{"id":231128,"date":"2026-06-12T05:00:37","date_gmt":"2026-06-12T12:00:37","guid":{"rendered":"https:\/\/www.mcafee.com\/blogs\/?p=231128"},"modified":"2026-06-11T14:48:11","modified_gmt":"2026-06-11T21:48:11","slug":"servicenow-data-exposure-va-benefits-scam-this-week-in-scams","status":"publish","type":"post","link":"https:\/\/www.mcafee.com\/blogs\/security-news\/servicenow-data-exposure-va-benefits-scam-this-week-in-scams\/","title":{"rendered":"ServiceNow Data Exposure and a New VA Scam: This Week in Scams"},"content":{"rendered":"<p><span data-contrast=\"auto\">Most people think a data breach starts with a hacker breaking into a system.<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\n<p><span data-contrast=\"auto\">In reality, and in many cases, it\u00a0starts\u00a0with\u00a0human error or oversight.<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\n<p><span data-contrast=\"auto\">This week, cloud software giant ServiceNow disclosed that a software flaw allowed some customer data to be accessed without authentication, potentially exposing information that should never have been publicly available.<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\n<p><span data-contrast=\"auto\">The incident is a reminder that your personal information can be put at risk even when cybercriminals\u00a0aren&#8217;t\u00a0directly responsible.<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\n<p><span data-contrast=\"auto\">Here&#8217;s\u00a0what happened\u00a0and our other<\/span><i><span data-contrast=\"auto\">\u00a0This Week in Scams<\/span><\/i><span data-contrast=\"auto\">\u00a0news:<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\n<h2 aria-level=\"2\"><span data-contrast=\"none\">ServiceNow Bug Left Customer Data Exposed<\/span><span data-ccp-props=\"{&quot;134245418&quot;:true,&quot;134245529&quot;:true,&quot;335559738&quot;:160,&quot;335559739&quot;:80}\">\u00a0<\/span><\/h2>\n<p><span data-contrast=\"auto\">ServiceNow, one of the world&#8217;s largest enterprise software providers, recently notified some customers that a software bug allowed unauthorized access to data stored on parts of its platform.<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\n<p><span data-contrast=\"auto\">According to\u00a0<\/span><a href=\"https:\/\/mcas-proxyweb.mcas.ms\/certificate-checker?login=false&amp;originalUrl=https%3A%2F%2Ftechcrunch.com.mcas.ms%2F2026%2F06%2F10%2Fservicenow-tells-customers-a-bug-left-some-of-their-data-exposed-to-the-internet%2F%3FMcasTsid%3D20892&amp;McasCSRF=2523f91618c87a85b66e7a4303ebc49b9eaa014e09a09d4bc1b75599a5704456\"><span data-contrast=\"none\">reporting by TechCrunch<\/span><\/a><span data-contrast=\"auto\">, the flaw could have allowed individuals to access customer data without needing credentials such as a username or password.<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\n<p><span data-contrast=\"auto\">The company says the activity was\u00a0identified\u00a0by security researchers\u00a0participating\u00a0in vulnerability research rather than malicious hackers. ServiceNow told TechCrunch it found no evidence that bad actors\u00a0were responsible for\u00a0the observed activity and said researchers reported the issue through responsible disclosure channels.<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\n<p><span data-contrast=\"auto\">The company patched affected systems on June 5 and launched an investigation into the scope of the exposure.<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\n<h3 aria-level=\"3\"><span data-contrast=\"none\">Why This Matters<\/span><span data-ccp-props=\"{&quot;134245418&quot;:true,&quot;134245529&quot;:true,&quot;335559738&quot;:160,&quot;335559739&quot;:80}\">\u00a0<\/span><\/h3>\n<p><span data-contrast=\"auto\">For consumers, this story highlights an important cybersecurity reality:<strong> not every data exposure is the result of a criminal attack.<\/strong><\/span><strong>\u00a0<\/strong><\/p>\n<p><span data-contrast=\"auto\">Sometimes <strong>information becomes accessible because of:<\/strong><\/span><strong>\u00a0<\/strong><\/p>\n<ul>\n<li><span data-contrast=\"auto\">Software bugs<\/span><span data-ccp-props=\"{&quot;134233117&quot;:false,&quot;134233118&quot;:false,&quot;335559738&quot;:0,&quot;335559739&quot;:0}\">\u00a0<\/span><\/li>\n<li><span data-contrast=\"auto\">Misconfigured cloud systems<\/span><span data-ccp-props=\"{&quot;134233117&quot;:false,&quot;134233118&quot;:false,&quot;335559738&quot;:0,&quot;335559739&quot;:0}\">\u00a0<\/span><\/li>\n<li><span data-contrast=\"auto\">Human error<\/span><span data-ccp-props=\"{&quot;134233117&quot;:false,&quot;134233118&quot;:false,&quot;335559738&quot;:0,&quot;335559739&quot;:0}\">\u00a0<\/span><\/li>\n<li><span data-contrast=\"auto\">Security settings that\u00a0fail to\u00a0work as intended<\/span><span data-ccp-props=\"{&quot;134233117&quot;:false,&quot;134233118&quot;:false,&quot;335559738&quot;:0,&quot;335559739&quot;:0}\">\u00a0<\/span><\/li>\n<\/ul>\n<p><span data-contrast=\"auto\">In this case, ServiceNow says the issue stemmed from a platform vulnerability rather than a breach by threat actors.