What a $400,000 lobster theft teaches us about cyber risk
In our last column we talked about a strategic cyber threat positioning for future leverage. ...
In a nutshell: ServiceNow’s unauthenticated API flaw exposed enterprise data including IT tickets, credentials, and employee records. The company patched it silently, then hid the advisory behind a login wall. If you run ServiceNow for ITSM, HR, or supply chain workflows, this is your problem.
About three weeks ago, someone queried your ServiceNow instance without a password, without a token, without any credential at all, and ServiceNow decided you didn’t need to know about it right away.
In early ...
For uninterrupted access, sign in, subscribe or upgrade to The Daily News. For as little as £12 / month (£100/year), we can get you into the room where the big decisions are made.
For uninterrupted access, sign in or sign up to The Daily News, Premium or The Loadstar Enterprise Plan.
Comment on this article