================================================================ INFOSECFOLLOW -- security, markets, business, pittsburgh Saturday, June 20, 2026 - 6:06 AM EDT ================================================================ A Russian-speaking credential-theft campaign dubbed FortiBleed has compromised 86,644 Fortinet devices, about half the internet-facing fleet, as Microsoft's AutoJack research exposes AI browsing agents as a fresh path to host code execution. CONTENTS: Emerging Trends and Key Updates | Security | Business and Politics | Pittsburgh | Sports | Reading | Markets EMERGING TRENDS AND KEY UPDATES ---------------------------------------------------------------- * [TREND] Microsoft's AutoJack chain weaponizes AI browser agents into local code execution as Macron presses democracies to govern advanced AI. see: AutoJack Turns AI Browser Agents Into a Code-Execution Vector; Macron Presses Democracies to Govern Advanced AI * [TREND] Attackers are mass-harvesting access at scale, with FortiBleed compromising 86,644 Fortinet devices and the Icarus crew riding stolen Klue OAuth tokens into Salesforce. see: FortiBleed Compromises 86,644 Fortinet Devices; Icarus Group Claims Klue OAuth Breach * [UPDATE (new)] Two fresh threats surfaced: the Gravity SMTP WordPress plugin is under active exploitation across 100,000 sites while CryptoBandits malware abuses Tor for remote code execution. see: Gravity SMTP WordPress Plugin Under Active Exploitation; CryptoBandits Malware Blends Theft With a Tor Backdoor * [TREND] Reading commentary hardens AI skepticism, with Zitron extending his Silicon Valley bubble case and Newport arguing AI merely exposes work dysfunctions that predate it. see: Premium: The Silicon Valley Bubble (Part 2); AI Isn't Breaking Work. It's Already Broken. * [UPDATE (new)] Saturday's downtown calendar fills with the Juneteenth parade at Point State Park and the inaugural South Side Street Fest closing East Carson Street tonight. see: Juneteenth Parade Downtown Saturday; South Side Street Fest Launches Tonight SECURITY ---------------------------------------------------------------- 1. FORTIBLEED COMPROMISES 86,644 FORTINET DEVICES Vulnerabilities and Exploits · [credential-theft, patch, breach] Latest developments: CISA on June 19 urged FortiGate owners to act as the compromised-device count reached 86,644, roughly half the internet-accessible Fortinet firewalls and VPNs, blamed the sweep on Russian-speaking actors, and Palo Alto Networks Unit 42 published guidance for preparing against large-scale credential attacks. FortiBleed is a mass credential-theft campaign harvesting login data from internet-facing Fortinet FortiGate firewalls and VPN gateways across government and private networks. Operators should rotate every credential and harden exposed devices. - The Hacker News: https://thehackernews.com/2026/06/cisa-warns-fortinet-customers-as.html - SecurityWeek: https://www.securityweek.com/fortibleed-86000-fortinet-device-credentials-compromised/ - Unit 42 (Palo Alto): https://unit42.paloaltonetworks.com/large-scale-credential-attacks/ 2. MACRON PRESSES DEMOCRACIES TO GOVERN ADVANCED AI Policy and Regulation · [policy, ai] Latest developments: French President Emmanuel Macron urged the world's wealthy democracies to cooperate on regulating advanced AI and asked the United States to share its cutting-edge systems, the same day Bruce Schneier argued that Washington's export ban on Anthropic's Fable model fails because the broad trend of rising AI capability drives the danger. Governments are scrambling to govern frontier models after the U.S. classified Anthropic's Fable as an export-controlled munition and cut off foreign access. Policymakers face pressure to coordinate rules rather than wall off individual