<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\n<p><span data-contrast=\"auto\">However, the outcome can look similar from a customer&#8217;s perspective. Information that was intended to remain private may have been accessible to unauthorized parties.<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\n<p><span data-contrast=\"auto\">That&#8217;s\u00a0why\u00a0it&#8217;s\u00a0important to pay attention to security notifications from companies you do business with, even when reports emphasize there was &#8220;no hack.&#8221;<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\n<h3 aria-level=\"3\"><span data-contrast=\"none\">What You Should Do After Any Data Exposure<\/span><span data-ccp-props=\"{&quot;134245418&quot;:true,&quot;134245529&quot;:true,&quot;335559738&quot;:160,&quot;335559739&quot;:80}\">\u00a0<\/span><\/h3>\n<p><span data-contrast=\"auto\">Whether a company reports a breach, a vulnerability, or an accidental exposure, the recommended steps are often similar:<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\n<ul>\n<li><span data-contrast=\"auto\">Watch for notifications from the affected company.<\/span><span data-ccp-props=\"{&quot;134233117&quot;:false,&quot;134233118&quot;:false,&quot;335559738&quot;:0,&quot;335559739&quot;:0}\">\u00a0<\/span><\/li>\n<li><span data-contrast=\"auto\">Change passwords if requested.<\/span><span data-ccp-props=\"{&quot;134233117&quot;:false,&quot;134233118&quot;:false,&quot;335559738&quot;:0,&quot;335559739&quot;:0}\">\u00a0<\/span><\/li>\n<li><span data-contrast=\"auto\">Enable multi-factor authentication where available.<\/span><span data-ccp-props=\"{&quot;134233117&quot;:false,&quot;134233118&quot;:false,&quot;335559738&quot;:0,&quot;335559739&quot;:0}\">\u00a0<\/span><\/li>\n<li><span data-contrast=\"auto\">Monitor financial and online accounts for unusual activity.<\/span><span data-ccp-props=\"{&quot;134233117&quot;:false,&quot;134233118&quot;:false,&quot;335559738&quot;:0,&quot;335559739&quot;:0}\">\u00a0<\/span><\/li>\n<li><span data-contrast=\"auto\">Be alert for phishing emails and\u00a0scam\u00a0calls referencing the incident.<\/span><span data-ccp-props=\"{&quot;134233117&quot;:false,&quot;134233118&quot;:false,&quot;335559738&quot;:0,&quot;335559739&quot;:0}\">\u00a0<\/span><\/li>\n<\/ul>\n<p><span data-contrast=\"auto\">Cybercriminals\u00a0frequently\u00a0use news of data exposures to launch follow-up\u00a0scams\u00a0targeting affected customers.<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\n<p><span data-contrast=\"auto\">Tools like\u00a0<\/span><a href=\"https:\/\/www.mcafee.com\/learn\/identity-monitoring\/\"><span data-contrast=\"none\">McAfee Identity Monitoring,<\/span><\/a><span data-contrast=\"auto\">\u00a0<\/span><a href=\"https:\/\/www.mcafee.com\/learn\/identity-monitoring\/\"><span data-contrast=\"none\">Identity Theft Restoration and Cleanup<\/span><\/a><span data-contrast=\"auto\">,\u00a0and\u00a0<\/span><a href=\"https:\/\/www.mcafee.com\/learn\/personal-data-cleanup\/\"><span data-contrast=\"none\">Personal Data Cleanup<\/span><\/a><span data-contrast=\"auto\">\u00a0help protect you before and after data breaches.\u00a0<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\n<h2><span class=\"TextRun SCXW26305287 BCX0\" lang=\"EN-GB\" xml:lang=\"EN-GB\" data-contrast=\"none\"><span class=\"NormalTextRun SCXW26305287 BCX0\" data-ccp-parastyle=\"heading 2\">Other Scam News This Week<\/span><\/span><span class=\"EOP Selected SCXW26305287 BCX0\" data-ccp-props=\"{&quot;134245418&quot;:true,&quot;134245529&quot;:true,&quot;335559738&quot;:160,&quot;335559739&quot;:80}\">\u00a0<\/span><\/h2>\n<p>Here are some other pieces of cybersecurity news making headlines this week.<\/p>\n<h3 aria-level=\"3\"><span data-contrast=\"none\">Veterans Warned About Fake Benefits Postcard Scam<\/span><span data-ccp-props=\"{&quot;134245418&quot;:true,&quot;134245529&quot;:true,&quot;335559738&quot;:160,&quot;335559739&quot;:80}\">\u00a0<\/span><\/h3>\n<p><span data-contrast=\"auto\">The Department of Veterans Affairs\u00a0<\/span><a href=\"https:\/\/news.va.gov\/147334\/veterans-savings-program-postcard-scam\/\"><span data-contrast=\"none\">is warning veterans about fraudulent postcards<\/span><\/a><span data-contrast=\"auto\">\u00a0claiming recipients qualify for\u00a0additional\u00a0VA benefits, including healthcare, dental coverage, and other payments.