Worrying ServiceNow security flaw could let hackers steal private table data

A ServiceNow flaw could have allowed threat actors to exfiltrate sensitive data from other users tables. The flaw, dubbed Count(er) Strike, was spotted by security researchers Varonis. The bug stems from faulty Access Control Lists (ACLs)