models. - SecurityWeek: https://www.securityweek.com/french-president-urges-us-to-share-cutting-edge-ai-and-democracies-to-cooperate-on-regulation/ - Schneier on Security: https://www.schneier.com/blog/archives/2026/06/anthropics-fable-and-the-state-of-ai.html 3. ICARUS GROUP CLAIMS KLUE OAUTH BREACH Data Breaches · [breach, supply-chain] Latest developments: Klue publicly confirmed that attackers stole OAuth tokens connecting to customers' Salesforce environments as a new extortion crew calling itself Icarus claimed the attack and the victim list kept growing, with Huntress detailing on June 18 how one compromised integration credential cascaded into customer-data theft across connected platforms. Klue is a market-intelligence platform that integrates CRM and sales data across business tools, and its breach spilled connected-Salesforce data for victims including Huntress and Recorded Future. Affected customers should revoke Klue OAuth tokens and audit Salesforce access logs. - BleepingComputer: https://www.bleepingcomputer.com/news/security/klue-oauth-breach-victim-list-grows-as-icarus-hackers-claim-attack/ - Help Net Security: https://www.helpnetsecurity.com/2026/06/19/klue-salesforce-data-breach-huntress/ 4. GRAVITY SMTP WORDPRESS PLUGIN UNDER ACTIVE EXPLOITATION Vulnerabilities and Exploits · [exploit, wordpress, patch] Latest developments: Threat actors are exploiting an unauthenticated information-disclosure vulnerability in the Gravity SMTP WordPress plugin, which runs on 100,000 sites, to pull sensitive data without logging in. Gravity SMTP routes outbound mail for WordPress sites, and the flaw exposes information to any anonymous visitor. Administrators should update the plugin immediately and review logs for unauthorized access. - BleepingComputer: https://www.bleepingcomputer.com/news/security/hackers-exploit-info-disclosure-bug-in-gravity-smtp-wordpress-plugin/ 5. AUTOJACK TURNS AI BROWSER AGENTS INTO A CODE-EXECUTION VECTOR AI Security · [ai, rce, zero-day] Latest developments: Microsoft researchers disclosed AutoJack, an exploit chain that steers an AI browsing agent to an attacker's web page whose JavaScript reaches a privileged local service on the same machine and spawns a process on the host, requiring no credentials, no sign-in, and no further user interaction once the agent loads the page. AutoJack converts agentic browsers into remote-code-execution delivery vehicles on the user's own computer. Teams deploying AI browsing agents should wall the agents off from privileged local services. - The Hacker News: https://thehackernews.com/2026/06/autojack-attack-lets-one-web-page.html 6. CRYPTOBANDITS MALWARE BLENDS THEFT WITH A TOR BACKDOOR Ransomware and Cybercrime · [malware, cryptocurrency] Latest developments: SecurityWeek detailed CryptoBandits, malware that pairs cryptocurrency theft with a backdoor, routing its traffic through a local SOCKS5 proxy and abusing Tor to enable remote code execution on infected machines. CryptoBandits steals cryptocurrency while granting attackers hidden remote control over the victim's system through Tor-anonymized channels. Defenders should watch for unexpected local SOCKS5 proxies and Tor connections. - SecurityWeek: https://www.securityweek.com/cryptobandits-malware-doubles-as-a-backdoor-abuses-tor/ BUSINESS AND POLITICS ---------------------------------------------------------------- * Israel-Hezbollah Ceasefire, Iran Talks Postponed Latest developments: Israel and Hezbollah agreed a renewed ceasefire Friday after fighting killed four Israeli soldiers and dozens in Lebanon, and Washington postponed the next phase of Iran negotiations when Vice President JD Vance scrapped his Switzerland trip, pushing oil lower. The U.S.