================================================================ INFOSECFOLLOW -- security, markets, business, pittsburgh Saturday, June 20, 2026 - 12:06 PM EDT ================================================================ North Korea's Sapphire Sleet poisoned more than 140 npm packages through Mastra AI, the day's sharpest sign that software supply chains and stolen credentials remain attackers' easiest path in. CONTENTS: Emerging Trends and Key Updates | Security | Business and Politics | Pittsburgh | Sports | Reading | Markets EMERGING TRENDS AND KEY UPDATES ---------------------------------------------------------------- * [TREND] Attackers keep weaponizing trusted pipelines, as North Korea's Sapphire Sleet poisoned 140 npm packages through the Mastra AI framework while the Icarus crew drained OAuth tokens from Klue. see: North Korea Poisons 140 npm Packages via Mastra AI; Klue OAuth Breach Widens as Icarus Claims It * [TREND] Palo Alto Networks' Unit 42 published mitigation guidance after large-scale credential attacks targeted security vendors' own internet-facing gateways. see: Unit 42 Warns of Large-Scale Credential Attacks * [UPDATE (new)] Iran's joint military command declared the Strait of Hormuz closed Saturday, citing Israeli strikes in Lebanon, a sharp escalation past Friday's reignited clashes. see: Iran Shuts the Strait of Hormuz * [TREND] France's Macron pressed wealthy democracies to coordinate rules on advanced AI and urged the United States to share its most capable models. see: Macron Presses Democracies to Coordinate AI Rules * [TREND] Skeptics pile onto the AI boom, as Zitron calls the Silicon Valley bubble near its end, Newport says knowledge work was already broken, and Morton reframes e-commerce. see: Premium: The Silicon Valley Bubble (Part 2); AI Isn't Breaking Work. It's Already Broken.; An Interview with Michael Morton About E-Commerce in the Age of AI SECURITY ---------------------------------------------------------------- 1. NORTH KOREA POISONS 140 NPM PACKAGES VIA MASTRA AI Nation-State Activity · [apt, supply-chain, npm] Latest developments: Microsoft attributed the Mastra AI supply-chain attack, which compromised more than 140 npm packages, to North Korea's Sapphire Sleet, the group also tracked as BlueNoroff. Sapphire Sleet, a financially motivated North Korean crew, slipped malicious code into over 140 packages on the npm registry tied to the Mastra AI framework, threatening any developer who pulled them. Teams should audit dependencies and strip the tainted versions. - BleepingComputer: https://www.bleepingcomputer.com/news/security/microsoft-links-mastra-ai-supply-chain-attack-to-north-korean-hackers/ 2. UNIT 42 WARNS OF LARGE-SCALE CREDENTIAL ATTACKS Vulnerabilities and Exploits · [credentials, patch] Latest developments: Palo Alto Networks' Unit 42 published a threat brief on mitigating large-scale credential attacks aimed at security vendors' internet-facing devices. Unit 42 detailed how attackers run sweeping credential campaigns against internet-facing security appliances, echoing the FortiBleed credential dump, and laid out defenses. Operators should rotate credentials, enforce multifactor authentication, and limit management exposure. - Unit 42 (Palo Alto): https://unit42.paloaltonetworks.com/large-scale-credential-attacks/ 3. NEW PRINZ EUGEN RANSOMWARE TARGETS RECENT FILES Ransomware and Cybercrime · [ransomware] Latest developments: A new ransomware operation named Prinz Eugen surfaced, encrypting recently modified files first and leaving no ransom note on infected systems. Prinz Eugen, a fresh ransomware strain, encrypts a victim's most recently modified files first to inflict fast damage and drops no ransom note on the host. Defenders should watch for rapid mass file changes and keep offline backups. - BleepingComputer: https://www.bleepingcomputer.com/news/security/new-prinz-eugen-ransomware-prioritizes-recent-files-for-encryption/ 4. MACRON PRESSES DEMOCRACIES TO COORDINATE AI RULES Policy and Regulation · [policy, ai] Latest developments: French President Emmanuel Macron urged the United States to share cutting-edge AI and pressed wealthy democracies to cooperate on regulating advanced systems. Emmanuel Macron, France's president, called on the United States and fellow wealthy democracies to share advanced AI systems and align their regulation, framing coordinated rules as a counter to fragmented oversight. - SecurityWeek: https://www.securityweek.com/french-president-urges-us-to-share-cutting-edge-ai-and-democracies-to-cooperate-on-regulation/ 5. KLUE OAUTH BREACH WIDENS AS ICARUS CLAIMS IT Data Breaches · [breach, supply-chain] Latest developments: Klue publicly confirmed attackers stole OAuth tokens connecting to customers' Salesforce environments, and a new