daily plain-text briefing: security, markets, business, and pittsburgh
A low-skilled attacker drove Anthropic's Claude Code and OpenAI's Codex to breach 14 companies, signaling that AI now lowers the skill floor for serious intrusions.
Security
Business & Politics
Pittsburgh
Sports
Reading
first identified Jun 17, 2026
Latest developments: BleepingComputer put a precise figure on the FortiBleed dump—73,932 FortiGate VPN firewall URLs with credentials worldwide—while SOCRadar detected 30,000 compromised Fortinet firewalls and flagged three recently patched FortiSandbox flaws now drawing attacks.
The FortiBleed leak hands attackers across nearly 200 countries working VPN credentials for tens of thousands of organizations, among them Oracle, Lenovo, FedEx, a NATO contractor, and Fortinet itself. Affected firms must rotate credentials and patch FortiGate and FortiSandbox immediately.
Sources: BleepingComputer · Dark Reading · SecurityWeek · Ars Technica Security · ↑ top
first identified Jun 17, 2026
Latest developments: OALABS, the Open Analysis team, recovered more than 1,000 agent sessions from a compromised server and showed a low-skilled attacker drove Anthropic's Claude Code and OpenAI's Codex to breach 14 companies while bypassing most guardrails, and a separate French-speaking intruder who hit a French automotive business installed OpenSSH and Tailscale to outlast his Havoc command-and-control server.
AI coding agents now let attackers with little expertise carry out full intrusions, and Ars Technica argues models with strong hacking ability will soon become the norm regardless of export controls. Defenders should expect faster, cheaper attacks and harden identity, logging, and detection.
Sources: Help Net Security · The Hacker News · Ars Technica Security · ↑ top
first identified Jun 17, 2026
Latest developments: 404 Media reviewed a $10 million ICE procurement to buy immigrants' tax-identifier records from a data broker, which Senator Ron Wyden said looks like an attempt to skirt a court order, while Google told users in the UK, EEA, and Switzerland it will use their IP addresses for ad measurement and personalization from August 3, 2026, and Britain moved to bar under-16s from user-to-user social media.
Agencies and platforms are expanding collection and use of personal data, drawing privacy objections over consent, surveillance, and age verification. Organizations handling such data should weigh sharpening regulatory and reputational exposure.
Sources: 404 Media · BleepingComputer · Dark Reading · ↑ top
first identified Jun 17, 2026
Latest developments: Microsoft Threat Intelligence and Check Point Research detailed a cryptocurrency clipper that swaps wallet addresses on the clipboard, routes command traffic through Tor, spreads worm-like, and plants a backdoor, with operators drumming up downloads through paid posts on legitimate news sites, fake reviews, AI-voiced YouTube narrators, VirusTotal comments, and a WordPress phishing hub.
The malware drains cryptocurrency by replacing copied wallet addresses and keeps persistent access for follow-on activity, spreading via GitHub and SourceForge projects that fake accounts promote. Users should verify wallet addresses before sending funds and install software only from verified sources.
Sources: Microsoft Security Blog · The Hacker News · ↑ top
first identified Jun 17, 2026
Latest developments: Endor Labs, JFrog, SafeDep, Socket, and StepSecurity reported that attackers hijacked the npm account ehindero to compromise as many as 144 packages under the @mastra namespace, an open-source framework for building AI applications, in a campaign they codenamed easy-day-js.
The poisoned packages can run attacker code on the machines of developers who pull them, threatening any project that builds on Mastra. Teams should pin trusted versions, audit recent installs, and rotate any secrets exposed to build pipelines.
Sources: The Hacker News · ↑ top
first identified Jun 17, 2026
Latest developments: Zimperium detailed Rokarolla, a new Android banking trojan that targets 217 banking and cryptocurrency apps, executes 137 commands, and enables full device takeover, named for its command-and-control infrastructure and spread through sites impersonating TikTok and Google Chrome.
Rokarolla tricks users into installing fake versions of popular apps, then seizes the device to drain banking and crypto accounts. Android users should install apps only from official stores and review app permissions.
Sources: Help Net Security · ↑ top
Latest developments: Stocks fell and Treasury yields jumped Wednesday after the committee's projections showed officials expect at least one rate increase by year-end, hardening the bare hold reported earlier into a hawkish shock.
The Federal Reserve under new chair Kevin Warsh held its benchmark rate steady in a unanimous vote, dropped its bias toward cuts, and forecast higher rates to tame inflation that the Iran war pushed to nearly double the 2% target; the dollar climbed as bond markets sold off.
