The combination of policy-based access controls and security monitoring provides a robust defense strategy that can significantly minimize the risk of data breaches.

A centralized system with unprecedented access to data about Social Security, taxes, medical diagnoses and other private information would create vulnerabilities, experts say.

A new vulnerability in ServiceNow, dubbed Count(er) Strike, allows low-privileged users to extract sensitive data from tables to which they should not have access.