================================================================ INFOSECFOLLOW -- security, markets, business, pittsburgh Monday, June 15, 2026 ================================================================ Attackers actively exploit Palo Alto GlobalProtect and SimpleHelp at the network edge as Washington moves to end anonymous phones and curb AI model exports. CONTENTS: Emerging Trends | Security | Business and Politics | Pittsburgh | Sports | Reading | Markets EMERGING TRENDS ---------------------------------------------------------------- * Agent Identity: A wave of products—Omada Agent Governance, Trust3's AgentDOS, 1Password's Credential Broker, and the Delinea-Cyera integration—races to govern AI agents and machine identities as autonomous software starts touching regulated data at machine speed. * Edge Exploitation: Attackers keep turning trusted remote-access gear into entry points, abusing Palo Alto GlobalProtect and SimpleHelp this week after Cisco, Ivanti, and Check Point flaws in recent days. * AI Misuse: The same models that hunt bugs and draft code now seed deepfake nude sites, poison AI search through 13-word Reddit snippets, and draw export-control orders, blurring AI's role as tool and target. * Disclosure Friction: Most CISOs report pressure to bury bad security news just as Maine pulls its public breach portal over fraudulent filings, straining the trust that disclosure depends on. SECURITY ---------------------------------------------------------------- :: VULNERABILITIES AND EXPLOITS 1. VPN AND REMOTE-ACCESS TOOLS UNDER ACTIVE ATTACK [zero-day, patch, vpn] Latest developments: Palo Alto Networks confirmed an unknown actor actively exploits CVE-2026-0257, an authentication-bypass flaw in PAN-OS GlobalProtect portals and gateways, while a separate SimpleHelp flaw lets unauthenticated attackers mint privileged technician accounts on servers that use OpenID Connect. SimpleHelp's remote management software lets unauthenticated attackers create privileged technician accounts on any server running OpenID Connect, handing them a foothold for deeper intrusion. Palo Alto Networks tracks active abuse of CVE-2026-0257, a 7.8-severity flaw, to reach GlobalProtect portals and gateways. Both products guard the network edge, the same ground Cisco, Ivanti, and Check Point flaws covered in recent weeks. Administrators should patch immediately and audit for rogue accounts. - The Hacker News: https://thehackernews.com/2026/06/palo-alto-warns-of-active-exploitation.html - BleepingComputer: https://www.bleepingcomputer.com/news/security/simplehelp-bug-lets-hackers-create-rogue-remote-support-accounts/ 2. AMD QUIETLY STRIPS MEMORY ENCRYPTION FROM CONSUMER CPUS [hardware, encryption] Latest developments: Users discovered that AMD removed Transparent Secure Memory Encryption from its consumer CPUs in what appears to be a deliberate, undisclosed change. AMD removed Transparent Secure Memory Encryption from its consumer CPUs in what users describe as a deliberate, covert change. The feature scrambles data in RAM to blunt physical attacks such as cold-boot reads and DMA snooping. Stripping it leaves consumer machines more exposed while AMD reserves the protection for higher tiers. Researchers and customers want an explanation. - Ars Technica Security: https://arstechnica.com/security/2026/06/users-cry-foul-after-amd-stripped-memory-crypto-from-its-consumer-cpus/ :: RANSOMWARE AND CYBERCRIME 3. FBI AND GOOGLE DISMANTLE OUTSIDER ENTERPRISE; CONTI LOADER AUTHOR PLEADS GUILTY [cybercrime, phishing, ransomware] Latest developments: The FBI and Google dismantled the Outsider Enterprise phishing-as-a-service operation, which ran more than 9,000 sites, stole nearly 4 million credit cards, and caused roughly $1.9 billion in losses, while Ukrainian national Oleksii Lytvynenko pleaded guilty to building a loader for Conti. Outsider Enterprise rented a phishing kit that ran more than 9,000 sites, harvested close to 4 million credit cards, and inflicted about $1.9 billion in losses; Google sued the China-based network earlier, and the FBI has now helped take it down. In a separate case, 44-year-old Oleksii Lytvynenko admitted building a loader for Conti, the gang that struck more than 1,000 victims worldwide, and possessed data stolen from eight U.S. and four overseas victims. The two actions reach both the infrastructure and the coders behind large operations. The