daily plain-text briefing: security, markets, business, and pittsburgh
The security industry and Washington both pivoted to AI agents in a single day, racing to govern the tools as Google shipped an agent-discovery standard and the Office of Management and Budget cataloged 3,611 federal AI deployments.
Latest developments: Google released Agentic Resource Discovery, an open specification for publishing, finding, and verifying AI agent tools across the web, while University of Oxford and SaferAI researchers warned that agents now write frontier labs' own code with light human oversight, and 1Password bought access-governance firm Apono for a reported $250 million to $300 million as Tenet Security emerged from stealth with $6 million to police agent behavior in real time.
Enterprises now run AI agents in live production at 32 percent of organizations, per Confluent, and vendors are scrambling to give those agents cryptographic identity, sandboxes, and runtime guardrails through control planes from Tigera Lynx and WitnessAI; teams deploying agents should govern tool and MCP-server access and audit every action.
Sources: Help Net Security · Help Net Security · SecurityWeek · SecurityWeek · ↑ top
Latest developments: Homebrew 6.0.0 now requires a user to trust a third-party tap before it evaluates or runs any Ruby code, closing a path that let outside code execute unsandboxed, while Microsoft published a teardown of the Mastra npm compromise that hid a postinstall payload across 140-plus projects.
A relentless 2026 supply-chain wave—Megalodon backdooring 5,500 GitHub repositories in six hours, TrapDoor spreading across npm, PyPI, and Crates.io, and the Mastra namespace hijack via the ehindero account—has pushed package managers to disable untrusted code execution by default; developers should audit their taps, dependencies, and the secrets sitting on their own machines.
Sources: Help Net Security · Microsoft Security Blog · Help Net Security · ↑ top
Latest developments: The European Union granted Ukraine access to its pool of pre-approved cybersecurity incident-response firms as Kyiv moves toward formal accession, while Senator Mark Warner warned acting CISA leadership and DHS Secretary Markwayne Mullin that staffing cuts threaten the agency and MS-ISAC funding.
Brussels is integrating Ukraine into the bloc's cybersecurity reserve so Kyiv can draw on vetted responders during major attacks, even as Warner argues Washington is hollowing out its own defenses; the contrast pits expanding allied capacity against shrinking U.S. capacity.
Sources: The Record · The Record · ↑ top
Latest developments: The Office of Management and Budget disclosed 3,611 active or planned federal AI use cases, a 70 percent jump from the final Biden-administration tally, with security researcher Bruce Schneier flagging plans to hand sensitive governmental functions to AI.
The Trump administration's April 14 disclosure shows AI spreading through federal operations faster than oversight can match, and Schneier counts many entries that automate consequential decisions; the breadth raises accountability and security questions for agencies and the public alike.
Sources: Schneier on Security · ↑ top
Latest developments: The Hacker News detailed a French-speaking attacker who breached a small French automotive business, planted a keylogger, and stole banking and email credentials, then installed OpenSSH and Tailscale on a victim machine just before his Havoc command-and-control server went offline—building a backdoor that bypassed the C2 entirely.
Legitimate remote-access tools give intruders durable, hard-to-spot footholds that survive the loss of their malware infrastructure; defenders should hunt for unsanctioned OpenSSH and Tailscale installations on endpoints.
Sources: The Hacker News · ↑ top
Overnight: Scattered Showers And Thunderstorms, low 68F.
Thursday: Chance Showers And Thunderstorms then Mostly Sunny, high 84F.
Thursday Night: Partly Cloudy, low 59F.
Latest developments: Allegheny County property records show the University of Pittsburgh closed late last month on the former Hemingway's Cafe building along Forbes Avenue in Oakland for $1.36 million.
The university, which called the deal thoughtful and strategic and said it watches for opportunities near campus, adds the longtime Forbes Avenue bar and restaurant property to its Oakland footprint.
Latest developments: Penn Township commissioners passed an ordinance Wednesday barring e-bicycles and e-scooters from the township's Municipal Park Complex.
Township secretary-manager Mary Perez said safety concerns for park visitors and for the riders drove the ban, which prohibits the electric bikes and scooters anywhere in the Penn Township park complex.
Latest developments: U.S. Rep. Madeleine Dean said staff blocked her from speaking with detainees Wednesday during an oversight visit to Pennsylvania's largest immigrant detention center.
Dean, a Pennsylvania Democrat, made the trip three weeks after other members of Congress publicly shared concerns gathered inside the same facility, and she said officials kept her from interviewing the people held there.
Latest developments: Two weeks after Belle Vernon's boil-water advisory ended, residents told KDKA they still have no explanation for what caused it.
Residents in the Mon Valley borough of Belle Vernon say no one has told them what triggered the advisory that forced them to boil tap water before use.
Latest developments: Pittsburgh's Juneteenth festivals, film screenings, and gatherings reach the June 19 holiday Friday, now one day out.
The Post-Gazette's roundup details Juneteenth events across the Pittsburgh region marking the June 19 holiday, spanning festivals, film screenings, and community gatherings.
Sources: Post-Gazette Arts & Entertainment · ↑ top
Pirates (38-37)
Wed Jun 17 · Pirates 12 · Athletics 4 · Final
Ryan O'Hearn knocks in career-high 6 runs as Pirates roll to 12-4 victory over Athletics
Up Next · Pirates @ Rockies · Fri Jun 19, 8:40 PM
Latest developments: In his June 17 chat, Post-Gazette beat writer Gerry Dulac took reader questions on quarterback Brendan Sorsby, Aaron Rodgers, coach Mike McCarthy, and young passers Will Howard and Drew Allar.
Dulac's weekly Steelers chat ranged across the supplemental-draft talk around Sorsby, the quarterback room, and Mike McCarthy's plans heading toward the season.
Sources: Post-Gazette Steelers · ↑ top
Latest developments: On the June 17 SNR Drive, Matt Williamson and Wes Uhler assembled an all-time Steelers roster of players outside the Hall of Fame and broke down running back Jaylen Warren's game.
The Steelers' team podcast picked offensive and defensive squads of franchise greats who never reached Canton, touched on Barry Foster, and assessed where Jaylen Warren stands.
Sources: Pittsburgh Steelers (YouTube) · ↑ top
Latest developments: The Steelers' channel released Forging Steel episode two, 'Pittsburgh is on the Clock,' an inside look at the team's 2026 NFL Draft.
The documentary follows the Steelers through the draft, including first-round pick Max Iheanachor experiencing draft night and Coach Mike McCarthy addressing the team.
Sources: Pittsburgh Steelers (YouTube) · ↑ top
S&P 500 7,462.30 ▲ +0.8% Dow 51,442.85 ▲ +1.3% Nasdaq 26,156.09 ▲ +1.1% WTI crude 81.24 ▼ -10.4% EUR/USD 1.1584 ▲ +0.2% GBP/USD 1.3414 ▲ +0.3% USD/JPY 160.25 ▲ +0.1%