-Iran accord signed June 18 reopened the Strait of Hormuz and cleared Tehran to sell oil on the open market for the first time since 2018; fresh Israel-Hezbollah combat in Lebanon now imperils the deal's nuclear-talks phase that Vance planned to attend. - WSJ World News: https://www.wsj.com/world/middle-east/israel-hezbollah-clashes-put-iran-deal-under-early-pressure-0aa5ae90 - FT World: https://www.ft.com/content/ad95de96-4849-479e-b4e5-c5f15fcad581 - WSJ World News: https://www.wsj.com/world/middle-east/how-fresh-middle-east-violence-scuttled-the-next-phase-of-iran-talks-8c7c0c80 * Starmer Faces Cabinet Mutiny After By-Election Loss Latest developments: Andy Burnham won the Makerfield by-election Friday over Nigel Farage's Reform UK, intensifying pressure on Prime Minister Keir Starmer to resign as Labour MPs warn they will lose their seats and bond markets seek reassurance over worsening UK finances. Outgoing Greater Manchester mayor Andy Burnham beat Reform UK in the Makerfield by-election, casting himself as Starmer's likeliest successor; the Labour leadership crisis lands as UK public finances deteriorate and gilt investors look for stability. - FT World: https://www.ft.com/content/095b3f3d-8c66-46fa-bb2a-1b8186f3f054 - FT World: https://www.ft.com/content/dec7903b-8a5e-4de7-b8a9-656eed78cd90 PITTSBURGH ---------------------------------------------------------------- Weather: Today: Mostly Sunny then Chance Showers And Thunderstorms, high 78F. Tonight: Slight Chance Showers And Thunderstorms then Partly Cloudy, low 58F. Sunday: Mostly Sunny, high 82F. Business: * Café Momentum Founder Named Time Visionary Latest developments: Time placed Chad Houser, founder and chief executive of Café Momentum, on its inaugural Visionaries list recognizing leaders driving impact in children's lives. Café Momentum, a downtown Pittsburgh restaurant that hires and mentors justice-involved young people and ranks among western Pennsylvania's best per the Post-Gazette, earned national recognition for founder Chad Houser's work. - KDKA: https://www.cbsnews.com/pittsburgh/news/cafe-momentum-founder-time-visionary-list/ * Most Area Communities Are Losing Residents Latest developments: A Post-Gazette analysis found most Pittsburgh-area communities have shed residents and argues the decline may carry an upside for the region. The Post-Gazette examined population trends across the Pittsburgh metropolitan area, documenting steady resident losses in most municipalities and making the case that shrinkage need not signal regional failure. - Pittsburgh Post-Gazette: https://www.post-gazette.com/local/region/2026/06/20/pittsburgh-population-residents/stories/202606180053 Around town: * National Aviary Adds a Harpy Eagle Latest developments: The National Aviary on Pittsburgh's North Side introduced a harpy eagle, which staff call a once-in-a-lifetime species to see. The National Aviary, the country's only independent nonprofit zoo dedicated to birds, added a harpy eagle—one of the world's largest and most powerful raptors—to its North Side collection. - Pittsburgh Post-Gazette: https://www.post-gazette.com/life/outdoors/2026/06/20/harpy-eagle-national-aviary-pittsburgh/stories/202606180067 * Four Sets of Triplets at West Penn Latest developments: Allegheny Health Network's West Penn Hospital announced Friday it recently delivered four sets of triplets, all cared for in its Level 3 neonatal intensive care unit. West Penn Hospital in Bloomfield, which operates a Level 3 NICU, welcomed four sets of triplets in a short span, sending the newborns for added support before they went home with their families. - KDKA: https://www.cbsnews.com/pittsburgh/news/4-sets-of-triplets-west-penn-hospital-allegheny-health-network/ - WTAE: https://www.wtae.com/article/pittsburgh-triplets-west-penn-hospital/71605904 * McKees Rocks Police Address