The experts at Bitdefender noticed that between October 26 and November 6, the rate of unsolicited Black Friday emails peaked on Nov 9, when reached 26% of all Black Friday-related messages.

The AXLocker ransomware encrypts victims’ files and steals Discord tokens from the infected machine. Octocrypt is a Golang-based ransomware and its operators are adopting the Ransomware-as-a-Service (RaaS) business model.

The bugs impact Exchange Server 2013, 2016, and 2019, an authenticated attacker can trigger them to elevate privileges to run PowerShell in the context of the system and gain arbitrary or remote code execution on vulnerable servers.

The public schools in Jackson and Hillsdale counties, Michigan, started experiencing a systems outage affecting critical operating systems on Monday, the outage occurred because they were victims of a ransomware attack detected over the weekend.

Rapid7 researchers discovered several vulnerabilities in F5 BIG-IP and BIG-IQ devices running a customized distribution of CentOS. The experts also discovered several bypasses of security controls that F5 does not recognize as exploitable flaws.

To indicate the size of the cyber risk to companies, there is, on average, a cyberattack every 39 seconds, which does not mean that every attack is successful, but that there is an attempt to access companies’ computer systems with that frequency.

The group defrauded investors through a pseudo-investment scheme in cryptocurrencies and securities, the investigation began in 2020. The investors were tricked into initiating a series of fake investments.

Earlier this month, the French defense and technology group confirmed to be aware that the LockBit 3.0 ransomware group claimed to have stolen some of its confidential data.

Sobeys published a notice to inform customers of the IT problems that it is suffering. During the last week, grocery stores and pharmacies belonging to the company have experienced IT issues.

The malicious package infects PyPI users through open-source projects on Github. The package was uploaded to PyPI on October 31, 2022, it had a vague header stating this is a ‘core lib for REST API’.