Tech Translated

IT Security & Technology Blog

Practical IT insights for Australian businesses. Our team covers cybersecurity advisories, compliance updates, and plain-English explainers on the technology your business relies on, published regularly as the landscape shifts.

Progress orders ShareFile server shutdown over active security threat

Progress Software has told ShareFile customers using on-premises Storage Zone Controllers to immediately shut down their Windows servers after identifying what it calls a “credible external security threat.” No patch is available yet — the only mitigation right now is pulling the plug, as reported by BleepingComputer.

Storage Zone Controllers are the on-prem component that lets organisations keep files on their own storage while still using ShareFile’s cloud for sharing and authentication. Progress has disabled cloud access to these accounts as a precaution, but stressed that’s not enough — you need to manually shut down the hosting server to protect your data. Standard cloud-only ShareFile accounts are not affected.

This matters for Australian businesses because it’s Progress Software’s third major security incident in three years. The MOVEit Transfer breach in 2023 hit thousands of organisations globally, including several Australian government agencies and corporates. When the same vendor keeps showing up in incident reports, it’s time to ask whether your secure file-sharing solution has quietly become a liability. We’re seeing this pattern across our client base: organisations chose these tools for compliance and security, but the tools themselves are now the attack surface.

What to do right now:

  • If you run a ShareFile Storage Zone Controller, shut down the Windows server hosting it immediately — don’t wait for a patch.
  • Check with your IT provider whether any of your file-sharing or managed file transfer tools run on-prem components that are internet-facing.
  • If you’re a cloud-only ShareFile user, you’re not directly affected, but watch for Progress’s next update.

If you’re unsure whether your business uses ShareFile or any internet-facing file transfer tools, get in touch — we can help you audit what’s exposed and whether it needs attention.

Related Guide

Cybersecurity for Sydney SMBs

Explore our complete guide to protecting your business from cyber threats.

Read the Full Guide →