duties, like onboarding employees, resolving tech assist tickets, and for chatbots.
As such, corporations like ServiceNow are high-value targets for hackers due to the quantity of delicate information that they retailer, resembling buyer assist tickets, which might embody passwords, keys and credentials.
ServiceNow mentioned the difficulty pertains to Australian buyer situations, however several people on Reddit who should not situated in Australia say they’ve recognized proof of exterior entry to their ServiceNow situations. Community defenders shared an IP address, 51.159.98.241, mentioned to be an indicator of potential compromise if present in a buyer’s logs.
A spokesperson for ServiceNow didn’t instantly return TechCrunch’s e mail requesting remark and searching for solutions on what number of clients are affected, or how lengthy the bug had uncovered the information.
While you buy by way of hyperlinks in our articles, we might earn a small fee. This doesn’t have an effect on our editorial independence.