FBI also warned that fraudsters now dispatch couriers to collect cash from cryptocurrency investment-scam victims. - SecurityWeek: https://www.securityweek.com/fbi-google-dismantle-outsider-enterprise-phishing-service/ - Help Net Security: https://www.helpnetsecurity.com/2026/06/15/conti-ransomware-member-pleads-guilty/ - BleepingComputer: https://www.bleepingcomputer.com/news/security/fbi-fraudsters-use-couriers-to-steal-money-in-crypto-scams/ :: AI SECURITY 4. WASHINGTON CURBS ANTHROPIC AI MODELS AS EXPORT CONTROL [policy, ai] Latest developments: Anthropic says the directive that forced it to disable Fable 5 and Mythos 5 invoked national-security authorities, the first time Washington has used such powers to curtail an AI model rather than chips or hardware. Anthropic abruptly suspended worldwide access to its Fable 5 and Mythos 5 models after an export-control directive barred foreign nationals from using them. The company says the order cited national-security authorities, the first such use against an AI model rather than chips or hardware. Anthropic disputes the basis, calling the cited jailbreak narrow and the capability common elsewhere, even as it complies. Enterprises that depend on those models face sudden loss of access. - The Record: https://therecord.media/anthropic-says-gov-forced-it-to-disable-cyber-ai-models - Dark Reading: https://www.darkreading.com/cyber-risk/us-cracks-down-anthropic-ai-models-abuse-concerns :: NATION-STATE ACTIVITY 5. EUROPEAN TARGETS FACE ESPIONAGE AND SABOTAGE [apt, nation-state, critical-infrastructure] Latest developments: Poland warned that Belarus-linked Ghostwriter expanded its phishing to the personal Gmail accounts of senior officials and their relatives, Finland charged a cargo ship's officers with damaging subsea cables, and a cyberattack on Russian firm Astral disrupted services for a week. Poland warned that Ghostwriter, a Belarus-linked group, now phishes the personal Gmail accounts of senior public figures and their families. Finland charged a cargo ship's officers with damaging two subsea telecommunications cables and attempting to damage eight more connections. A cyberattack on Russian technology firm Astral knocked out cash registers, customer portals, corporate email, and digital-certificate authentication for a week. The three cases span espionage, physical sabotage, and disruption across Europe. - The Record: https://therecord.media/ghostwriter-targets-personal-gmail-accounts-in-poland - The Record: https://therecord.media/finland-brings-charges-against-cargo-ship-undersea-cables - The Record: https://therecord.media/cyberattack-on-russian-tech-firm-astral-disrupts-business-government-services :: POLICY AND REGULATION 6. FCC MOVES TO KILL BURNER PHONES [policy, privacy] Latest developments: A proposed FCC rule would force every U.S. telecom to store a government-issued identification number and physical address for essentially all customers, ending anonymous prepaid accounts. A proposed FCC rule would end burner phones by requiring carriers to record a government-issued identification number and physical address for nearly every customer. Privacy advocates and civil-rights groups compare the plan to surveillance regimes in authoritarian states. Anonymous prepaid accounts would disappear. The rule recasts phone service as an identity checkpoint. - Schneier on Security: https://www.schneier.com/blog/archives/2026/06/the-fcc-wants-to-eliminate-burner-phones.html 7. DOJ SEIZES DEEPFAKE NUDE SITES UNDER TAKE IT DOWN ACT [policy, ai, deepfake] Latest developments: The Justice Department seized CFAKE.com and SOCFAKE.com, which hosted nonconsensual AI-generated nude imagery, in the first publicly announced domain seizure under the TAKE IT DOWN Act. The Justice Department seized CFAKE.com and SOCFAKE.com, sites that hosted nonconsensual AI-generated nude images and videos of women. The action marks the first publicly announced domain seizure under the TAKE IT DOWN Act. It signals federal willingness to wield the new authority against synthetic intimate imagery. Victims and platforms gain an enforcement precedent. - BleepingComputer: https://www.bleepingcomputer.com/news/security/doj-seizes-cfake-socfake-deepfake-nude-sites-under-take-it-down-act/ BUSINESS AND POLITICS ---------------------------------------------------------------- * Markets Rally as Iran Deal Reopens Hormuz Latest developments: