Most ServiceNow Instances Misconfigured, Exposed
Customers aren’t locking down access correctly, leading to ~70 percent of ServiceNow implementations being vulnerable to malicious data extraction.
Source: https://threatpost.com/most-servicenow-instances-misconfigured-exposed/178827/