================================================================ INFOSECFOLLOW -- security, markets, business, pittsburgh Friday, June 19, 2026 - 4:05 PM EDT ================================================================ A critical unauthenticated remote-code-execution flaw in Splunk Enterprise drew in-the-wild attacks and a three-day federal patch order, even as a Texas vendor breach spilled three million driver's licenses and an unpatchable silicon exploit cracked older iPhones. CONTENTS: Emerging Trends and Key Updates | Security | Pittsburgh | Sports | Reading | Markets EMERGING TRENDS AND KEY UPDATES ---------------------------------------------------------------- * [TREND] Attackers weaponized the freshly disclosed Splunk Enterprise flaw CVE-2026-20253 within days, pushing it into active exploitation under a three-day CISA patch deadline barely after release. see: Splunk Enterprise RCE Under Active Attack * [TREND] Enterprises are waking up to AI agents that deploy code and reach internal services as ungoverned identities, a blind spot exploits like AutoJack already escalate to host takeover. see: AI Agents Become Ungoverned Identities * [TREND] Check Point exposed criminals laundering reputation by stuffing GitHub stars, YouTube tutorials, and favorable VirusTotal comments to dress crypto-stealing sniper bots up as trustworthy software. see: Fake Reputation Pushes Crypto-Stealing Malware * [UPDATE (new)] Vendor and supply-chain failures drove the day's breaches as one Klue credential cascaded into Salesforce, while a Texas Parks and Wildlife vendor exposed three million license holders. see: Klue Supply-Chain Breach Cascades to Salesforce; Texas Wildlife Vendor Breach Exposes 3 Million * [UPDATE (new)] Researchers at Paradigm Shift released usbliter8, an unpatchable exploit running arbitrary code inside the SecureROM of Apple's A12 and A13 chips. see: Unpatchable usbliter8 Breaks Apple SecureROM SECURITY ---------------------------------------------------------------- 1. SPLUNK ENTERPRISE RCE UNDER ACTIVE ATTACK Vulnerabilities and Exploits · [zero-day, patch, rce] Latest developments: CISA added CVE-2026-20253, a critical unauthenticated remote-code-execution flaw in Splunk Enterprise, to its known exploited vulnerabilities catalog and gave federal civilian agencies until June 21, 2026, to apply mitigations after Splunk and Resecurity confirmed in-the-wild exploitation. The bug lets a remote attacker run code without authenticating, opening the door to full system compromise of the log-analytics platform many enterprises use as their security backbone. Resecurity urged operators to patch immediately and hunt for indicators of compromise in request logs. - Help Net Security: https://www.helpnetsecurity.com/2026/06/19/splunk-vulnerability-cve-2026-20253-exploited/ - BleepingComputer: https://www.bleepingcomputer.com/news/security/cisa-splunk-enterprise-flaw-actively-exploited-patch-by-sunday/ - SecurityWeek: https://www.securityweek.com/splunk-enterprise-vulnerability-exploited-in-attacks-days-after-disclosure/ 2. KLUE SUPPLY-CHAIN BREACH CASCADES TO SALESFORCE Data Breaches · [breach, supply-chain] Latest developments: Huntress published a detailed June 18 post-mortem calling the incident a security domino effect in which one compromised Klue integration credential cascaded into data theft across connected platforms including Salesforce, while Recorded Future joined as a confirmed victim and Salesforce disabled the Klue Battlecards integration. Klue, a competitive-intelligence platform that wires CRM and sales data across business tools, became the entry point for attackers who exfiltrated data from customers' Salesforce instances. Salesforce customers cannot reconnect the app until further notice. - Help Net Security: https://www.helpnetsecurity.com/2026/06/19/klue-salesforce-data-breach-huntress/ - SecurityWeek: https://www.securityweek.com/cybersecurity-firms-impacted-by-klue-supply-chain-attack/ - The Hacker News: https://thehackernews.com/2026/06/salesforce-disables-klue-app.html 3. AI AGENTS BECOME UNGOVERNED IDENTITIES AI Security · [ai, identity] Latest developments: Token Security and BleepingComputer argued that AI agents now access data, trigger workflows, and deploy code with almost no oversight, making them an unmanaged identity class, while The Hacker News reframed shadow AI as an access-control problem rather than a data-leakage one. Enterprises that bolted AI agents onto production systems gave them broad reach without the identity, credential, and blast-radius controls applied to human accounts. Researchers warn that this gap, the same trust boundary the AutoJack exploit abuses, demands agent governance now. - BleepingComputer: https://www.bleepingcomputer.com/news/security/every-ai-agent-is-an-identity-most-organizations-dont-treat-them-that-way/ - The Hacker News: https://thehackernews.com/2026/06/forget-data-leakage-shadow-ais-real.html 4. UNPATCHABLE USBLITER8 BREAKS APPLE SECUREROM Vulnerabilities and Exploits · [zero-day, hardware, apple] Latest developments: Researchers at Paradigm Shift published usbliter8, a working exploit that achieves arbitrary code execution inside the SecureROM of Apple's A12 and A13 chips, code burned into silicon at manufacture that no software update can reach. The flaw permanently affects iPhones and iPads built on the A12 and A13 processors for as long as those devices stay in use. It is not a remote attack; it requires physical USB access to the device. - The Hacker News: https://thehackernews.com/2026/06/unpatchable-usbliter8-exploit-breaks.html 5. TEXAS WILDLIFE VENDOR BREACH EXPOSES 3 MILLION Data Breaches · [breach, government] Latest developments: The Texas Parks and Wildlife Department disclosed a breach at the vendor running its hunting and fishing license system, exposing personal information, including driver's license data, for more than three million individuals. The compromise hit a third-party processor rather than the agency's own systems, the latest case of a state government's outsourced platform leaking residents' identity documents. Affected license holders face heightened identity-theft and phishing risk. - BleepingComputer: https://www.bleepingcomputer.com/news/security/texas-govt-data-breach-exposes-over-3-million-drivers-licenses/ 6. FAKE REPUTATION PUSHES CRYPTO-STEALING MALWARE Ransomware and Cybercrime · [malware, cybercrime] Latest developments: Check Point researchers exposed a campaign that inflated GitHub activity, planted software reviews and YouTube tutorials, and seeded favorable VirusTotal comments to make malicious cryptocurrency sniper bots and gambling predictors look trustworthy. The attackers packaged the malware as money-making tools and manufactured a veneer of legitimacy across the platforms victims trust to vet software. Users who installed the bots and predictors instead surrendered their cryptocurrency. - Help Net Security: https://www.helpnetsecurity.com/2026/06/19/fake-github-stars-crypto-stealing-malware/ PITTSBURGH ---------------------------------------------------------------- Weather: Juneteenth: Isolated Rain Showers, high 79F. Tonight: Isolated Rain Showers then Mostly Clear, low 57F. Saturday: Mostly Sunny then Chance Showers And Thunderstorms, high 78F. Business: * Schwebel's to Liquidate After 120 Years Latest developments: Schwebel Baking Company announced Friday it will wind down operations and pursue a formal liquidation in the coming weeks. Youngstown-based Schwebel Baking Company, whose bread fills grocery shelves across western Pennsylvania, blamed aging plants and equipment, costly labor contracts, and years of financial strain for the shutdown. - KDKA: https://www.cbsnews.com/pittsburgh/news/schwebel-baking-company-closing/ - Pittsburgh Post-Gazette: https://www.post-gazette.com/life/food/2026/06/19/schwebels-bread-closing/stories/202606190044 * P3R Chief Executive Departs Latest developments: Troy Schooley will step down as head of P3R to launch his own sports-management firm. P3R, the Pittsburgh event-management organization that runs the annual Pittsburgh Marathon and helped stage the 2026 NFL Draft, loses Troy Schooley after more than a decade shaping the city's running and sports-event calendar. - Pittsburgh Magazine: https://www.pittsburghmagazine.com/p3r-ceo-steps-down-to-start-new-sports-management-firm/ Around town: * Citizen Science Lab Opens on Herron Avenue Latest developments: The Citizen Science Lab opened its renovated home along the Herron Avenue corridor. The new Citizen Science Lab building adds laboratories, meeting spaces, and an attached greenhouse, which backers hope will lift the Herron Avenue corridor. - Pittsburgh City Paper: https://www.pghcitypaper.com/news-2/citizen-science-labs-new-home-brings-hope-to-herron-avenue-corridor/ * Detective Launches Youth Horseback Program Latest developments: Detective Dorothea Leftwich launched 'Riding Into the Future,' a free horseback-riding and leadership program for Pittsburgh children. Leftwich, the Pittsburgh Bureau of Police's first Black female mounted patrol detective, built the program to give inner-city kids access to horses and mentorship. - KDKA: https://www.cbsnews.com/pittsburgh/news/riding-into-the-future-pittsburgh-horseback-riding/ * Heavy Rain Expected Monday Latest developments: WTAE meteorologists flagged Monday, June 22, as an impact day for heavy rain across western Pennsylvania. Isolated showers linger through the weekend before a wetter system arrives Monday, prompting the impact-day designation. - WTAE: https://www.wtae.com/article/isolated-shower-chances-linger-into-the-weekend-for-western-pa/71634929 Events: * Western PA Juneteenth Celebration Latest developments: The four-day Juneteenth festival is underway downtown through Sunday, June 21. The Western PA Juneteenth and Black Music Celebration, billed as North America's largest Juneteenth festival, runs Thursday through Sunday, June 18-21, from 11 a.m. to 10 p.m. across Point State Park, Market Square, and Liberty Avenue, presented free by Stop