🔴 Critical  |  Source: The Hacker News


Progress Software has issued an urgent directive to ShareFile customers to shut down their on-premises Storage Zone Controller Windows servers in response to a credible, unspecified external security threat. The company has proactively disabled access to affected accounts whilst it investigates. The nature of the threat has not been publicly disclosed, but the severity of the response suggests a potentially serious vulnerability or active exploitation.

Security Architect’s Take: If your organisation runs ShareFile Storage Zone Controllers, shut down those Windows servers immediately in line with Progress’s guidance and audit network access logs for any unusual activity against those hosts. Review your incident response plan for managed file transfer (MFT) solutions, given the history of critical vulnerabilities in this product category.

Original advisory: URGENT - Progress Tells ShareFile Customers to Shut Down Storage Zone Controllers Over Security Threat