Message from Progress about SolarWinds Vulnerability—
Like many companies across the globe, Progress has taken notice of the alarming vulnerability recently announced by SolarWinds regarding its Orion product. This situation is a reminder to the whole industry of the critical importance of proper vulnerability management and patching practices. Our teams have revisited our procedures and protocols, and we want to assure our customers that a highly organized security function is, and has been, in place that addresses the many aspects of a capable security program, with vulnerability and patch management at the top of the list.
Progress networks, infrastructure, business applications, and products are all subject to a rigorous program of scanning, patching, and configuration tuning to ensure security is well maintained. Progress is continuously in close communication with its key vendors about the security of their products, and works hand in hand to ensure any vulnerabilities are quickly identified and addressed. Multiple security teams within the company monitor our various environments for vulnerabilities and patching opportunities. Critical patches are applied with great speed.
At Progress, security, and especially vulnerability management, will always remain a top priority. If you have any questions regarding this message or Progress security practices, please contact security@progress.com and we will quickly address those questions or concerns.