Hi,
Does anyone of you have come across this topic already? AppOmni claims in this Article Major Security Misconfiguration Impacting ServiceNow Instances Discovered that 70% of the ServiceNow Instances are not securely configured.
So far so good, but know they have contacted us wiht an excerpt of the table "sn_actsub_user_stream" which shows usernames from our instance. They do not have any user credentials to our instance. We are configured our instance wiht the Explicit Roles Conzept and we have no user Criteria for Guest or Puiblic. In addition we are forcing every user to authenticate.
Does anyone has the same experienced?
