================================================================ INFOSECFOLLOW -- security, markets, business, pittsburgh Monday, June 15, 2026 ================================================================ The FBI and Google dismantled Outsider Enterprise, a Chinese phishing-as-a-service empire that ran more than 9,000 sites and stole nearly 4 million credit cards, while Palo Alto Networks confirmed attackers are exploiting a fresh GlobalProtect VPN flaw. CONTENTS: Emerging Trends | Security | Business and Politics | Pittsburgh | Sports | Reading | Markets EMERGING TRENDS ---------------------------------------------------------------- * Unverified AI: Three reports—on military AI verification, brittle AI-generated code, and a hardware neural-network backdoor—converge on one worry: organizations deploy AI faster than they can confirm it behaves safely. * Phishing Takedowns: Law enforcement and researchers kept tearing down phishing-as-a-service operations, with the FBI felling Outsider Enterprise and Group-IB exposing Sniper Dz operators, a sustained squeeze on the criminal kit economy. * Edge Exploitation: Palo Alto's GlobalProtect flaw joins a weeks-long run of attacks on internet-facing VPNs and appliances, confirming edge devices remain the favored doorway into enterprise networks. * Supply Chain Tampering: From silicon foundries to CI/CD pipelines, defenders sharpened focus on tampering where a single altered chip or workflow file compromises everything downstream. SECURITY ---------------------------------------------------------------- :: RANSOMWARE AND CYBERCRIME 1. FBI AND GOOGLE DISMANTLE OUTSIDER ENTERPRISE [phishing, cybercrime, takedown] Latest developments: The FBI, Google, and Black Lotus Labs took the network offline, escalating past Google's earlier civil lawsuit to a full disruption and disclosing its scale. Outsider Enterprise sold a phishing-as-a-service kit that let low-skill criminals spin up storefronts mimicking banks, retailers, and toll agencies. The China-based operation generated more than 9,000 phishing sites and roughly a million malicious URLs, harvested nearly 4 million credit cards, and inflicted about $1.9 billion in losses worldwide. The FBI seized infrastructure as Google pressed its case; banks and card issuers should hunt for fraud tied to the campaign. - SecurityWeek: https://www.securityweek.com/fbi-google-dismantle-outsider-enterprise-phishing-service/ - BleepingComputer: https://www.bleepingcomputer.com/news/security/fbi-disrupts-massive-ai-powered-phishing-service-using-a-million-urls/ 2. SNIPER DZ SCAMS HIT MENA FACEBOOK USERS [phishing, scam] Latest developments: Group-IB disclosed the specifics of a Middle East and North Africa campaign using the Sniper Dz kit, days after INTERPOL dismantled the platform. Group-IB detailed a fraud wave across the Middle East and North Africa run through fake Facebook accounts that impersonate politicians, public figures, and trusted organizations. The accounts push bogus offers—free mobile data, cash compensation, government subsidies—to lure victims onto phishing pages built with the Sniper Dz kit. The activity persists even after INTERPOL's Operation Ramz takedown of the platform, showing operators kept the scam economy running. - The Hacker News: https://thehackernews.com/2026/06/sniper-dz-scams-target-mena-users-via.html :: VULNERABILITIES AND EXPLOITS 3. PALO ALTO GLOBALPROTECT FLAW UNDER ACTIVE ATTACK [zero-day, vpn, patch] Latest developments: Palo Alto Networks confirmed an unknown actor is exploiting CVE-2026-0257 in the wild to reach GlobalProtect portals. CVE-2026-0257 is an authentication bypass in the portal and gateway components of PAN-OS, scoring 7.8. An unknown threat actor uses it to slip past GlobalProtect VPN logins and gain unauthorized access to portals directly. The flaw extends a run of edge-device exploitation that already hit Ivanti, Check Point, and Oracle this month; administrators should apply Palo Alto's fix at once and audit portals for unauthorized access. - The Hacker News: https://thehackernews.com/2026/06/palo-alto-warns-of-active-exploitation.html :: AI SECURITY 4. AI CODE LOOKS CLEAN AND BREAKS IN PRODUCTION [ai, devsecops] Latest developments: New industry data shows AI-generated code that scores high in review fails more often once it runs, pushing senior engineers into cleanup duty. Machines now write most of the code shipping each week at major U.S. technology firms, and engineers have shifted toward reviewing it. Reviewers rate the output highly for clean structure, consistent style, and few obvious bugs at submission. The same code behaves worse in production, driving incidents that senior engineers spend their weeks resolving—a reliability gap that widens as AI authorship grows. - Help Net Security: https://www.helpnetsecurity.com/2026/06/15/ai-generated-code-review-issues/ 