extortion group calling itself Icarus claimed the attack as the victim list grew. Klue, a market-intelligence platform, lost OAuth tokens that link to customers' Salesforce tenants, exposing downstream companies to data theft. Affected firms should revoke Klue's tokens and hunt for unauthorized Salesforce access. - BleepingComputer: https://www.bleepingcomputer.com/news/security/klue-oauth-breach-victim-list-grows-as-icarus-hackers-claim-attack/ BUSINESS AND POLITICS ---------------------------------------------------------------- * Iran Shuts the Strait of Hormuz Latest developments: Iran's joint military command declared the Strait of Hormuz closed Saturday, citing Israeli strikes in Lebanon—a sharp escalation past Friday's reignited clashes, even as Washington and Tehran set their next round of talks for Sunday in Switzerland. Iran closed the Strait of Hormuz, the passage for much of the world's seaborne oil, after Israel and Hizbollah exchanged fire again and killed four Israeli soldiers and dozens of people in Lebanon, throwing President Trump's deal to end the war and reopen the waterway into doubt. - FT World: https://www.ft.com/content/fad77f6e-b1db-460a-a0c8-c2fd132932f5 - WSJ World News: https://www.wsj.com/world/middle-east/fighting-flares-again-in-lebanon-despite-israel-hezbollah-ceasefire-4d0ffae8 PITTSBURGH ---------------------------------------------------------------- Weather: This Afternoon: Chance Showers And Thunderstorms, high 78F. Tonight: Slight Chance Showers And Thunderstorms then Partly Cloudy, low 58F. Sunday: Mostly Sunny, high 82F. Business: * Most Pittsburgh-Area Towns Keep Shrinking Latest developments: A Post-Gazette analysis published Saturday found most municipalities across the Pittsburgh region continue to lose residents and argued the decline may be acceptable for the area's future. The Pittsburgh Post-Gazette reported that population losses span most communities in the Pittsburgh area, contending the shrinkage need not signal economic decline for the region. - Pittsburgh Post-Gazette: https://www.post-gazette.com/local/region/2026/06/20/pittsburgh-population-residents/stories/202606180053 * Jordan Brand Marketer Erin Patton Latest developments: TribLive's Offbeat Pittsburgh profiled Erin Patton, the Nike marketer who wrote the business plan launching the Jordan Brand, and his pivot from sports marketing to community service. Erin Patton, who authored the plan that built Nike's Jordan Brand into one of the most influential names in sports marketing, has turned toward serving others, TribLive recounted. - TribLive: https://triblive.com/local/offbeat-pittsburgh-from-air-jordan-to-a-higher-calling-erin-pattons-journey-to-serving-others/ Around town: * Frontline Dignity Mobilizes Against ICE Raids Latest developments: KDKA profiled how Frontline Dignity, a Pittsburgh immigration-rights group founded by Jaime Martinez, deploys legal observers and volunteers to respond to Immigration and Customs Enforcement raids across the region. Frontline Dignity, led by founder and executive director Jaime Martinez, sends legal observers and volunteers to respond to Immigration and Customs Enforcement raids in the Pittsburgh area, framing its work as neighbors protecting neighbors. - KDKA: https://www.cbsnews.com/pittsburgh/news/frontline-dignity-pittsburgh-ice-raids/ * Summer Arrives as Rain Returns Monday Latest developments: Forecasters now time a soaking rain for Sunday night through Monday and flagged Monday as an Impact Day, with summer arriving at the solstice at 4:24 a.m. Sunday, June 21. Summer officially begins at 4:24 a.m. Sunday, June 21, the longest day of the year; after a mild, sunny Father's Day weekend with highs near 80, a soaking rain moves into the Pittsburgh region Sunday night and runs through Monday, June 22, which KDKA and WTAE meteorologists flagged as an Impact Day. - WTAE: https://www.wtae.com/article/pittsburgh-mild-weekend-rain-returns-sunday-night/71642981 - KDKA: https://www.cbsnews.com/pittsburgh/news/saturday-fathers-day-weekend-pittsburgh-weather-forecast/ Events: * Mt. Pleasant Fire Department Street Fair Latest developments: The Mt. Pleasant Volunteer Fire Department's annual Street Fair runs Thursday through Saturday, June 20, in Mt. Pleasant, Westmoreland County. The Mt. Pleasant Volunteer Fire Department holds its annual Street Fair through Saturday, June 20, in Mt. Pleasant, Westmoreland County, featuring a parade, live music, and food. - TribLive: https://triblive.com/local/westmoreland/mt-pleasant-vfd-street-fair-features-food-fun-live-music/ SPORTS ---------------------------------------------------------------- Pirates (38-38) Fri Jun 19 · Pirates 3 · Rockies 4 · Final Fulford's pinch 2-run double in 8th lifts Rockies past Pirates 4-3, Freeland reaches 1,000 