daily plain-text briefing: security, markets, business, and pittsburgh
Microsoft ties a 140-package npm supply-chain attack on the Mastra AI framework to North Korea's Sapphire Sleet, as the FortiBleed credential dump and a fresh Klue OAuth breach keep enterprise identity under siege.
Latest developments: Palo Alto Networks' Unit 42 published a threat brief guiding defenders through mitigating the large-scale credential attacks behind FortiBleed, which has now compromised 86,644 internet-facing FortiGate firewalls and VPN gateways.
FortiBleed, pinned on Russian-speaking actors, exposed credentials on roughly half the internet-reachable Fortinet appliances; CISA and Unit 42 urge operators to rotate credentials and harden devices.
Sources: Unit 42 (Palo Alto) · The Hacker News · SecurityWeek · ↑ top
Latest developments: Microsoft attributed a supply-chain attack that compromised more than 140 npm packages tied to the Mastra AI framework to North Korea's Sapphire Sleet, the group also tracked as BlueNoroff.
Sapphire Sleet, a North Korean state-aligned group, poisoned npm packages linked to the Mastra AI agent framework to plant malware on developers' machines; teams building on Mastra should audit dependencies and rotate any exposed secrets.
Sources: BleepingComputer · ↑ top
Latest developments: A new ransomware operation named Prinz Eugen surfaced that prioritizes recently modified files for encryption and leaves no ransom note on the infected system.
Prinz Eugen targets fresh, high-value files first and drops no note, complicating victim identification and recovery; defenders should watch for rapid encryption of recently edited documents and maintain offline backups.
Sources: BleepingComputer · ↑ top
Latest developments: French President Emmanuel Macron urged the world's wealthy democracies to jointly regulate advanced AI systems and pressed the United States to share its cutting-edge models.
Macron's call frames advanced AI governance as a coordination problem among allied democracies, arriving amid Washington's export controls on frontier models; it signals pressure for shared rules over unilateral restriction.
Sources: SecurityWeek · ↑ top
Latest developments: A new extortion group calling itself Icarus publicly claimed the Klue breach as the victim list grew, with Klue confirming attackers stole OAuth tokens that linked to customers' Salesforce environments and Salesforce disabling the Klue Battlecards integration.
Market-intelligence platform Klue lost OAuth tokens that let attackers pull data from connected Salesforce instances at customers including Huntress and Recorded Future; affected firms should revoke Klue tokens and review Salesforce access logs.
Sources: BleepingComputer · Help Net Security · The Hacker News · SecurityWeek · ↑ top
Latest developments: SecurityWeek detailed CryptoBandits, malware that doubles as a backdoor and routes traffic through a local SOCKS5 proxy over Tor, blending data theft with remote code execution.
CryptoBandits combines an information stealer and a remote-access backdoor, hiding its command channel behind Tor; organizations should flag unexpected local SOCKS5 proxies and Tor traffic from endpoints.
Sources: SecurityWeek · ↑ top
Latest developments: Vice President JD Vance left Saturday for the U.S.-Iran talks now set for Sunday in Switzerland, while Washington and Qatar worked on a plan to free billions in frozen Iranian funds for humanitarian spending and Tehran moved to sell oil on the open market for the first time since 2018.
Iran's joint military command declared the Strait of Hormuz closed again over Israeli strikes on Hezbollah in Lebanon, days after the interim U.S.-Iran accord reopened the waterway; Israel and Hezbollah then agreed to a renewed ceasefire after four Israeli soldiers and dozens of Lebanese died, leaving the deal that governs Gulf oil flows under early strain.
Sources: WSJ World News · WSJ World News · WSJ US Business · ↑ top
Tonight: Mostly Clear, low 58F.
Sunday: Mostly Sunny, high 81F.
Sunday Night: Slight Chance Rain Showers then Slight Chance Showers And Thunderstorms, low 62F.
Latest developments: The Sports & Exhibition Authority of Pittsburgh and Allegheny County authorized a six-month agreement worth up to $10,500 with Wild Goose Chase LLC to clear geese from North Shore Riverfront Park.
Wild Goose Chase LLC, known as the Geese Police of Western Pennsylvania, will run its trained dogs along North Shore Riverfront Park to deter the geese that foul the riverfront grounds across from downtown Pittsburgh.
Latest developments: The historically Black Lincoln Beach section of Upper Burrell held its first Juneteenth celebration Saturday, June 20, organized by the Rev. Vincent Ponder of Community Baptist Church.
Lincoln Beach, a longtime Black community in Upper Burrell in the Alle-Kiski Valley, marked Juneteenth for the first time with a gathering led by Community Baptist Church's pastor, the Rev. Vincent Ponder.
Latest developments: Saturday evening's storms fizzled, but WTAE meteorologists held Monday, June 22, as an Impact Day for a soaking rain across western Pennsylvania.
A round of heavy, prolonged rain will move through the Pittsburgh region Monday, June 22, after only isolated storms passed over the weekend.
Pirates (38-38)
Fri Jun 19 · Pirates 3 · Rockies 4 · Final
Fulford's pinch 2-run double in 8th lifts Rockies past Pirates 4-3, Freeland reaches 1,000 Ks
Up Next · Pirates @ Rockies · Sat Jun 20, 9:10 PM
Latest developments: A Post-Gazette "Off The Bat" column weighed whether Pirates pitching coach Bill Murphy has improved the staff across both the rotation and the bullpen.
The Pittsburgh Pirates hired Bill Murphy to oversee their pitchers, and the Post-Gazette assessed the early returns on the rotation and a bullpen the team has worked to repair.
Sources: Post-Gazette Pirates · ↑ top
Latest developments: On the June 19 SNR Drive, Matt Williamson and Wes Uhler broke down ESPN writer Ben Solak's picks for 2025 breakouts and "cliff falls," ran through leaguewide trade candidates, and fielded Steelers questions heading into 2026.
The Pittsburgh Steelers' SNR Drive podcast looked ahead to the 2026 season, debating which players around the NFL are poised to rise or fall and which could be moved before the season.
Sources: Pittsburgh Steelers (YouTube) · ↑ top
Latest developments: In the newest "Forging Steel," rookie quarterback Drew Allar reflected on the moment the Steelers called to draft him.
The Pittsburgh Steelers drafted Penn State quarterback Drew Allar in 2026, and the team's "Forging Steel" series captured his reaction to getting the call.
Sources: Pittsburgh Steelers (YouTube) · ↑ top
Latest developments: Paraguay's 1-0 win over Turkey on Saturday, June 20, secured the United States the top spot in Group D and a place in the round of 32.
The U.S. men's national team, which beat Australia 2-0 in Seattle without the calf-injured Christian Pulisic, clinched first in its group at the 2026 World Cup it co-hosts; Paraguay held on a man down to eliminate a Turkey side that piled up 32 shots without scoring.
Sources: ESPN Soccer · ESPN Soccer · ↑ top
Latest developments: Kate Douglass swam the women's 50-meter freestyle in 23.59 seconds at the TYR Pro Swim Series, bettering the 23.61 mark Sweden's Sarah Sjostrom set in July 2023.
The American Olympic champion lowered the world record in swimming's shortest sprint, a marker of form for the U.S. ahead of the next Olympic cycle.
Sources: ESPN Olympics · ↑ top
S&P 500 7,483.56 ▲ +1.6% Dow 51,586.04 ▲ +1.8% Nasdaq 26,297.74 ▲ +2.5% WTI crude 77.35 ▼ -12.5% EUR/USD 1.1528 ▼ -0.2% GBP/USD 1.3359 = -0.0% USD/JPY 160.76 ▲ +0.3%