Bleeping Computer

New ServiceNow flaw lets attackers enumerate restricted data

A new vulnerability in ServiceNow, dubbed Count(er) Strike, allows low-privileged users to extract sensitive data from tables to which they should not have access. ServiceNow is a cloud-based platform ...
The Washington Post

Musk’s DOGE agents access sensitive personnel data, alarming security officials

Agents of billionaire Elon Musk’s Department of Government Efficiency have gained access to highly restricted government records on millions of federal employees — including Treasury and State ...