the Violence Pittsburgh. - NEXTpittsburgh Events: https://nextpittsburgh.com/events/14-things-to-do-this-weekend-june-18-21-2026/ * World Cup Fan Zone at Acrisure Stadium Latest developments: DJ Pauly D joined the July 5 bill alongside country singer Brett Young for the free World Cup Fan Zone. The free Pennsylvania World Cup Fan Zone at Acrisure Stadium on Pittsburgh's North Shore stages performances by DJ Pauly D and Brett Young on Sunday, July 5. - WPXI: https://www.wpxi.com/news/local/dj-pauly-d-joins-brett-young-bill-world-cup-fan-zone-acrisure-stadium/WHRJLCYVVBGVPDBBIBSFKIS4I4/ SPORTS ---------------------------------------------------------------- Pirates (38-37) Up Next · Pirates @ Rockies · Fri Jun 19, 8:40 PM https://plaintextsports.com/mlb/2026-06-19/pit-col Around the Teams: * Pirates Trade Joey Bart Latest developments: The Pirates dealt catcher Joey Bart to the Braves for reliever Hunter Stratton, adding bullpen help and clearing their catching logjam. Post-Gazette beat writers report the trade reshapes the catching depth chart and addresses a bullpen the team has struggled to repair, while a follow-up mailbag weighs the path forward at catcher and whether Marcell Ozuna returns. - Post-Gazette Pirates: https://www.post-gazette.com/sports/pirates/2026/06/18/pirates-bart-hunter-stratton-braves-endy-davis/stories/202606180080 - Post-Gazette Pirates: https://www.post-gazette.com/sports/pirates/2026/06/19/mlb-trade-bart-stratton-henry-davis-marcell-ozuna/stories/202606190033 * Steelers Offseason Chat Latest developments: Post-Gazette beat writer Christopher Carter fielded questions on the Steelers' roster heading toward training camp in his June 18 chat. Carter took reader questions on cornerback Joey Porter Jr., edge rusher T.J. Watt, cornerback Jalen Ramsey, quarterback Aaron Rodgers, and coach Mike McCarthy as the team approaches camp at Saint Vincent College. - Post-Gazette Steelers: https://www.post-gazette.com/sports/steelers/2026/06/18/nfl-offseason-news-porter-watt-ramsey-rodgers-mccarthy/stories/202606180052 Team USA: * Pulisic Out vs Australia Latest developments: A calf injury ruled Christian Pulisic out of the U.S. men's World Cup group match against Australia on Friday, with Ricardo Pepi starting in his place. The United States, co-hosting the 2026 World Cup, lost captain Christian Pulisic for the group-stage clash with Australia at Lumen Field in Seattle. - ESPN Soccer: https://www.espn.com/soccer/story/_/id/49118064/christian-pulisic-calf-usmnt-world-cup-clash-australia * Jenny Simpson Improving After Collapse Latest developments: U.S. Olympic 1,500-meter bronze medalist Jenny Simpson showed 'encouraging improvement' after collapsing while pacing a mile group at a Raleigh event this week. Simpson, a former world champion in the 1,500 meters, remained under medical care Thursday following the collapse. - ESPN Olympics: https://www.espn.com/olympics/trackandfield/story/_/id/49111770/olympian-jenny-simpson-shows-encouraging-improvement-collapsing-raleigh-track-event READING ---------------------------------------------------------------- * Ed Zitron -- Premium: The Silicon Valley Bubble (Part 2) Continuing his Silicon Valley bubble series, Zitron argues OpenAI and Anthropic are racing to public markets for exit liquidity while burning billions with no path to profit, pointing to OpenAI's roughly $34 billion in spending against about $13 billion in revenue. https://www.wheresyoured.at/premium-the-silicon-valley-bubble-part-2/ * Stratechery -- An Interview with Michael Morton About E-Commerce in the Age of AI Ben Thompson interviews Michael Morton on how AI reshapes e-commerce, covering unfalsifiable bear cases, distribution versus referral models, grocery, and autonomous vehicles. https://stratechery.com/2026/an-interview-with-michael-morton-about-e-commerce-in-the-age-of-ai/ * Cal Newport -- AI Isn't Breaking Work. It's Already Broken. Reacting to a Financial Times interview with the Work AI Institute's Rebecca Hinds and a survey of 6,000 digital workers, Newport argues AI exposes dysfunction that already plagued knowledge work rather than creating it. https://calnewport.com/ai-isnt-breaking-work-its-already-broken/ MARKETS (weekly average, change vs prior week) ---------------------------------------------------------------- S&P 500 7,483.56 ▲ +1.6% Dow 51,586.04 ▲ +1.8% Nasdaq 26,297.74 ▲ +2.5% WTI crude 79.01 ▼ -11.8% EUR/USD 1.1578 ▲ +0.3% GBP/USD 1.3401 ▲ +0.3% USD/JPY 160.27 = -0.0% ================================================================ Generated 2026-06-19 16:05 EDT. Sources: 24 security feeds; 9 Pittsburgh feeds; 4 Pittsburgh arts and events feeds; 6 Pittsburgh sports beat and podcast feeds; 4 Team USA feeds; the Wall Street Journal, the Economist, and the Financial Times; and Ed Zitron, Stratechery, Cal Newport. Markets from Yahoo Finance, weather from the NWS, scores from ESPN. Summaries are AI-generated from the linked reporting; verify at the sources. ================================================================