Teen Takeovers Latest developments: The McKees Rocks Police Department said it has answered several 'teen takeovers' at vacant properties, part of a trend spreading across the country. Police in McKees Rocks, the Allegheny County borough along the Ohio River, reported responding to large unplanned youth gatherings at empty buildings and weighed how to manage them. - WPXI: https://www.wpxi.com/news/local/mckees-rocks-police-say-they-have-been-called-several-teen-takovers-vacant-properties/NMWP6SVKINA25HGCXVNG5JOEZQ/ Events: * South Side Street Fest Launches Tonight Latest developments: The inaugural South Side Street Fest opens tonight, Saturday, June 20, with East Carson Street closing for live music and entertainment from 10 p.m. to 2 a.m. The South Side Hospitality Partnership holds the first South Side Street Fest on Saturday, June 20, 2026, shutting East Carson Street in the South Side to traffic for live music from 10 p.m. to 2 a.m.; Pennsylvania granted $125,000 to fund private security for the adults-only event. - WTAE: https://www.wtae.com/article/south-side-street-fest-pittsburgh/71640822 - WPXI: https://www.wpxi.com/news/local/south-side-community-shows-some-excitement-before-first-street-fest/MPNE57TNBFEKFK2QTLINT7OCAI/ * Juneteenth Parade Downtown Saturday Latest developments: The Western PA Juneteenth and Black Music Celebration stages its downtown parade Saturday, June 20, with festival programming at Point State Park and Market Square running through Sunday, June 21. Stop the Violence Pittsburgh's four-day Western PA Juneteenth and Black Music Celebration, billed as the largest in North America, runs 11 a.m. to 10 p.m. at Point State Park, Market Square, and along Liberty Avenue downtown through Sunday, June 21, with a parade Saturday, June 20. - WTAE: https://www.wtae.com/article/juneteenth-pittsburgh-point-state-park-market-square/71640667 - NEXTpittsburgh Arts & Entertainment: https://nextpittsburgh.com/events/14-things-to-do-this-weekend-june-18-21-2026/ SPORTS ---------------------------------------------------------------- Pirates (38-38) Fri Jun 19 · Pirates 3 · Rockies 4 · Final Fulford's pinch 2-run double in 8th lifts Rockies past Pirates 4-3, Freeland reaches 1,000 Ks https://plaintextsports.com/mlb/2026-06-19/pit-col Up Next · Pirates @ Rockies · Sat Jun 20, 9:10 PM https://plaintextsports.com/mlb/2026-06-20/pit-col Around the Teams: * Pirates' Catching Plan After Bart Trade Latest developments: A June 19 Post-Gazette mailbag laid out how the Pirates fill catcher after dealing Joey Bart to Atlanta, leaning on Henry Davis and Endy Rodriguez, and weighed whether designated hitter Marcell Ozuna returns. Following the June 18 trade that sent catcher Joey Bart to the Braves for reliever Hunter Stratton, Post-Gazette beat writers fielded reader questions on Pittsburgh's catching depth and Marcell Ozuna's future with the club. - Post-Gazette Pirates: https://www.post-gazette.com/sports/pirates/2026/06/19/mlb-trade-bart-stratton-henry-davis-marcell-ozuna/stories/202606190033 * SNR Drive on Breakouts and Trade Targets Latest developments: On the June 19 SNR Drive, Steelers analysts Matt Williamson and Wes Uhler broke down ESPN's Ben Solak on five 2025 breakout candidates and five 'cliff falls,' surveyed leaguewide trade candidates, and answered a Steelers Q&A heading into 2026. The Pittsburgh Steelers' SNR Drive show, hosted by Matt Williamson and Wes Uhler, dissected projected NFL risers and decliners and ran a viewer question session on the team's roster ahead of training camp. - Pittsburgh Steelers (YouTube): https://www.youtube.com/watch?v=oqUdOC8pj5Q Team USA: * USMNT Reaches Round of 32 Latest developments: The U.S. men beat Australia 2-0 in Seattle on Friday without the injured Christian Pulisic, clinching