Progress ShareFile access disruption during security threat investigation
Service Disruption
Summary
Hide ▲
Show ▼
Progress ShareFile experienced a customer-access disruption after Progress Software identified a credible external security threat targeting Storage Zone Controllers. The company temporarily disabled access for affected accounts and told customers to shut down the hosting server while it investigated, creating an immediate availability and operational impact for enterprise file-sharing users.
Related Happenings
Progress ShareFile Storage Zone Controller access disruption
Service Disruption
H score53
First: 10.07.2026 19:30
Last: 10.07.2026 19:30
Sources 1
About this happening:
**ShareFile Storage Zone Controller** customers lost access when **Progress Software** temporarily disabled affected accounts and marked them **not operational** while investigati...
Progress ShareFile Storage Zone Controller access disruption
Service DisruptionAbout this happening: **ShareFile Storage Zone Controller** customers lost access when **Progress Software** temporarily disabled affected accounts and marked them **not operational** while investigati...
Progress ShareFile Storage Zone Controllers shutdown guidance
Advisory/Mitigation
H score44
First: 10.07.2026 19:26
Last: 10.07.2026 19:26
Sources 1
How related:
Users are also urged to manually shut down the server hosting their Storage Zone Controller.
About this happening:
**Progress Software** has told **ShareFile** customers using **Storage Zone Controllers** to **shut down their servers immediately** after detecting a **credible external security...
Progress ShareFile Storage Zone Controllers shutdown guidance
Advisory/MitigationHow related: Users are also urged to manually shut down the server hosting their Storage Zone Controller.
About this happening: **Progress Software** has told **ShareFile** customers using **Storage Zone Controllers** to **shut down their servers immediately** after detecting a **credible external security...
Progress ShareFile Storage Zones Controller (SZC) auth bypass and RCE chain (multiple vulnerabilities)
Vulnerability
H score60
First: 02.04.2026 16:33
Last: 02.04.2026 16:33
Sources 1
About this happening:
Chained **CVE-2026-2699** and **CVE-2026-2701** in **Progress ShareFile Storage Zones Controller (SZC)** can expose **internet-facing branch 5.x** deployments to **unauthenticated...
Progress ShareFile Storage Zones Controller (SZC) auth bypass and RCE chain (multiple vulnerabilities)
VulnerabilityAbout this happening: Chained **CVE-2026-2699** and **CVE-2026-2701** in **Progress ShareFile Storage Zones Controller (SZC)** can expose **internet-facing branch 5.x** deployments to **unauthenticated...
Progress security patch release for CVE-2026-2699
Security Patch Release
H score68
First: 02.04.2026 16:33
Last: 02.04.2026 16:33
Sources 1
About this happening:
**Progress** released **ShareFile 5.12.4** on **March 10** to fix **CVE-2026-2699** and **CVE-2026-2701** in the **Storage Zones Controller (SZC)** for **branch 5.x**. The update...
Progress security patch release for CVE-2026-2699
Security Patch ReleaseAbout this happening: **Progress** released **ShareFile 5.12.4** on **March 10** to fix **CVE-2026-2699** and **CVE-2026-2701** in the **Storage Zones Controller (SZC)** for **branch 5.x**. The update...
Zestix sells stolen corporate data from ShareFile, Nextcloud, and ownCloud
Data Leak
H score87
First: 06.01.2026 00:52
Last: 06.01.2026 00:52
Sources 1
About this happening:
Zestix is offering stolen corporate data from dozens of companies, with the files tied to ShareFile, Nextcloud, and ownCloud accounts. The reporting indicates that the activity in...
Zestix sells stolen corporate data from ShareFile, Nextcloud, and ownCloud
Data LeakAbout this happening: Zestix is offering stolen corporate data from dozens of companies, with the files tied to ShareFile, Nextcloud, and ownCloud accounts. The reporting indicates that the activity in...
Latest development: 07.01.2026 16:34
Zestix is reported to be offering corporate data stolen from dozens of companies, with the likely access path described as infostealer malware on employee devices feeding stolen credentials into ShareFile, Nextcloud, and ownCloud accounts. In response to related credential-theft reporting, ownCloud warned users to enable MFA, reset passwords, invalidate active sessions, and review access logs, while saying the platform was not hacked or breached and that no zero-day exploits or platform vulnerabilities were involved.
Timeline
-
13.07.2026 03:00 2 articles · 14h ago
Progress Software restores ShareFile cloud access while keeping Storage Zone Controllers offline
Victim Impact UpdateProgress Software restores ShareFile cloud access for customers with Storage Zone Controllers, but tells them the controllers must remain turned off while the investigation continues and says it has no evidence of unauthorized access to customer accounts or data.
Show sources
- Progress Software Warns of "External Security Threat" to ShareFile — www.infosecurity-magazine.com — 13.07.2026 15:05
- Progress Software Warns of "External Security Threat" to ShareFile — www.infosecurity-magazine.com — 13.07.2026 15:05
-
10.07.2026 03:00 1 articles · 3d ago
Progress Software warns ShareFile customers of credible external security threat
Initial DisclosureProgress Software notifies some ShareFile customers of a credible external security threat targeting Storage Zone Controllers and temporarily disables access to affected accounts while it assesses the issue.
Show sources
- Progress Software Warns of "External Security Threat" to ShareFile — www.infosecurity-magazine.com — 13.07.2026 15:05
-
10.07.2026 03:00 1 articles · 3d ago
Progress Software tells ShareFile customers to shut down Storage Zone Controller servers
Mitigation Patch UpdateProgress Software tells ShareFile customers to manually shut down the server hosting their Storage Zone Controller and says it has launched internal and external security investigations while the threat is assessed.
Show sources
- Progress Software Warns of "External Security Threat" to ShareFile — www.infosecurity-magazine.com — 13.07.2026 15:05