A vulnerability that impacts Now Assist AI Agents and Virtual Agent API applications could be exploited to create backdoor accounts with admin roles.

CSO Online offers insights into cybersecurity, risk management, and IT leadership, providing articles, reports, and expert analysis to help security professionals navigate the evolving threat landscape and protect their organizations from cyber attacks. By exploring CSO Online's curated content, CISOs, security managers, and IT executives can learn about threat intelligence, security frameworks, and incident response strategies for building resilient cybersecurity programs. Whether you're defending against ransomware, phishing attacks, or insider threats, CSO Online offers resources to strengthen your security posture and safeguard your digital assets.

CSO Online

A critical privilege escalation vulnerability called BodySnatcher was discovered in ServiceNow's Now Assist AI Agents and Virtual Agent API. The flaw allowed unauthenticated attackers to impersonate any user by knowing their email address, execute AI agent workflows with elevated privileges, and create backdoor admin accounts. The vulnerability stemmed from rushed AI integration where newer AI agent capabilities were layered on top of older Virtual Agent API authentication mechanisms that didn't require ServiceNow accounts. ServiceNow patched hosted instances in October 2024, but similar dangerous configurations could still exist in custom code or third-party integrations. Organizations should enforce MFA for account linking, review custom AI agents, and regularly audit unused agents.

ServiceNow BodySnatcher flaw highlights risks of rushed AI integrations