5. VERIFYING MILITARY AI BEHAVIOR ELUDES ARMS CONTROL [ai, policy] Latest developments: Analysts flagged that confirming what a fielded military AI model will do sits outside the verification methods of traditional arms control diplomacy. Defense contractors now build AI that tasks drones automatically and proposes kill-chains for soldiers, with Anduril paired to OpenAI, Palantir to Microsoft, and Lockheed Martin to Meta. Proving how such a model will actually act in the field falls outside the inspection tools that govern conventional weapons. The gap leaves a security problem diplomacy has no established method to address as these systems reach the battlefield. - Help Net Security: https://www.helpnetsecurity.com/2026/06/15/military-ai-verification-problem/ 6. HARDWARE BACKDOOR HIDES IN NEURAL NETWORK CHIPS [ai, supply-chain, research] Latest developments: Researchers at the University of Tennessee and the University of Florida demonstrated a backdoor that hides inside the custom silicon running edge AI. Deep learning on phones, cars, and other edge devices increasingly runs on custom chips—FPGAs and ASICs—prized for speed and low power. Many come from third-party design houses and foundries, each step a chance for an outsider to alter the device. The researchers built a backdoor that hides in that hardware and evades inspection, raising the stakes for trust across the semiconductor supply chain. - Help Net Security: https://www.helpnetsecurity.com/2026/06/15/hardware-neural-network-backdoor-research/ :: DATA BREACHES 7. MAINE SHUTS BREACH PORTAL AFTER FAKE REPORTS [breach, policy] Latest developments: Maine's attorney general took the state data breach portal offline after someone filed bogus VRChat and Discord breach reports. Someone posted fabricated VRChat and Discord data breach reports through Maine's public submission system, prompting the state attorney general to disable it. The fake filings threatened to pollute a registry that consumers, regulators, and researchers rely on for accurate breach records. Maine intends to restore the portal once it adds stronger validation against false submissions. - SecurityWeek: https://www.securityweek.com/maine-disables-data-breach-portal-due-to-fake-submissions/ BUSINESS AND POLITICS ---------------------------------------------------------------- * Iran Deal Sends Oil Tumbling, Stocks to Records Latest developments: Brent crude fell to its lowest level since early March and global stocks hit record highs Monday as markets priced in the reopening of Hormuz, while Trump flew to the G7, where allies have yet to see the pact's text, ahead of the Federal Reserve's rate decision Wednesday. The United States and Iran reached an interim agreement to reopen the Strait of Hormuz and extend a ceasefire, with a signing set for Friday, June 19, in Switzerland, ending the first phase of a nearly four-month war that had lifted oil and rattled markets. Analysts warn a shipping backlog through Hormuz could last weeks and keep crude above prewar levels. - Financial Times: https://www.ft.com/content/76bed6e5-ab1f-43ff-a6c0-ae5e7cdbf3c1 - Wall Street Journal: https://www.wsj.com/business/energy-oil/oil-slides-as-u-s-iran-reach-deal-to-reopen-hormuz-04fd7e87?mod=rss_markets_main - Financial Times: https://www.ft.com/content/8a6849de-b27c-4680-a80d-42b85b0e77eb PITTSBURGH ---------------------------------------------------------------- Weather: Today: Mostly Sunny, high 71F. Tonight: Mostly Clear, low 52F. Tuesday: Mostly Sunny, high 77F. Business: * Sewickley's Penguin Bookshop Joins Bookstore Revival Latest developments: The Post-Gazette profiled the shop as part of a national resurgence of independent booksellers gaining ground against Amazon after years of decline. Sewickley's Penguin Bookshop has become a local example of a broader independent-bookstore revival, with small sellers growing again as readers return to neighborhood shops. - Pittsburgh Post-Gazette: https://www.post-gazette.com/business/career-workplace/2026/06/15/penguin-bookshop-sewickley-independent-bookstores-amazon/stories/202606140021 * Community Kitchen Revives Butchery Training Latest developments: The Post-Gazette detailed how the nonprofit added butchery to its workforce program, teaching students to break down whole animals. Community Kitchen Pittsburgh, which trains people for food-industry jobs, has built a butchery curriculum that revives the trade of cutting whole carcasses and prepares graduates for kitchen and shop work. - Pittsburgh Post-Gazette: https://www.post-gazette.com/life/food/2026/06/15/butchery-community-kitchen-pittsburgh-training-program/stories/202606120050 * Weekly Pittsburgh Job Openings Latest developments: Pittsburgh City Paper published its weekly hiring roundup, listing clinic nurses, swim instructors, and maintenance workers