
Progress ShareFile Users: Company Orders Urgent Server Shutdown Over Security Threat
Progress Software is responding to a credible security threat by ordering ShareFile customers to shut down their servers and temporarily disabling affected accounts.
Source
The Hacker News
Original headline: URGENT - Progress Tells ShareFile Customers to Shut Down Storage Zone Controllers Over Security Threat
Plain-English summary by GetCyberRight. Read the full report at the source above.
Progress Software has issued an urgent warning to customers who use their ShareFile service. The company is responding to what it calls a credible external security threat. Progress has told customers to shut down the Windows servers that run their Storage Zone Controllers. The company has also temporarily disabled access to affected accounts while it investigates the threat. This affects businesses and organizations that use ShareFile's self-hosted storage option called Storage Zone Controllers. If your workplace or organization uses ShareFile for file sharing and storage, and you manage your own servers with Storage Zone Controllers, you are directly affected. Progress took this step out of caution while working with security teams to understand and address the threat.
If you use ShareFile at work, here is what you should do right now.
- Contact your IT department or the person who manages file sharing at your organization to confirm whether you use Storage Zone Controllers.
- If you do use this service, follow any instructions from your IT team about shutting down servers or changing how you access files.
- Do not attempt to access ShareFile if your organization has told you the service is temporarily unavailable.
- Watch for official communications from your workplace about when the service will be restored safely. For long-term protection, always follow your workplace's security policies about file sharing and data storage. When using any cloud storage or file sharing service, make sure you have strong, unique passwords and enable two-factor authentication if available. Keep work files separate from personal files, and never share login credentials with others. If you receive any unusual emails asking you to click links related to ShareFile or other work services, verify with your IT department before clicking.
Curated from trusted cybersecurity sources by GetCyberRight
Source: The Hacker NewsStay ahead of cyber threats
Get our free weekly digest. Real threats, plain language, what to do about them. No spam, ever.
More articles

Government Cybersecurity Agency Accidentally Exposed Its Own Passwords Online
CISA, the agency responsible for protecting government computer systems, had employee passwords accidentally posted publicly on GitHub by a contractor.
2 min read
CISA Contractor Accidentally Exposed Passwords in Public Online Repository
An employee of a contractor working for the U.S. cybersecurity agency CISA accidentally uploaded passwords to a publicly accessible location on GitHub.
2 min readWhy Firmware Attacks Now Threaten Your Smart Home Devices
Six newly discovered vulnerabilities in common device firmware let attackers hide malware where your antivirus can't see it. Here's what families need to know.
3 min readRyuk Ransomware Criminal Faces 15 Years: What Families Need to Know
An Armenian hacker pleaded guilty to ransomware attacks on U.S. businesses. His arrest proves cybercriminals can be caught and prosecuted.
3 min read