<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\n<p><span data-contrast=\"auto\">The postcards often create urgency, encouraging recipients to call within a few days. Once contact is made, scammers\u00a0attempt\u00a0to build trust and collect sensitive information such as Social Security numbers, bank account details, and other personal data.<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\n<p><span data-contrast=\"auto\">The VA says\u00a0<\/span><b><span data-contrast=\"auto\">veterans should avoid calling numbers listed on unsolicited mailers<\/span><\/b><span data-contrast=\"auto\">\u00a0and should independently verify benefit information through official VA channels.<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\n<figure id=\"attachment_231130\" aria-describedby=\"caption-attachment-231130\" style=\"width: 1024px\" class=\"wp-caption aligncenter\"><img loading=\"lazy\" decoding=\"async\" class=\"size-large wp-image-231130\" src=\"https:\/\/www.mcafee.com\/blogs\/wp-content\/uploads\/2026\/06\/Screenshot-2026-06-11-at-12.56.56\u202fPM-1024x693.png\" alt=\"This shows a fraudulent postcard sent \" width=\"1024\" height=\"693\" srcset=\"https:\/\/www.mcafee.com\/blogs\/wp-content\/uploads\/2026\/06\/Screenshot-2026-06-11-at-12.56.56\u202fPM-1024x693.png 1024w, https:\/\/www.mcafee.com\/blogs\/wp-content\/uploads\/2026\/06\/Screenshot-2026-06-11-at-12.56.56\u202fPM-300x203.png 300w, https:\/\/www.mcafee.com\/blogs\/wp-content\/uploads\/2026\/06\/Screenshot-2026-06-11-at-12.56.56\u202fPM-768x520.png 768w, https:\/\/www.mcafee.com\/blogs\/wp-content\/uploads\/2026\/06\/Screenshot-2026-06-11-at-12.56.56\u202fPM-1536x1039.png 1536w, https:\/\/www.mcafee.com\/blogs\/wp-content\/uploads\/2026\/06\/Screenshot-2026-06-11-at-12.56.56\u202fPM-191x129.png 191w, https:\/\/www.mcafee.com\/blogs\/wp-content\/uploads\/2026\/06\/Screenshot-2026-06-11-at-12.56.56\u202fPM.png 1920w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" \/><figcaption id=\"caption-attachment-231130\" class=\"wp-caption-text\"><em>Image: Example Fraudulent Notice Courtesy of Shenandoah County Sheriff&#8217;s Office<\/em><\/figcaption><\/figure>\n<h3 aria-level=\"3\"><span data-contrast=\"none\">Childcare Providers Targeted by Fake Check Scam<\/span><span data-ccp-props=\"{&quot;134245418&quot;:true,&quot;134245529&quot;:true,&quot;335559738&quot;:160,&quot;335559739&quot;:80}\">\u00a0<\/span><\/h3>\n<p><span data-contrast=\"auto\">The Federal Trade Commission\u00a0has\u00a0issued an alert to\u00a0childcare providers about\u00a0<\/span><a href=\"https:\/\/consumer.ftc.gov\/consumer-alerts\/2026\/05\/fake-check-scam-targets-childcare-providers\"><span data-contrast=\"none\">scammers posing as parents seeking urgent childcare services.<\/span><\/a><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\n<p><span data-contrast=\"auto\">The\u00a0scam\u00a0follows a familiar pattern. The\u00a0supposed parent\u00a0sends a check in advance that exceeds the expected payment amount and then asks for the difference to be returned through a payment app, wire transfer, gift card, or another method.<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\n<p><span data-contrast=\"auto\">The problem is that the original check is fake.<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\n<p><span data-contrast=\"auto\">Even if the money initially appears in a bank account, the check can later be reversed, leaving the childcare provider responsible for the loss.<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\n<p><b><span data-contrast=\"auto\">If someone sends a check and asks you to send part of the money back, that&#8217;s one of the clearest warning signs of a fake check scam.<\/span><\/b><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\n<h3 aria-level=\"3\"><span data-contrast=\"none\">Microsoft Investigates\u00a0Open Source\u00a0Supply Chain Attack<\/span><span data-ccp-props=\"{&quot;134245418&quot;:true,&quot;134245529&quot;:true,&quot;335559738&quot;:160,&quot;335559739&quot;:80}\">\u00a0<\/span><\/h3>\n<p><span data-contrast=\"auto\">Microsoft temporarily removed dozens of\u00a0open source\u00a0repositories hosted on GitHub after discovering malicious code had been inserted into software projects used by developers.<\/span><span data-ccp-props=\"{&quot;335551550&quot;:0,&quot;335551620&quot;:0}\">\u00a0<\/span><\/p>\n<p><span data-contrast=\"auto\">According to\u00a0<\/span><a href=\"https:\/\/techcrunch.com\/2026\/06\/08\/microsofts-open-source-tools-were-hacked-to-steal-passwords-of-ai-developers\/\"><span data-contrast=\"none\">reports<\/span><\/a><span data-contrast=\"auto\">,\u00a0<\/span><b><span data-contrast=\"auto\">the malware was designed to steal passwords and other credentials from users working with AI development tools<\/span><\/b><span data-contrast=\"auto\">\u00a0and cloud services.