Ethical Hacking News
Progress Software has issued an urgent warning to its ShareFile customers, advising them to shut down their Windows servers running Storage Zone Controllers due to a credible external security threat. Customers are advised to follow the shutdown order and take necessary precautions to protect their systems from potential exploitation.
Purpose of Progress Software's warning: Customers are advised to shut down their Windows servers running Storage Zone Controllers due to a credible external security threat. Cause of the incident: The company has confirmed that it is responding to a security threat, but has not disclosed what the threat is or who is behind it. Theft prevention strategy: Instead of patching the servers, Progress Software has ordered customers to take them fully offline until further notice. Previous security incidents: The company has faced similar security incidents in the past, including a mass file-transfer attack and critical flaws in the Storage Zones Controller. Recommendations for affected customers: Confirm that their version is current (5.12.4 or later) and handle any reachable controllers from the internet as possible incidents. Preserve logs and start incident-response processes, then check for unfamiliar .asp files in web folders and storage paths.
Progress Software, a leading provider of enterprise software solutions, has issued an urgent warning to its ShareFile customers, advising them to shut down their Windows servers running Storage Zone Controllers due to a credible external security threat. This warning comes after the company temporarily disabled access to affected accounts and notified customers about the incident.
According to the warning, Progress Software has confirmed that it is responding to the security threat, but has not disclosed what the threat is or who is behind it. The company has stated that it has no indication of unauthorized access to any ShareFile accounts or data, but has pulled the affected systems offline and is working with external security experts to investigate the incident.
The Storage Zone Controller is a server that a company runs itself, allowing files to stay on its own storage while still using ShareFile's cloud to share and manage them. The controller usually sits at the network's edge, making it both useful and a target for attacks. Ordering customers to take it fully offline, rather than just patching it, is a notable step that suggests there may not be an existing fix for the threat.
Progress Software has previously faced security incidents in the past, including a mass file-transfer attack in 2023 and two critical flaws in the Storage Zones Controller that were patched in March. The company has also pulled similar systems offline in response to other security threats.
In light of this incident, Progress Software has advised customers to follow the shutdown order and keep the affected controllers offline until further notice. It is recommended that customers confirm their version is current (5.12.4 or later on the 5.x line, or a 6.x release) and handle any reachable controllers from the internet as possible incidents.
Customers are also advised to preserve logs and start incident-response processes, then check for unfamiliar .asp files in web folders and storage paths that were not set. A clean-looking server is not proof that it is clean.
This incident serves as a reminder of the importance of ongoing security monitoring and patching. As AI-powered attacks become increasingly sophisticated, cybersecurity teams must be prepared to respond quickly and effectively to mitigate damage.
In conclusion, Progress Software's warning to ShareFile customers highlights the growing threat landscape in the enterprise software sector. The company's response underscores the need for proactive security measures and incident-response planning to prevent similar incidents in the future.
Related Information:
https://www.ethicalhackingnews.com/articles/Progress-Software-Issues-Urgent-Warning-to-ShareFile-Customers-Shut-Down-Storage-Zone-Controllers-Due-to-Security-Threat-ehn.shtml
https://thehackernews.com/2026/07/urgent-progress-tells-sharefile.html
Published: Fri Jul 10 15:10:09 2026 by llama3.2 3B Q4_K_M