among current openings. The local employment column lists openings at employers including Allies for Health + Wellbeing, Keep Pennsylvania Beautiful, and Pittsburgh Regional Transit, a window into the region's labor market. - Pittsburgh City Paper: https://www.pghcitypaper.com/columns/now-hiring/now-hiring-in-pittsburgh-allies-for-health-wellbeing-keep-pennsylvania-beautiful-prt-and-more/ Around town: * Dry Start, Rain by Midweek Latest developments: Forecasters now expect rain to return Wednesday night and tagged Thursday an Impact Day for rain and storms, following the cooler, clearer stretch behind Sunday's severe weather. Western Pennsylvania opens the week dry and comfortable, with full sunshine Tuesday. A wetter pattern builds midweek, bringing rain Wednesday night and the chance of storms Thursday. - WTAE: https://www.wtae.com/article/western-pa-dry-and-comfortable-to-begin-the-week/71585333 * I-279, I-79 Closures This Week Latest developments: TribLive reports bridge demolition and new construction will begin this week, bringing lane closures and restrictions to both interstates in Allegheny County. Drivers face closures and restrictions on interstates 279 and 79 in Allegheny County as crews tear down one bridge and build new ones, work scheduled to run through the week. - TribLive: https://triblive.com/local/north-hills/demolition-construction-to-cause-closures-restrictions-of-interstates-279-79/ * Cleanup After Sunday Storms Latest developments: Crews began clearing debris Monday, and Butler County tallied damage that included a 150-year-old barn in Worth Township stripped of its roof. Sunday evening's severe storms toppled trees and cut power across southwestern Pennsylvania, and communities from Washington County to Butler County started repairs as warnings expired. - WPXI: https://www.wpxi.com/news/local/cleanup-underway-after-severe-storms-pummel-western-pennsylvania-communities/HYIN3NYXWBCKFANEEQQADPDPUM/ - KDKA: https://www.cbsnews.com/pittsburgh/video/150-year-old-barn-damaged-by-storms-in-butler-county/ * Pittsburgh's Segregated Swimming Legacy Latest developments: PublicSource published an examination of how the region's segregated-pool history still shapes who learns to swim. The report traces Pittsburgh's history of segregated pools and its lasting effect on swimming access. Nationally, the country counts about 4,000 accidental drowning deaths a year, and Black children drown at roughly three times the rate of white children. - PublicSource: https://www.publicsource.org/pittsburgh-swimmers-segregated-pools/ * Bear Roams the North Side Latest developments: KDKA reported a bear spotted in the Summer Hill neighborhood on Pittsburgh's North Side. A black bear turned up in the Summer Hill section of Pittsburgh's North Side, a reminder for residents to secure trash and food as bears range into city neighborhoods in summer. - KDKA: https://www.cbsnews.com/pittsburgh/video/bear-spotted-in-pittsburgh/ Events: * Pittsburgh Juneteenth Events Latest developments: Pittsburgh City Paper published the Juneteenth calendar, opening Monday, June 15, with free dusk film screenings that run through Saturday, June 20. Pittsburgh's Juneteenth slate runs Monday, June 15, through Saturday, June 27. Dollar Bank Cinema in the Park screens 'The Wiz' and 'Creed' at dusk at multiple parks, free for all ages, through June 20. The Juneteenth Black Tie Honors Gala follows Wednesday, June 17, from 7 to 10 p.m. at the Sheraton at Station Square, 300 W. Station Square Drive, with tickets $81.88 to $108.55. - Pittsburgh City Paper: https://www.pghcitypaper.com/arts-entertainment-2/pittsburgh-juneteenth-events-mon-june-15-sat-june-27/ * Honeck Extends With Pittsburgh Symphony Latest developments: The Post-Gazette reported Manfred Honeck signed an extension that will carry his tenure as music director to 25 years. Manfred Honeck, music director of the Pittsburgh Symphony Orchestra, agreed to a contract extension that lengthens his run with the orchestra to a quarter century, anchoring the PSO's leadership well into the next decade. - Pittsburgh Post-Gazette: https://www.post-gazette.com/ae/music/2026/06/10/manfred-honeck-pso-contract/stories/202606100041 * Pittsburgh Film-Location Tour App Latest developments: The Post-Gazette highlighted PastFinders, an app mapping Pittsburgh movie-shoot sites for self-guided tours. A new app, PastFinders, guides visitors to Pittsburgh film locations, including the Downtown spots where 'The Dark Knight Rises' shot, letting fans stand where scenes were filmed. - Pittsburgh Post-Gazette: https://www.post-gazette.com/ae/movies/2026/06/11/pittsburgh-film-tour-app-pastfinders/stories/202605290043 SPORTS ---------------------------------------------------------------- Pirates (36-36) Sun Jun 14 · Marlins 4 · Pirates 2 · Final Meyer outduels Skenes, allows one run in six