<\/span><span data-ccp-props=\"{&quot;335551550&quot;:0,&quot;335551620&quot;:0}\">\u00a0<\/span><\/p>\n<p><span data-contrast=\"auto\">Researchers describe the incident as a supply-chain attack, a type of compromise where attackers target trusted software that may later be downloaded by thousands of users.<\/span><span data-ccp-props=\"{&quot;335551550&quot;:0,&quot;335551620&quot;:0}\">\u00a0<\/span><\/p>\n<p><span data-contrast=\"auto\">Microsoft says it has notified a limited number of potentially affected\u00a0customers.<\/span><span data-ccp-props=\"{&quot;335551550&quot;:0,&quot;335551620&quot;:0}\">\u00a0<\/span><\/p>\n<h2 aria-level=\"2\"><span data-contrast=\"none\">McAfee Safety Tips This Week<\/span><span data-ccp-props=\"{&quot;134245418&quot;:true,&quot;134245529&quot;:true,&quot;335559738&quot;:160,&quot;335559739&quot;:80}\">\u00a0<\/span><\/h2>\n<p><span data-contrast=\"auto\">Not every security incident starts with a hacker.<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\n<p><span data-contrast=\"auto\">Sometimes\u00a0it&#8217;s\u00a0a bug. Sometimes\u00a0it&#8217;s\u00a0a fake postcard.\u00a0No matter how a\u00a0scam\u00a0starts, here are\u00a0a\u00a0few ways to stay safer:<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\n<ul>\n<li><span data-contrast=\"auto\">Verify benefit and financial information through official channels.<\/span><span data-ccp-props=\"{&quot;134233117&quot;:false,&quot;134233118&quot;:false,&quot;335559738&quot;:0,&quot;335559739&quot;:0}\">\u00a0<\/span><\/li>\n<li><span data-contrast=\"auto\">Be\u00a0skeptical\u00a0of urgent requests involving money or personal information.<\/span><span data-ccp-props=\"{&quot;134233117&quot;:false,&quot;134233118&quot;:false,&quot;335559738&quot;:0,&quot;335559739&quot;:0}\">\u00a0<\/span><\/li>\n<li><span data-contrast=\"auto\">Avoid downloading software promoted through social media tutorials.<\/span><span data-ccp-props=\"{&quot;134233117&quot;:false,&quot;134233118&quot;:false,&quot;335559738&quot;:0,&quot;335559739&quot;:0}\">\u00a0<\/span><\/li>\n<li><span data-contrast=\"auto\">Never send money back to someone who claims they accidentally overpaid you.<\/span><span data-ccp-props=\"{&quot;134233117&quot;:false,&quot;134233118&quot;:false,&quot;335559738&quot;:0,&quot;335559739&quot;:0}\">\u00a0<\/span><\/li>\n<li><span data-contrast=\"auto\">Enable multi-factor authentication on important accounts.<\/span><span data-ccp-props=\"{&quot;134233117&quot;:false,&quot;134233118&quot;:false,&quot;335559738&quot;:0,&quot;335559739&quot;:0}\">\u00a0<\/span><\/li>\n<li><span data-contrast=\"auto\">Watch for phishing emails following major breach or exposure announcements.<\/span><span data-ccp-props=\"{&quot;134233117&quot;:false,&quot;134233118&quot;:false,&quot;335559738&quot;:0,&quot;335559739&quot;:0}\">\u00a0<\/span><\/li>\n<\/ul>\n<h3 aria-level=\"3\"><span data-contrast=\"none\">How McAfee Protects Your Identity and Privacy<\/span><span data-ccp-props=\"{&quot;134245418&quot;:true,&quot;134245529&quot;:true,&quot;335559738&quot;:160,&quot;335559739&quot;:80}\">\u00a0<\/span><\/h3>\n<p><span data-contrast=\"auto\">McAfee is built to stop threats before your identity, accounts, or money are compromised.\u00a0<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\n<p><a href=\"https:\/\/www.mcafee.com\/en-us\/identity-theft\/protection.html?path=blogs\"><span data-contrast=\"none\">McAfee+ Advanced<\/span><\/a><span data-contrast=\"auto\">\u00a0includes multiple layers of protection:<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\n<p style=\"padding-left: 80px;\"><a href=\"https:\/\/www.mcafee.com\/en-us\/scam-detector\/?path=blogs\"><span data-contrast=\"none\">Scam Detector<\/span><\/a><span data-contrast=\"auto\">\u00a0flags suspicious texts, emails, links, QR codes, and even deepfake videos before you engage\u00a0\u00a0<\/span><span data-ccp-props=\"{&quot;335559685&quot;:720}\">\u00a0<\/span><\/p>\n<p style=\"padding-left: 80px;\"><a href=\"https:\/\/www.mcafee.com\/learn\/vpn\/?path=blogs\"><span data-contrast=\"none\">Secure VPN<\/span><\/a><span data-contrast=\"auto\">\u00a0keeps your data private, especially on public Wi-Fi\u00a0\u00a0\u00a0<\/span><span data-ccp-props=\"{&quot;335559685&quot;:720}\">\u00a0<\/span><\/p>\n<p style=\"padding-left: 80px;\"><a href=\"https:\/\/www.mcafee.com\/learn\/web-protection\/?path=blogs\"><span data-contrast=\"none\">Web Protection<\/span><\/a><span data-contrast=\"auto\">\u00a0helps block risky sites, even if you do accidentally click\u00a0<\/span><span data-ccp-props=\"{&quot;335559685&quot;:720}\">\u00a0<\/span><\/p>\n<p style=\"padding-left: 80px;\"><a href=\"https:\/\/www.mcafee.com\/learn\/password-manager\/\"><span data-contrast=\"none\">Password