Progress just told ShareFile customers to pull the plug

The news: On July 10, Progress told ShareFile customers to shut down the servers running Storage Zone Controllers over a credible threat. No patch exists yet, and turning off cloud access alone will not protect you.

Why it matters: These controllers sit at the network edge and stay reachable from the internet, the exact profile attackers hunt. It is the same vendor and edge-appliance pattern that made MOVEit a mass-extortion event in 2023.

What to do: If you run a Storage Zone Controller, power off the host server this morning and confirm it is down with your team.

The PeopleSoft breach wave is landing on names you know

ShinyHunters exploited an Oracle PeopleSoft zero-day, CVE-2026-35273, before Oracle's June 10 patch. The breach notices are now landing on names you know. On July 3, Nissan, Kubota North America, and Aflac's Japan unit confirmed stolen data, part of a wave hitting 100-plus organizations. If your HR or finance stack runs PeopleSoft, treat anything exposed before June 10 as compromised, not just unpatched. Hunt for rogue MeshCentral agents and rotate credentials this week.

Google shipped an operating system for your AI agents

At Cloud Next, Google launched the Gemini Enterprise Agent Platform to build, run, and govern agents across the company. Its Agentic Data Cloud reaches your data across AWS and Azure, not just Google. Gartner expects 40% of enterprise apps to embed agents by year end, up from under 5% in 2025. The platform you standardize on now will be costly to leave later. Pin down agent portability and exit terms before you commit.

Watch This

CISA just added Langflow to its Known Exploited Vulnerabilities list, the first AI agent platform ever to make it. Attackers used the flaw to pull embedded secrets straight out of the tool: LLM keys, cloud credentials, and database passwords. Expect this to become a category. Inventory what your agent platforms can reach before someone else does.

This week, DoGood network members are re-shopping their file-transfer and ERP edge appliances and writing exit terms into their first agent-platform contracts. If you run IT or security at a $100M+ company, that is the conversation your peers are already having.

Know a CIO who needs this? Forward it and they can subscribe here.

Enterprise IT leader at a $100M+ company? Apply to join DoGood.

Keep Reading