Ks https://plaintextsports.com/mlb/2026-06-19/pit-col Up Next · Pirates @ Rockies · Sat Jun 20, 9:10 PM https://plaintextsports.com/mlb/2026-06-20/pit-col Around the Teams: * Pirates Weigh Pitching Coach Bill Murphy Latest developments: The Post-Gazette's 'Off The Bat' examined whether new pitching coach Bill Murphy has improved the Pirates' bullpen and rotation this season. Post-Gazette beat writers assessed pitching coach Bill Murphy's influence on the Pittsburgh Pirates' staff in a June 20 'Off The Bat' installment, gauging his effect across the bullpen and rotation. - Post-Gazette Pirates: https://www.post-gazette.com/sports/pirates/2026/06/20/murphy-pirates-pitchers-staff-bullpen-rotation/stories/202606200030 * SNR Drive on Breakouts and Trade Talk Latest developments: On the June 19 SNR Drive, Matt Williamson and Wes Uhler reacted to ESPN writer Ben Solak's lists of 2025 breakouts and 'cliff falls,' ran through leaguewide trade candidates, and fielded a Steelers Q&A. The Steelers' SNR Drive paired Matt Williamson and Wes Uhler to break down Ben Solak's breakout and cliff-fall picks, survey current trade candidates around the NFL, and answer Steelers questions heading into the 2026 season. - Pittsburgh Steelers (YouTube): https://www.youtube.com/watch?v=oqUdOC8pj5Q Team USA: * U.S. Wins Group D, Tops Australia Latest developments: The United States secured the top seed in World Cup Group D on Friday, beating Australia 2-0 in Seattle and then watching Paraguay's 1-0 win over Turkey lock in first place. The U.S. men beat Australia 2-0 in Seattle without the injured Christian Pulisic, with Alex Freeman scoring a VAR-confirmed goal he called a full-circle family moment on the same field where his father, Antonio Freeman, once starred for the Green Bay Packers; Paraguay's later win over Turkey handed the Americans the Group D top seed into the round of 32. - ESPN Soccer: https://www.espn.com/soccer/story/_/id/49123488/us-clinches-group-d-10-man-paraguay-edges-turkey - ESPN Soccer: https://www.espn.com/soccer/story/_/id/49119070/christian-pulisic-sits-us-finds-way-vs-australia-reach-world-cup-knockout-rounds - ESPN Soccer: https://www.espn.com/soccer/story/_/id/49120341/alex-freeman-goal-seattle-full-circle-family-moment * Douglass Breaks 50 Freestyle World Record Latest developments: Kate Douglass swam the women's 50-meter freestyle in 23.59 seconds at the TYR Pro Swim Series, breaking the world record. American Olympic champion Kate Douglass set a women's 50-meter freestyle world record of 23.59 seconds at the TYR Pro Swim Series meet, eclipsing the 23.61 mark Sarah Sjostrom of Sweden set in July 2023. - ESPN Olympics: https://www.espn.com/olympics/swimming/story/_/id/49121983/kate-douglass-breaks-women-50-meter-freestyle-world-record READING ---------------------------------------------------------------- * Ed Zitron -- Premium: The Silicon Valley Bubble (Part 2) Following his scoop on OpenAI's audited financials—$34 billion in spending against $13.07 billion in revenue—Zitron argues the AI era is approaching its end, with OpenAI and Anthropic burning billions and lacking a path to profitability as they race toward public offerings. https://www.wheresyoured.at/premium-the-silicon-valley-bubble-part-2/ * Stratechery -- An Interview with Michael Morton About E-Commerce in the Age of AI Ben Thompson and Michael Morton discuss how AI reshapes e-commerce, covering unfalsifiable bear cases, distribution versus referral models, grocery, and autonomous vehicles. https://stratechery.com/2026/an-interview-with-michael-morton-about-e-commerce-in-the-age-of-ai/ * Cal Newport -- AI Isn't Breaking Work. It's Already Broken. Responding to a Financial Times interview with Rebecca Hinds of the Work AI Institute about a survey of 6,000 digital workers, Newport contends AI exposes dysfunction that already plagued knowledge work rather than creating it. https://calnewport.com/ai-isnt-breaking-work-its-already-broken/ MARKETS (weekly average, change vs prior week) ---------------------------------------------------------------- S&P 500 7,483.56 ▲ +1.6% Dow 51,586.04 ▲ +1.8% Nasdaq 26,297.74 ▲ +2.5% WTI crude 77.35 ▼ -12.5% EUR/USD 1.1528 ▼ -0.2% GBP/USD 1.3359 = -0.0% USD/JPY 160.50 ▲ +0.1% ================================================================ Generated 2026-06-20 12:06 EDT. Sources: 24 security feeds; 9 Pittsburgh feeds; 4 Pittsburgh arts and events feeds; 6 Pittsburgh sports beat and podcast feeds; 4 Team USA feeds; the Wall Street Journal, the Economist, and the Financial Times; and Ed Zitron, Stratechery, Cal Newport. Markets from Yahoo Finance, weather from the NWS, scores from ESPN. Summaries are AI-generated from the linked reporting; verify at the sources. ================================================================