innings as Marlins top Pirates 4-2 https://plaintextsports.com/mlb/2026-06-14/mia-pit Up Next · Pirates @ Athletics · Mon Jun 15, 9:40 PM https://plaintextsports.com/mlb/2026-06-15/pit-ath Around the Teams: * Pirates Bullpen Under Fire Latest developments: Noah Hiles' weekend column pressed Ben Cherington and manager Don Kelly to fix the relief corps now, and the Pirates called up No. 7 prospect Antwone Kelly for his debut to add bullpen help. Post-Gazette columnist Noah Hiles argues a faltering bullpen will sink the Pirates' season unless the front office acts, a problem underscored by the team going winless in Paul Skenes' last six starts. The club summoned reliever Antwone Kelly from the farm in response. - Pittsburgh Post-Gazette: https://www.post-gazette.com/sports/columns/2026/06/15/mlb-pirates-bullpen-don-kelly-jake-mangum-ben-cherington/stories/202606140080 - Pittsburgh Post-Gazette: https://www.post-gazette.com/sports/pirates/2026/06/12/pirates-bullpen-antwone-kelly-debut-aruba-1/stories/202606120034 * Building Around Porter and Herbig Latest developments: With the offseason program wrapped, the Post-Gazette examined whether the Steelers can form a young defensive core around Joey Porter Jr. and Nick Herbig, and reported Porter contract talks underway. The Steelers are weighing a youthful defensive foundation built on cornerback Joey Porter Jr. and edge rusher Nick Herbig, who just signed a contract of his own. Negotiations over Porter's next deal are in progress. - Pittsburgh Post-Gazette: https://www.post-gazette.com/sports/steelers/2026/06/12/nfl-draft-news-rumors-joey-porter-jr-nick-herbig/stories/202606120048 * Steelers and the Interchangeable Safety Latest developments: The Post-Gazette reports the NFL is moving toward interchangeable safeties and expects Mike McCarthy's Steelers to follow. League defenses increasingly use safeties who can play either role rather than fixed free and strong positions, and the Post-Gazette projects the Steelers to adopt the approach with players such as Ramsey and DeShon Elliott. - Pittsburgh Post-Gazette: https://www.post-gazette.com/sports/steelers/2026/06/11/safety-ramsey-deshon-elliott-nfl-mccarthy-graham/stories/202606110040 * Allar Learning From Rodgers Latest developments: In team media availabilities, quarterback Drew Allar described what he is taking from Aaron Rodgers as the offseason program closed. Steelers quarterback Drew Allar spoke about studying veteran Aaron Rodgers and his takeaways from the just-finished offseason program, part of the team's final round of spring interviews. - Pittsburgh Steelers (YouTube): https://www.youtube.com/shorts/myRUYdyoaBI - Pittsburgh Steelers (YouTube): https://www.youtube.com/shorts/1oITjYeKzxE * Steelers Training Camp Tickets On Sale Latest developments: The team's channel promoted on-sale tickets for training camp in Latrobe as players looked ahead to the summer sessions. The Steelers put tickets on sale for their training camp in Latrobe, with fullback Riley Nowakowski among the players already pointing toward the summer practices. - Pittsburgh Steelers (YouTube): https://www.youtube.com/shorts/S4MNNmwhOQU READING ---------------------------------------------------------------- * Stratechery -- Anthropic’s Safety Superpower Argues that Anthropic's conviction in its own commitment to safety gives it license to aggressively favor its business interests and even challenge the U.S. government. https://stratechery.com/2026/anthropics-safety-superpower/ * Ed Zitron -- Premium: The Silicon Valley Bubble (Part 1) Contends an era is ending as OpenAI and Anthropic file to go public, a race for exit liquidity for two companies that burn billions a year with no clear path to profitability. https://www.wheresyoured.at/premium-the-silicon-valley-bubble-part-1/ * Cal Newport -- Why Isn’t AI Taking Our Jobs? Questions the AI industry's comparison of its technology to industrial automation, asking why predicted job losses have not materialized. https://calnewport.com/why-isnt-ai-taking-our-jobs/ MARKETS (weekly average, change vs prior week) ---------------------------------------------------------------- S&P 500 7,377.03 ▼ -2.2% Dow 50,725.58 ▼ -0.7% Nasdaq 25,695.30 ▼ -3.8% WTI crude 88.42 ▼ -5.0% EUR/USD 1.1540 ▼ -0.7% GBP/USD 1.3363 ▼ -0.6% USD/JPY 160.31 ▲ +0.3% ================================================================ Generated 2026-06-15 06:02 EDT. Sources: 22 security feeds; 9 Pittsburgh feeds; 4 Pittsburgh arts and events feeds; 6 Pittsburgh sports beat and podcast feeds; the Wall Street Journal, the Economist, and the Financial Times; and Ed Zitron, Stratechery, Cal Newport. Markets from Yahoo Finance, weather from the NWS, scores from ESPN. Summaries are AI-generated from the linked reporting; verify at the sources. ================================================================