Manager<\/span><\/a><span data-contrast=\"auto\">\u00a0doesn\u2019t\u00a0just help you make unique, strong passwords, it keeps them stored and organized for you\u00a0<\/span><span data-ccp-props=\"{&quot;335559685&quot;:720}\">\u00a0<\/span><\/p>\n<p style=\"padding-left: 80px;\"><a href=\"https:\/\/www.mcafee.com\/en-us\/antivirus.html\"><span data-contrast=\"none\">Device Security<\/span><\/a><span data-contrast=\"auto\">\u00a0helps detect malicious apps or downloads\u00a0\u00a0\u00a0\u00a0<\/span><span data-ccp-props=\"{&quot;335559685&quot;:720}\">\u00a0<\/span><\/p>\n<p style=\"padding-left: 80px;\"><a href=\"https:\/\/www.mcafee.com\/learn\/identity-monitoring\/?path=blogs\"><span data-contrast=\"none\">Identity Monitoring<\/span><\/a><span data-contrast=\"auto\">\u00a0alerts you if your personal info shows up where it should not, so you can act fast\u00a0\u00a0\u00a0\u00a0<\/span><span data-ccp-props=\"{&quot;335559685&quot;:720}\">\u00a0<\/span><\/p>\n<p style=\"padding-left: 80px;\"><a href=\"https:\/\/www.mcafee.com\/learn\/personal-data-cleanup\/?path=blogs\"><span data-contrast=\"none\">Personal Data Cleanup<\/span><\/a><span data-contrast=\"auto\">\u00a0helps remove your information from sites selling it.\u00a0\u00a0<\/span><span data-ccp-props=\"{&quot;335559685&quot;:720}\">\u00a0<\/span><\/p>\n<p style=\"padding-left: 80px;\"><a href=\"https:\/\/www.mcafee.com\/learn\/online-account-cleanup\/?path=blogs\"><span data-contrast=\"none\">Online Account Cleanup<\/span><\/a><span data-contrast=\"auto\">\u00a0assists\u00a0in taking down your old, forgotten accounts across the web\u00a0\u00a0<\/span><span data-ccp-props=\"{&quot;335559685&quot;:720}\">\u00a0<\/span><\/p>\n<p style=\"padding-left: 80px;\"><a href=\"https:\/\/www.mcafee.com\/learn\/social-privacy-manager\/\"><span data-contrast=\"none\">Social Privacy Manager<\/span><\/a><span data-contrast=\"auto\">\u00a0helps you\u00a0monitor\u00a0and change privacy settings across your social platforms in just a few clicks\u00a0\u00a0<\/span><span data-ccp-props=\"{&quot;335559685&quot;:720}\">\u00a0<\/span><\/p>\n<p><span data-contrast=\"auto\">The common thread across\u00a0nearly every\u00a0scam\u00a0is trust. Scammers count on people acting before they verify.<\/span><span data-ccp-props=\"{&quot;134233117&quot;:false,&quot;134233118&quot;:false,&quot;335559738&quot;:0,&quot;335559739&quot;:0}\">\u00a0<\/span><\/p>\n<p><span data-contrast=\"auto\">We&#8217;ll\u00a0be back next week with more\u00a0scams\u00a0making headlines.<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Most people think a data breach starts with a hacker breaking into a system.\u00a0 In reality, and in many cases,&#8230;<\/p>\n","protected":false},"author":1440,"featured_media":202617,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"footnotes":""},"categories":[10667,10661,13],"tags":[],"coauthors":[16632],"class_list":["post-231128","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-security-news","category-internet-security","category-privacy-identity-protection"],"acf":[],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v25.4 - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>ServiceNow Data Exposure and a New VA Scam: This Week in Scams | McAfee Blog<\/title>\n<meta name=\"description\" content=\"Most people think a data breach starts with a hacker breaking into a system.\u00a0 In reality, and in many cases, it\u00a0starts\u00a0with\u00a0human error or oversight.\u00a0\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"ServiceNow Data Exposure and a New VA Scam: This Week in Scams | McAfee Blog\" \/>\n<meta property=\"og:description\" content=\"Most people think a data breach starts with a hacker breaking into a system.\u00a0 In reality, and in many cases, it\u00a0starts\u00a0with\u00a0human error or oversight.\u00a0\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.mcafee.com\/blogs\/security-news\/servicenow-data-exposure-va-benefits-scam-this-week-in-scams\/\" \/>\n<meta property=\"og:site_name\" content=\"McAfee Blog\" \/>\n<meta property=\"article:publisher\" content=\"https:\/\/www.facebook.com\/McAfee\/\" \/>\n<meta property=\"article:published_time\" content=\"2026-06-12T12:00:37+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.mcafee.com\/blogs\/wp-content\/uploads\/2024\/10\/300x200_Blog_100924.png\" \/>\n\t<meta property=\"og:image:width\" content=\"300\" \/>\n\t<meta property=\"og:image:height\" content=\"200\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/png\" \/>\n<meta name=\"author\" content=\"Brooke Seipel\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@McAfee\" \/>\n<meta name=\"twitter:site\" content=\"@McAfee\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Brooke Seipel\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"5 