a Round of 32 berth and topping Group D after Paraguay edged Turkey 1-0. The United States men's national team, co-hosting the 2026 World Cup, defeated Australia 2-0 in Seattle to advance from the group stage; a calf injury kept captain Christian Pulisic out as Ricardo Pepi and the supporting cast carried the attack. - ESPN Soccer: https://www.espn.com/soccer/story/_/id/49119070/christian-pulisic-sits-us-finds-way-vs-australia-reach-world-cup-knockout-rounds - ESPN Soccer: https://www.espn.com/soccer/story/_/id/49123488/us-clinches-group-d-10-man-paraguay-edges-turkey * Alex Freeman's First U.S. Goal Latest developments: U.S. defender Alex Freeman, the 21-year-old son of former Packers receiver Antonio Freeman, scored his first international goal in Friday's win over Australia, a strike VAR confirmed onside. Alex Freeman put the U.S. up 2-0 against Australia in Seattle, scoring on the same field where his father, Antonio Freeman Jr., starred for the Green Bay Packers, a moment Freeman called a full-circle family one. - ESPN Soccer: https://www.espn.com/soccer/story/_/id/49120341/alex-freeman-goal-seattle-full-circle-family-moment - ESPN Soccer: https://www.espn.com/soccer/story/_/id/49119534/var-review-united-states-australia-alex-freeman-usmnt-goal-not-offside * Kate Douglass Sets 50 Freestyle Record Latest developments: Kate Douglass broke the women's 50-meter freestyle world record Friday, winning the TYR Pro Swim Series final in 23.59 seconds. U.S. Olympic swimmer Kate Douglass clocked 23.59 in the 50-meter freestyle at the TYR Pro Swim Series, bettering the 23.61 mark Sweden's Sarah Sjostrom set in July 2023. - ESPN Olympics: https://www.espn.com/olympics/swimming/story/_/id/49121983/kate-douglass-breaks-women-50-meter-freestyle-world-record READING ---------------------------------------------------------------- * Ed Zitron -- Premium: The Silicon Valley Bubble (Part 2) Zitron extends his case that Silicon Valley sits atop an AI bubble, building on his exclusive that OpenAI spent $34 billion against $13.07 billion in revenue and arguing the leading model makers lack any path to profitability. https://www.wheresyoured.at/premium-the-silicon-valley-bubble-part-2/ * Stratechery -- An Interview with Michael Morton About E-Commerce in the Age of AI Ben Thompson and Michael Morton discuss how AI reshapes online retail, weighing distribution versus referral models, the difficulty of unfalsifiable bear cases, and the roles of grocery and autonomous vehicles. https://stratechery.com/2026/an-interview-with-michael-morton-about-e-commerce-in-the-age-of-ai/ * Cal Newport -- AI Isn't Breaking Work. It's Already Broken. Responding to a Financial Times interview with Work AI Institute head Rebecca Hinds about a 6,000-person survey, Newport argues that knowledge work's dysfunctions predate AI and that the technology merely exposes problems already present. https://calnewport.com/ai-isnt-breaking-work-its-already-broken/ MARKETS (weekly average, change vs prior week) ---------------------------------------------------------------- S&P 500 7,483.56 ▲ +1.6% Dow 51,586.04 ▲ +1.8% Nasdaq 26,297.74 ▲ +2.5% WTI crude 77.35 ▼ -12.5% EUR/USD 1.1528 ▼ -0.2% GBP/USD 1.3359 = -0.0% USD/JPY 160.50 ▲ +0.1% ================================================================ Generated 2026-06-20 06:06 EDT. Sources: 24 security feeds; 9 Pittsburgh feeds; 4 Pittsburgh arts and events feeds; 6 Pittsburgh sports beat and podcast feeds; 4 Team USA feeds; the Wall Street Journal, the Economist, and the Financial Times; and Ed Zitron, Stratechery, Cal Newport. Markets from Yahoo Finance, weather from the NWS, scores from ESPN. Summaries are AI-generated from the linked reporting; verify at the sources. ================================================================