Progress Urges ShareFile Users to Shut Down Servers Amid Security Threat
Progress Software has instructed ShareFile customers to immediately shut down Storage Zone Controllers due to a credible security threat. The company has temporarily disabled access to affected accounts as a precaution.
TL;DR
- Progress Software confirms a credible external security threat targeting ShareFile's Storage Zone Controllers.
- Customers are urged to immediately shut down Windows servers running these controllers.
- Access to affected accounts has been temporarily disabled as a precautionary measure.
- The company is working with internal and external security experts to investigate.
- No data breach has been confirmed, but the situation remains under active review.
Progress Software has issued an urgent advisory asking all ShareFile customers to immediately shut down any Windows servers running Storage Zone Controllers. This action follows confirmation of a 'credible external security threat' that could impact the integrity of customer environments.
In response, Progress has temporarily disabled access to affected accounts. While no specific breach has been confirmed, the company stated the move was taken 'out of an abundance of caution' while investigations are ongoing. Customers are advised not to restore services until further notice.
What ShareFile Users Should Do Now
- Immediately shut down all Windows servers running Storage Zone Controllers.
- Do not attempt to restart or restore services until further notice from Progress.
- Monitor official communications from Progress for updates on the investigation.
- Review internal logs for any unusual activity related to Storage Zone infrastructure.
- Coordinate with IT and security teams to assess potential exposure.
Understanding the Risk
- Storage Zone Controllers manage file storage and sharing within ShareFile deployments.
- A compromise could potentially allow unauthorized access to stored files or credentials.
- The threat appears to be external, suggesting possible remote exploitation rather than insider involvement.
- Progress has not disclosed specific technical details to prevent aiding attackers.
- Organizations using cloud-hosted ShareFile may not be directly impacted by this advisory.
Sources
Sources
Security email updates
One digest email when we publish new security articles (TL;DR plus links to read more). Unsubscribe anytime from the message footer. See our Privacy Policy.