<?xml version="1.0" encoding="utf-8" standalone="yes"?><rss version="2.0" xmlns:atom="http://www.w3.org/2005/Atom"><channel><title>Active-Incident on CuraSec</title><link>https://curasec.metacog.co.kr/tags/active-incident/</link><description>Recent content in Active-Incident on CuraSec</description><generator>Hugo</generator><language>en-us</language><lastBuildDate>Sat, 11 Jul 2026 11:49:48 +0000</lastBuildDate><atom:link href="https://curasec.metacog.co.kr/tags/active-incident/index.xml" rel="self" type="application/rss+xml"/><item><title>Progress Tells ShareFile Customers to Shut Down Storage Zone Controllers</title><link>https://curasec.metacog.co.kr/insights/2026-07-11-urgent-progress-tells-sharefile-customers-to-shut-down-stora/</link><pubDate>Sat, 11 Jul 2026 11:49:48 +0000</pubDate><guid>https://curasec.metacog.co.kr/insights/2026-07-11-urgent-progress-tells-sharefile-customers-to-shut-down-stora/</guid><description>&lt;ul>
&lt;li>&lt;strong>Engineer — Act:&lt;/strong> Progress has confirmed a credible active threat against on-prem ShareFile Storage Zone Controllers and is directing customers to shut them down immediately. If you run Storage Zone Controllers on Windows, take them offline now and await Progress&amp;rsquo;s remediation guidance before bringing them back up.&lt;/li>
&lt;li>&lt;strong>SOC/IR — Act:&lt;/strong> A vendor-confirmed active compromise campaign against enterprise file-sharing infrastructure warrants an assume-breach review if ShareFile is in your environment — check for lateral movement or data staging activity originating from Storage Zone Controller hosts since at least the past 30 days, and watch Progress and threat intel feeds for IOC release.&lt;/li>
&lt;li>&lt;strong>Leader — Act:&lt;/strong> Progress&amp;rsquo;s directive to shut down an enterprise product mid-operation signals a serious active incident; confirm this week whether your organization runs ShareFile Storage Zone Controllers, request a formal incident statement from Progress, and assess whether any stored data exposure triggers disclosure obligations.&lt;/li>
&lt;/ul></description></item></channel></rss>