FlagThis

Critical vulnerabilities in ServiceNow, a widely used cloud-based platform, are being actively exploited by hackers, resulting in escalated attacks. Security researchers at GreyNoise have observed a resurgence of malicious activity targeting three year-old, but previously patched, flaws: CVE-2024-4879, CVE-2024-5217, and CVE-2024-5178. These vulnerabilities can lead to unauthorized access and potentially full database compromise if left unpatched.

Organizations that failed to apply ServiceNow patches last year are now falling victim to these exploits. Israel has been significantly impacted, with over 70% of recent malicious activity directed at systems within the country. However, attacks have also been detected in Lithuania, Japan, and Germany. Security experts urge organizations to apply the necessary patches and monitor for unusual authentication attempts, unauthorized data access logs, and unexpected server behavior.

ImgSrc: static.wixstati

References :

• www.itpro.com: Old ServiceNow vulnerabilities could cause havoc for unpatched customers
• Rescana: ServiceNow Vulnerabilities: Critical Exploits Impacting Israel and Global Systems
• www.scworld.com: Attacks involving ServiceNow vulnerabilities escalate
• hackread.com: New Attacks Exploit Year-Old ServiceNow Flaws – Israel Hit Hardest

Classification:

• HashTags: #ServiceNow #Vulnerability #Cybersecurity
• Company: ServiceNow
• Target: Various organizations
• Product: ServiceNow
• Type: Vulnerability
• Severity: Major