This year, a number of hacked websites have been regularly used to infect devices and entire corporate networks by pushing fake browser updates. Such "fake update" alerts inform visitors that they are using an old version of the browser, which should be updated to run smoothly and securely. Clicking the update button triggers the download of a malicious file, which, when executed, gathers information about the device, downloads and installs malware and backdoors, steals banking data and generates desktop screenshots. Once all useful data is harvested it downloads and installs ransomware (BitPaymer or DoppelPaymer) and attempts to spread laterally to infect entire network. Both BitPaymer and DoppelPaymer are notorious for requesting huge ransom - ranging from $80K to over $2 million.
Popular customer support application Zendesk disclosed on 2nd October that they've suffered a security breach from November 2016.