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\/\/www.mcafee.com\/blogs\/security-news\/servicenow-data-exposure-va-benefits-scam-this-week-in-scams\/#article\",\"isPartOf\":{\"@id\":\"https:\/\/www.mcafee.com\/blogs\/security-news\/servicenow-data-exposure-va-benefits-scam-this-week-in-scams\/\"},\"author\":{\"name\":\"Brooke Seipel\",\"@id\":\"https:\/\/www.mcafee.com\/blogs\/#\/schema\/person\/e0177129df164a74082f47397af3e729\"},\"headline\":\"ServiceNow Data Exposure and a New VA Scam: This Week in Scams\",\"datePublished\":\"2026-06-12T12:00:37+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/www.mcafee.com\/blogs\/security-news\/servicenow-data-exposure-va-benefits-scam-this-week-in-scams\/\"},\"wordCount\":1056,\"publisher\":{\"@id\":\"https:\/\/www.mcafee.com\/blogs\/#organization\"},\"image\":{\"@id\":\"https:\/\/www.mcafee.com\/blogs\/security-news\/servicenow-data-exposure-va-benefits-scam-this-week-in-scams\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/www.mcafee.com\/blogs\/wp-content\/uploads\/2024\/10\/300x200_Blog_100924.png\",\"articleSection\":[\"Security News\",\"Internet Security\",\"Privacy &amp; Identity Protection\"],\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/www.mcafee.com\/blogs\/security-news\/servicenow-data-exposure-va-benefits-scam-this-week-in-scams\/\",\"url\":\"https:\/\/www.mcafee.com\/blogs\/security-news\/servicenow-data-exposure-va-benefits-scam-this-week-in-scams\/\",\"name\":\"ServiceNow Data Exposure and a New VA Scam: This Week in Scams | McAfee Blog\",\"isPartOf\":{\"@id\":\"https:\/\/www.mcafee.com\/blogs\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/www.mcafee.com\/blogs\/security-news\/servicenow-data-exposure-va-benefits-scam-this-week-in-scams\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/www.mcafee.com\/blogs\/security-news\/servicenow-data-exposure-va-benefits-scam-this-week-in-scams\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/www.mcafee.com\/blogs\/wp-content\/uploads\/2024\/10\/300x200_Blog_100924.png\",\"datePublished\":\"2026-06-12T12:00:37+00:00\",\"description\":\"Most people think a data breach starts with a hacker breaking into a system.\u00a0 In reality, and in many cases, it\u00a0starts\u00a0with\u00a0human error or oversight.\u00a0\",\"breadcrumb\":{\"@id\":\"https:\/\/www.mcafee.com\/blogs\/security-news\/servicenow-data-exposure-va-benefits-scam-this-week-in-scams\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/www.mcafee.com\/blogs\/security-news\/servicenow-data-exposure-va-benefits-scam-this-week-in-scams\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.mcafee.com\/blogs\/security-news\/servicenow-data-exposure-va-benefits-scam-this-week-in-scams\/#primaryimage\",\"url\":\"https:\/\/www.mcafee.com\/blogs\/wp-content\/uploads\/2024\/10\/300x200_Blog_100924.png\",\"contentUrl\":\"https:\/\/www.mcafee.com\/blogs\/wp-content\/uploads\/2024\/10\/300x200_Blog_100924.png\",\"width\":300,\"height\":200},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/www.mcafee.com\/blogs\/security-news\/servicenow-data-exposure-va-benefits-scam-this-week-in-scams\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Blog\",\"item\":\"https:\/\/www.mcafee.com\/blogs\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Security News\",\"item\":\"https:\/\/www.mcafee.com\/blogs\/security-news\/\"},{\"@type\":\"ListItem\",\"position\":3,\"name\":\"ServiceNow Data Exposure and a New VA Scam: This Week in Scams\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/www.mcafee.com\/blogs\/#website\",\"url\":\"https:\/\/www.mcafee.com\/blogs\/\",\"name\":\"McAfee Blog\",\"description\":\"Internet Security News\",\"publisher\":{\"@id\":\"https:\/\/www.mcafee.com\/blogs\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/www.mcafee.com\/blogs\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/www.mcafee.com\/blogs\/#organization\",\"name\":\"McAfee\",\"url\":\"https:\/\/www.mcafee.com\/blogs\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.mcafee.com\/blogs\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/www.mcafee.com\/blogs\/wp-content\/uploads\/2023\/02\/mcafee-logo.png\",\"contentUrl\":\"https:\/\/www.mcafee.com\/blogs\/wp-content\/uploads\/2023\/02\/mcafee-logo.png\",\"width\":1286,\"height\":336,\"caption\":\"McAfee\"},\"image\":{\"@id\":\"https:\/\/www.mcafee.com\/blogs\/#\/schema\/logo\/image\/\"},\"sameAs\":[\"https:\/\/www.facebook.com\/McAfee\/\",\"https:\/\/x.com\/McAfee\",\"https:\/\/www.linkedin.com\/company\/mcafee\/\",\"https:\/\/www.youtube.com\/McAfee\"]},{\"@type\":\"Person\",\"@id\":\"https:\/\/www.mcafee.com\/blogs\/#\/schema\/person\/e0177129df164a74082f47397af3e729\",\"name\":\"Brooke