Data Breaches3 min read
ServiceNow API Flaw Exposed Customer Data Before Patch
Attackers exploited an unauthenticated API endpoint to query ServiceNow customer instances. The company received a bug report in April but didn't patch until June 5—after exploitation began.
Sarah MitchellJun 11, 2026