The Dow industrials closed at a record Monday, oil futures settled at their lowest since March 4, and U.S. pump prices fell below $4 a gallon after Trump set a full reopening of the Strait of Hormuz by Friday. The United States and Iran signed a memorandum of understanding to end their war, dismantle Iran's nuclear program, and reopen the Strait of Hormuz, the conduit for roughly a fifth of the world's oil. Trump set a signing ceremony for Friday and said ships had begun moving, while shipping groups called the passage still too risky and trackers showed a single transit. The administration floated a $300 billion fund tied to Tehran's compliance. - WSJ Markets: https://www.wsj.com/finance/global-stocks-markets-dow-news-06-15-2026-c6898869?mod=rss_markets_main - WSJ Markets: https://www.wsj.com/finance/commodities-futures/bremt-futures-may-fall-to-80-per-barrel-by-year-end-if-strait-of-hormuz-not-closed-again-5484ba25?mod=rss_markets_main - FT Markets: https://www.ft.com/content/ff17e2a2-7744-4e19-9e1d-23bc5892191c - WSJ World News: https://www.wsj.com/world/middle-east/questions-about-trumps-iran-deal-set-to-dominate-g-7-fcd7fcbc * Justice Department Targets Trump's Political Foes Latest developments: California Governor Gavin Newsom said Monday that the Justice Department opened an investigation into him and his wife, widening a campaign acting Attorney General Todd Blanche is running against people Trump names as enemies. Trump has asked the department to investigate more than four dozen perceived adversaries, producing a string of prosecutions. Newsom, a potential 2028 Democratic presidential candidate, accused Trump of bending federal law enforcement to punish a political rival. - WSJ Politics: https://www.wsj.com/politics/policy/trump-prosecutions-visual-guide-ef488d01 - WSJ Politics: https://www.wsj.com/politics/policy/gavin-newsom-says-justice-department-is-investigating-him-and-his-wife-4098f3f3 PITTSBURGH ---------------------------------------------------------------- Weather: Tonight: Mostly Clear, low 51F. Tuesday: Mostly Sunny, high 77F. Tuesday Night: Mostly Cloudy then Chance Rain Showers, low 58F. Business: * Griffin Lander Heads for Final Test Latest developments: The Post-Gazette detailed Astrobotic's Griffin lander leaving Pittsburgh for its last environmental test before a SpaceX launch, the mission tied to NASA's moon-base plans. Griffin is Pittsburgh's second moonshot after the Peregrine mission. Astrobotic, based in the Strip District, faces one remaining round of testing before the lander launches toward the lunar surface. - Pittsburgh Post-Gazette: https://www.post-gazette.com/business/tech-news/2026/06/15/astrobotic-spacex-nasa-moon-base-griffin-peregrine/stories/202606150033 * Pittsburgh Weddings Cost Above Average Latest developments: A local study found the average Pittsburgh wedding costs more than the national average, KDKA's "Talk the Talk" reported. The segment examined why couples marrying in the region pay above the typical national bill for a wedding. - KDKA: https://www.cbsnews.com/pittsburgh/video/talk-the-talk-june-15-2026/ Around town: * Tornadoes Confirmed From Sunday Storms Latest developments: The National Weather Service confirmed Monday that at least three tornadoes touched down Sunday across eastern Ohio and northwestern Pennsylvania, two in Columbiana County, Ohio near the Beaver County line and one that crossed into Beaver County. Sunday's storms downed trees, tore a machine shed from its foundation at a Butler County farm, and knocked out power across Beaver, Butler, and Elizabeth Township. Crews spent Monday clearing debris as survey teams continued their work. - KDKA: https://www.cbsnews.com/pittsburgh/news/confirmed-tornadoes-pennsylvania-ohio-storm-damage/ - WPXI: https://www.wpxi.com/news/local/nws-confirms-tornado-crossed-into-beaver-county-sunday/VTVUUIIGJ5ANNB75Y6TBDFEZVU/ - WTAE: https://www.wtae.com/article/severe-storms-cause-damage-at-butler-county-farm/71595229 * Parkway North to Close for Bridge Work Latest developments: Part of the Parkway North will fully close later this week to demolish the Jacks Run Road Bridge; crews postponed Monday night's planned start after equipment trouble. The shutdown of I-279 will reroute traffic between the North Side and the northern suburbs while the bridge over the parkway comes down. - KDKA: https://www.cbsnews.com/pittsburgh/video/part-of-parkway-north-to-close-for-bridge-demolition/ * Aldi Recalls Macaroni and Cheese Latest developments: Aldi recalled more than 500,000 packages of Park Street Deli macaroni and cheese nationwide over an undeclared allergen. The recall reaches Pittsburgh-area stores, the affected product carrying an allergen left off its label. - WTAE: https://www.wtae.com/article/park-st-deli-macaroni-and-cheese-recall/71594788 * Comfortable Week, Stormy Thursday Latest developments: Forecasters tagged Thursday an Impact Day for rain and storms, with showers returning Wednesday night after a dry, comfortable start to the week. A stretch of pleasant weather holds through midweek across Western Pennsylvania before the next system arrives. - WTAE: https://www.wtae.com/article/western-pa-dry-and-comfortable-to-begin-the-week/71585333 SPORTS ---------------------------------------------------------------- Pirates (36-36) Sun Jun 14 · Marlins 4 · Pirates 2 · Final Meyer outduels Skenes, allows one run in six innings as Marlins top Pirates 4-2 https://plaintextsports.com/mlb/2026-06-14/mia-pit Up Next · Pirates @ Athletics · Mon Jun 15, 9:40 PM https://plaintextsports.com/mlb/2026-06-15/pit-ath Around the Teams: * Pirates Bullpen Needs Fixing Now Latest developments: The Post-Gazette's Noah Hiles wrote that the Pirates must repair their bullpen immediately or it will sink the season. In his weekend column, Hiles pointed to manager Don Kelly's thin relief options and pressed the front office under Ben Cherington to act. - Post-Gazette Pirates: https://www.post-gazette.com/sports/columns/2026/06/15/mlb-pirates-bullpen-don-kelly-jake-mangum-ben-cherington/stories/202606140080 * Pirates Call Up Prospect Antwone Kelly Latest developments: The Pirates promoted No. 7 prospect Antwone Kelly to shore up a faltering bullpen, the Post-Gazette reported, citing a source. Kelly, signed out of Aruba, reached the major leagues for the first time as relief help. - Post-Gazette Pirates: https://www.post-gazette.com/sports/pirates/2026/06/12/pirates-bullpen-antwone-kelly-debut-aruba-1/stories/202606120034 * Steelers Build Around Porter and Herbig Latest developments: The Post-Gazette weighed whether the Steelers can build a new defensive core around cornerback Joey Porter Jr. and edge rusher Nick Herbig, whose new contract Cam Heyward's podcast called 20 years in the making. Herbig signed a deal the Steelers see as a building block alongside Porter as they reshape the defense around young players. - Post-Gazette Steelers: https://www.post-gazette.com/sports/steelers/2026/06/12/nfl-draft-news-rumors-joey-porter-jr-nick-herbig/stories/202606120048 - Not Just Football with Cam Heyward: https://www.youtube.com/shorts/0rfyueiCpE4 READING ---------------------------------------------------------------- * Ed Zitron -- AI's Brokenomics Zitron dissects what he calls the broken economics of the AI industry, arguing the leading companies burn billions of dollars with no clear path to profit. https://www.wheresyoured.at/brokenomics/ * Cal Newport -- AI Isn’t Breaking Work. It’s Already Broken. Responding to a Financial Times interview with the Work AI Institute's Rebecca Hinds about a survey of 6,000 workers, Newport argues knowledge work was already dysfunctional before AI arrived. https://calnewport.com/ai-isnt-breaking-work-its-already-broken/ * Stratechery -- Anthropic’s Safety Superpower Thompson argues that Anthropic's conviction in its own safety mission gives it license to aggressively favor its business and even challenge the U.S. government. https://stratechery.com/2026/anthropics-safety-superpower/ MARKETS (weekly average, change vs prior week) ---------------------------------------------------------------- S&P 500 7,377.03 ▼ -2.2% Dow 50,725.58 ▼ -0.7% Nasdaq 25,695.30 ▼ -3.8% WTI crude 88.42 ▼ -5.0% EUR/USD 1.1556 ▼ -0.4% GBP/USD 1.3386 ▼ -0.3% USD/JPY 160.23 ▲ +0.2% ================================================================ Generated 2026-06-15 18:50 EDT. Sources: 22 security feeds; 9 Pittsburgh feeds; 4 Pittsburgh arts and events feeds; 6 Pittsburgh sports beat and podcast feeds; the Wall Street Journal, the Economist, and the Financial Times; and Ed Zitron, Stratechery, Cal Newport. Markets from Yahoo Finance, weather from the NWS, scores from ESPN. Summaries are AI-generated from the linked reporting; verify at the sources. ================================================================