Seipel\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.mcafee.com\/blogs\/#\/schema\/person\/image\/ac03c1083bbdcd2cbb0675dc29c62cbe\",\"url\":\"https:\/\/www.mcafee.com\/blogs\/wp-content\/uploads\/2025\/01\/1693283531327-96x96.jpg\",\"contentUrl\":\"https:\/\/www.mcafee.com\/blogs\/wp-content\/uploads\/2025\/01\/1693283531327-96x96.jpg\",\"caption\":\"Brooke Seipel\"},\"description\":\"Brooke Seipel is the Content Editor in Chief at McAfee, where she leads the company's content strategy with a focus on cybersecurity education. With a decade of experience in audience development and digital content, Brooke has a strong understanding of online audiences, emerging trends, and the evolving cyber landscape. Before joining McAfee, Brooke led audience teams and served as both a reporter and editor at numerous award-winning publications including Fortune, The Hill, International Business Times, New Republic, and The OC Register. Brooke is dedicated to providing insightful, actionable content that empowers readers to make informed decisions about their digital safety. When she's not immersed in the world of cybersecurity, you can find her scrolling social media endlessly, soaking up the latest trends, and also volunteering as a naturalist.\",\"url\":\"https:\/\/www.mcafee.com\/blogs\/author\/brooke-seipel\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"ServiceNow Data Exposure and a New VA Scam: This Week in Scams | McAfee Blog","description":"Most people think a data breach starts with a hacker breaking into a system.\u00a0 In reality, and in many cases, it\u00a0starts\u00a0with\u00a0human error or oversight.\u00a0","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"og_locale":"en_US","og_type":"article","og_title":"ServiceNow Data Exposure and a New VA Scam: This Week in Scams | McAfee Blog","og_description":"Most people think a data breach starts with a hacker breaking into a system.\u00a0 In reality, and in many cases, it\u00a0starts\u00a0with\u00a0human error or oversight.\u00a0","og_url":"https:\/\/www.mcafee.com\/blogs\/security-news\/servicenow-data-exposure-va-benefits-scam-this-week-in-scams\/","og_site_name":"McAfee Blog","article_publisher":"https:\/\/www.facebook.com\/McAfee\/","article_published_time":"2026-06-12T12:00:37+00:00","og_image":[{"width":300,"height":200,"url":"https:\/\/www.mcafee.com\/blogs\/wp-content\/uploads\/2024\/10\/300x200_Blog_100924.png","type":"image\/png"}],"author":"Brooke Seipel","twitter_card":"summary_large_image","twitter_creator":"@McAfee","twitter_site":"@McAfee","twitter_misc":{"Written by":"Brooke Seipel","Est. reading time":"5 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.mcafee.com\/blogs\/security-news\/servicenow-data-exposure-va-benefits-scam-this-week-in-scams\/#article","isPartOf":{"@id":"https:\/\/www.mcafee.com\/blogs\/security-news\/servicenow-data-exposure-va-benefits-scam-this-week-in-scams\/"},"author":{"name":"Brooke Seipel","@id":"https:\/\/www.mcafee.com\/blogs\/#\/schema\/person\/e0177129df164a74082f47397af3e729"},"headline":"ServiceNow Data Exposure and a New VA Scam: This Week in Scams","datePublished":"2026-06-12T12:00:37+00:00","mainEntityOfPage":{"@id":"https:\/\/www.mcafee.com\/blogs\/security-news\/servicenow-data-exposure-va-benefits-scam-this-week-in-scams\/"},"wordCount":1056,"publisher":{"@id":"https:\/\/www.mcafee.com\/blogs\/#organization"},"image":{"@id":"https:\/\/www.mcafee.com\/blogs\/security-news\/servicenow-data-exposure-va-benefits-scam-this-week-in-scams\/#primaryimage"},"thumbnailUrl":"https:\/\/www.mcafee.com\/blogs\/wp-content\/uploads\/2024\/10\/300x200_Blog_100924.png","articleSection":["Security News","Internet Security","Privacy &amp; Identity Protection"],"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/www.mcafee.com\/blogs\/security-news\/servicenow-data-exposure-va-benefits-scam-this-week-in-scams\/","url":"https:\/\/www.mcafee.com\/blogs\/security-news\/servicenow-data-exposure-va-benefits-scam-this-week-in-scams\/","name":"ServiceNow Data Exposure and a New VA Scam: This Week in Scams | McAfee Blog","isPartOf":{"@id":"https:\/\/www.mcafee.com\/blogs\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.mcafee.com\/blogs\/security-news\/servicenow-data-exposure-va-benefits-scam-this-week-in-scams\/#primaryimage"},"image":{"@id":"https:\/\/www.mcafee.com\/blogs\/security-news\/servicenow-data-exposure-va-benefits-scam-this-week-in-scams\/#primaryimage"},"thumbnailUrl":"https:\/\/www.mcafee.com\/blogs\/wp-content\/uploads\/2024\/10\/300x200_Blog_100924.png","datePublished":"2026-06-12T12:00:37+00:00","description":"Most people think a data breach starts with a hacker breaking into a system.\u00a0 In reality, and in many cases, it\u00a0starts\u00a0with\u00a0human error or oversight.