<?xml version="1.0" encoding="utf-8" standalone="yes"?><rss version="2.0" xmlns:atom="http://www.w3.org/2005/Atom"><channel><title>Sharefile on CuraSec</title><link>https://curasec.metacog.co.kr/tags/sharefile/</link><description>Recent content in Sharefile on CuraSec</description><generator>Hugo</generator><language>en-us</language><lastBuildDate>Sat, 11 Jul 2026 11:49:48 +0000</lastBuildDate><atom:link href="https://curasec.metacog.co.kr/tags/sharefile/index.xml" rel="self" type="application/rss+xml"/><item><title>Progress Tells ShareFile Customers to Shut Down Storage Zone Controllers</title><link>https://curasec.metacog.co.kr/insights/2026-07-11-urgent-progress-tells-sharefile-customers-to-shut-down-stora/</link><pubDate>Sat, 11 Jul 2026 11:49:48 +0000</pubDate><guid>https://curasec.metacog.co.kr/insights/2026-07-11-urgent-progress-tells-sharefile-customers-to-shut-down-stora/</guid><description>&lt;ul>
&lt;li>&lt;strong>Engineer — Act:&lt;/strong> Progress has confirmed a credible active threat against on-prem ShareFile Storage Zone Controllers and is directing customers to shut them down immediately. If you run Storage Zone Controllers on Windows, take them offline now and await Progress&amp;rsquo;s remediation guidance before bringing them back up.&lt;/li>
&lt;li>&lt;strong>SOC/IR — Act:&lt;/strong> A vendor-confirmed active compromise campaign against enterprise file-sharing infrastructure warrants an assume-breach review if ShareFile is in your environment — check for lateral movement or data staging activity originating from Storage Zone Controller hosts since at least the past 30 days, and watch Progress and threat intel feeds for IOC release.&lt;/li>
&lt;li>&lt;strong>Leader — Act:&lt;/strong> Progress&amp;rsquo;s directive to shut down an enterprise product mid-operation signals a serious active incident; confirm this week whether your organization runs ShareFile Storage Zone Controllers, request a formal incident statement from Progress, and assess whether any stored data exposure triggers disclosure obligations.&lt;/li>
&lt;/ul></description></item><item><title>Progress urges ShareFile Storage Zone Controller shutdown over active threat</title><link>https://curasec.metacog.co.kr/insights/2026-07-11-progress-urges-sharefile-admins-to-shut-down-servers-over-cr/</link><pubDate>Sat, 11 Jul 2026 11:49:48 +0000</pubDate><guid>https://curasec.metacog.co.kr/insights/2026-07-11-progress-urges-sharefile-admins-to-shut-down-servers-over-cr/</guid><description>&lt;ul>
&lt;li>&lt;strong>Engineer — Act:&lt;/strong> If you run ShareFile Storage Zone Controllers on-premises, shut them down immediately per Progress&amp;rsquo;s emergency guidance — this is the same vendor that disclosed the MoveIt zero-day. Monitor Progress&amp;rsquo;s advisory channel for patch availability before bringing servers back online.&lt;/li>
&lt;li>&lt;strong>SOC/IR — Act:&lt;/strong> Progress issuing an emergency shutdown recommendation implies an unpatched, actively targeted vulnerability; treat any org running on-prem ShareFile Storage Zone Controllers as potentially exposed. Initiate a sweep for anomalous file-transfer or lateral-movement activity from those hosts since at least 72 hours prior to today.&lt;/li>
&lt;li>&lt;strong>Leader — Act:&lt;/strong> Progress Software — the MoveIt vendor — is issuing emergency shutdown orders for ShareFile on-premises deployments, a pattern consistent with imminent or in-progress exploitation. This week: confirm whether your org or any critical SaaS vendors run on-prem ShareFile Storage Zone Controllers and request attestations; brief leadership before this surfaces in news as a repeat of the MoveIt incident.&lt;/li>
&lt;/ul></description></item></channel></rss>