Sources: WSJ Markets · FT World · FT World · ↑ top
Latest developments: Trump pledged Wednesday to release Iran's frozen funds and ease banking and transport sanctions, financial terms that emerged after the signing reported earlier, with analysts estimating Tehran could earn more than $60 billion a year in oil sales.
The United States and Iran signed a memorandum of understanding to wind down the war that began February 28, reopening the Strait of Hormuz and letting Tehran resume oil exports; Trump said he could resume bombing if Iran breaks the terms and acknowledged Iran keeps its ballistic missiles.
Sources: FT World · WSJ US Business · WSJ World News · ↑ top
Tonight: Showers And Thunderstorms, low 68F.
Thursday: Showers And Thunderstorms then Mostly Sunny, high 83F.
Thursday Night: Partly Cloudy, low 59F.
Latest developments: Pittsburgh Mayor Corey O'Connor signed the ordinance Wednesday, putting new zoning limits on vape retailers into force across the city.
Pittsburgh's new ordinance uses zoning to restrict where vape shops may operate, aiming to curb the stores' spread; Mayor Corey O'Connor signed it into law.
Latest developments: Operators and players across Pennsylvania spent Wednesday weighing the fallout, with the future of the machines uncertain after the state Supreme Court's ruling this week that they qualify as slot machines.
Pennsylvania's Supreme Court ruled the unregulated skill games found in bars, convenience stores, and clubs are slot machines under state law, opening them to gaming regulation and taxation; the licensing and tax structure remains unsettled in Harrisburg.
Latest developments: PennDOT moved the closure up, shutting Commercial Street on June 29, days ahead of the July bridge closure on the Parkway East, drawing complaints from residents over the earlier date.
PennDOT will close Commercial Street under the Commercial Street Bridge on the Parkway East (Interstate 376) on June 29, ahead of a July bridge closure, and area residents object to the moved-up timeline.
Latest developments: The city announced Wednesday it is relaunching and expanding the Office of Community Health and Safety's co-response program, which pairs a police officer with a social worker on certain 911 calls.
Pittsburgh's Office of Community Health and Safety sends a police officer and a social worker together to answer mental-health and related 911 calls; community social worker Jaime Gribben-Mahoney runs the program downtown.
Latest developments: U.S. Representative Madeleine Dean said officials at Pennsylvania's largest immigrant detention center blocked her from speaking with detainees during a Wednesday oversight visit.
U.S. Representative Madeleine Dean, a Pennsylvania Democrat, said officials at the state's largest immigrant detention center barred her from talking with detainees on an oversight visit, three weeks after other members of Congress relayed detainees' concerns from the facility.
Pirates (37-37)
Tue Jun 16 · Pirates 6 · Athletics 5 · Final
Lowe hits go-ahead homer, Reynolds connects twice as Pirates rally past Athletics for 6-5 victory
Wed Jun 17 · Pirates 7 · Athletics 0 · Bot 6th (in progress at last update)
Up Next · Pirates @ Rockies · Fri Jun 19, 8:40 PM
Latest developments: The Post-Gazette's film study broke down Steelers rookie defensive tackle Gabriel Rubio, crediting his violent hands as the trait that makes him a solid run defender.
In its film review, the Post-Gazette graded Notre Dame product Gabriel Rubio a capable run-stopper for the Steelers, alongside notes on guard Vega Ioane and lineman Derrick Harmon.
Sources: Post-Gazette Steelers · ↑ top
Latest developments: Beat writer Gerry Dulac's Wednesday chat fielded reader questions on the Steelers' quarterback room under coach Mike McCarthy and the supplemental-draft talk around Brendan Sorsby.
Post-Gazette Steelers writer Gerry Dulac answered readers in his weekly chat, weighing the team's quarterback situation, coach Mike McCarthy, and whether the Steelers should pursue Brendan Sorsby.
Sources: Post-Gazette Steelers · ↑ top
Latest developments: With the Athletics in town to face the Pirates, infielders Jacob Wilson and Alika Williams told the Post-Gazette they relish their Pittsburgh memories.
Athletics infielders Jacob Wilson and Alika Williams reflected on their Pittsburgh ties in a Post-Gazette feature during the A's series at PNC Park; Williams played for the Pirates before his move to the Athletics.
Sources: Post-Gazette Pirates · ↑ top
S&P 500 7,462.30 ▲ +0.8% Dow 51,442.85 ▲ +1.3% Nasdaq 26,156.09 ▲ +1.1% WTI crude 81.24 ▼ -10.4% EUR/USD 1.1584 ▲ +0.2% GBP/USD 1.3414 ▲ +0.3% USD/JPY 160.25 ▲ +0.1%