The cyberattack started on Sunday.
Latest from Jonathan Greig
ServiceNow releases guidance on Access Control List misconfigurations after report highlights prevalence
AppOmni said 70% of the ServiceNow instances they tested had an Access Control List misconfiguration.
Microsoft also said it will not display any Russian state-sponsored RT and Sputnik content
Researchers from cybersecurity firm Salt Security discovered widespread mistakes that allowed them to launch attacks where any user could extract sensitive customer and system data.
Axis said ransomware was not involved but investigators did find malware.
According to Qualys, one of the vulnerabilities can be exploited to escalate privilege to gain root privileges.
Security teams at Microsoft said the malware first appeared on victim systems in Ukraine on January 13.
CEO Bryan Palma said the cybersecurity talent deficit means AI and machine learning will need to take on a bigger role in cybersecurity.
The report said one had a "critical" severity score and the other had a "high" severity score.
For the first half of 2021, almost $600 million was linked to ransomware payments thanks to reports filed by financial services firms.