top of page
ALL POSTS
ServiceNow Security Incident Exposes Customer Data and Unauthorized Access
Key Findings ServiceNow applied a security update on June 5, 2026 to address an unauthenticated access vulnerability affecting hosted customer instances The flaw allowed unauthorized users to gain elevated access to ServiceNow instances and query customer data Evidence shows successful data access occurred for a subset of customers between June 2-4, 2026 The vulnerability stems from an API endpoint configuration that did not require authentication Community reports allege Ser
Jun 103 min read
Trellix Confirms Source Code Breach Following Unauthorized Repository Access
Key Findings Trellix discovered unauthorized access to a portion of its source code repository Company engaged forensic experts and notified law enforcement immediately upon discovery No evidence found that source code was altered, exploited, or used in malicious distribution Identity of attackers and duration of access remain unknown Exact nature of accessed data has not been disclosed Investigation ongoing with additional details expected upon completion Background Trellix
May 22 min read
bottom of page