\u00a0","breadcrumb":{"@id":"https:\/\/www.mcafee.com\/blogs\/security-news\/servicenow-data-exposure-va-benefits-scam-this-week-in-scams\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.mcafee.com\/blogs\/security-news\/servicenow-data-exposure-va-benefits-scam-this-week-in-scams\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.mcafee.com\/blogs\/security-news\/servicenow-data-exposure-va-benefits-scam-this-week-in-scams\/#primaryimage","url":"https:\/\/www.mcafee.com\/blogs\/wp-content\/uploads\/2024\/10\/300x200_Blog_100924.png","contentUrl":"https:\/\/www.mcafee.com\/blogs\/wp-content\/uploads\/2024\/10\/300x200_Blog_100924.png","width":300,"height":200},{"@type":"BreadcrumbList","@id":"https:\/\/www.mcafee.com\/blogs\/security-news\/servicenow-data-exposure-va-benefits-scam-this-week-in-scams\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Blog","item":"https:\/\/www.mcafee.com\/blogs\/"},{"@type":"ListItem","position":2,"name":"Security News","item":"https:\/\/www.mcafee.com\/blogs\/security-news\/"},{"@type":"ListItem","position":3,"name":"ServiceNow Data Exposure and a New VA Scam: This Week in Scams"}]},{"@type":"WebSite","@id":"https:\/\/www.mcafee.com\/blogs\/#website","url":"https:\/\/www.mcafee.com\/blogs\/","name":"McAfee Blog","description":"Internet Security News","publisher":{"@id":"https:\/\/www.mcafee.com\/blogs\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.mcafee.com\/blogs\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.mcafee.com\/blogs\/#organization","name":"McAfee","url":"https:\/\/www.mcafee.com\/blogs\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.mcafee.com\/blogs\/#\/schema\/logo\/image\/","url":"https:\/\/www.mcafee.com\/blogs\/wp-content\/uploads\/2023\/02\/mcafee-logo.png","contentUrl":"https:\/\/www.mcafee.com\/blogs\/wp-content\/uploads\/2023\/02\/mcafee-logo.png","width":1286,"height":336,"caption":"McAfee"},"image":{"@id":"https:\/\/www.mcafee.com\/blogs\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/www.facebook.com\/McAfee\/","https:\/\/x.com\/McAfee","https:\/\/www.linkedin.com\/company\/mcafee\/","https:\/\/www.youtube.com\/McAfee"]},{"@type":"Person","@id":"https:\/\/www.mcafee.com\/blogs\/#\/schema\/person\/e0177129df164a74082f47397af3e729","name":"Brooke Seipel","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.mcafee.com\/blogs\/#\/schema\/person\/image\/ac03c1083bbdcd2cbb0675dc29c62cbe","url":"https:\/\/www.mcafee.com\/blogs\/wp-content\/uploads\/2025\/01\/1693283531327-96x96.jpg","contentUrl":"https:\/\/www.mcafee.com\/blogs\/wp-content\/uploads\/2025\/01\/1693283531327-96x96.jpg","caption":"Brooke Seipel"},"description":"Brooke Seipel is the Content Editor in Chief at McAfee, where she leads the company's content strategy with a focus on cybersecurity education. With a decade of experience in audience development and digital content, Brooke has a strong understanding of online audiences, emerging trends, and the evolving cyber landscape. Before joining McAfee, Brooke led audience teams and served as both a reporter and editor at numerous award-winning publications including Fortune, The Hill, International Business Times, New Republic, and The OC Register. Brooke is dedicated to providing insightful, actionable content that empowers readers to make informed decisions about their digital safety. When she's not immersed in the world of cybersecurity, you can find her scrolling social media endlessly, soaking up the latest trends, and also volunteering as a naturalist.","url":"https:\/\/www.mcafee.com\/blogs\/author\/brooke-seipel\/"}]}},"_links":{"self":[{"href":"https:\/\/www.mcafee.com\/blogs\/wp-json\/wp\/v2\/posts\/231128","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.mcafee.com\/blogs\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.mcafee.com\/blogs\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.mcafee.com\/blogs\/wp-json\/wp\/v2\/users\/1440"}],"replies":[{"embeddable":true,"href":"https:\/\/www.mcafee.com\/blogs\/wp-json\/wp\/v2\/comments?post=231128"}],"version-history":[{"count":4,"href":"https:\/\/www.mcafee.com\/blogs\/wp-json\/wp\/v2\/posts\/231128\/revisions"}],"predecessor-version":[{"id":231147,"href":"https:\/\/www.mcafee.com\/blogs\/wp-json\/wp\/v2\/posts\/231128\/revisions\/231147"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.mcafee.com\/blogs\/wp-json\/wp\/v2\/media\/202617"}],"wp:attachment":[{"href":"https:\/\/www.mcafee.com\/blogs\/wp-json\/wp\/v2\/media?parent=231128"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.mcafee.com\/blogs\/wp-json\/wp\/v2\/categories?post=231128"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.mcafee.com\/blogs\/wp-json\/wp\/v2\/tags?post=231128"},{"taxonomy":"author","embeddable":true,"href":"https:\/\/www.mcafee.com\/blogs\/wp-json\/wp\/v2\/coauthors?post=231128"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}