================================================================ INFOSECFOLLOW -- security, markets, business, pittsburgh Wednesday, June 24, 2026 - 12:06 PM EDT ================================================================ Microsoft and global police dismantled the StealC and Amadey infostealer networks as CISA flagged actively exploited Ubiquiti flaws and the Five Eyes warned that AI-driven cyber threats now arrive in months. CONTENTS: Emerging Trends and Key Updates | Security | Business and Politics | Pittsburgh | Sports | Reading | Markets EMERGING TRENDS AND KEY UPDATES ---------------------------------------------------------------- * [TREND] Coordinated takedowns landed in a single day as Operation Endgame dismantled StealC and Amadey, the DoJ seized a HuiOne account, and Scattered Spider members pleaded guilty to the TfL attack. see: Operation Endgame Dismantles StealC and Amadey; DoJ Seizes HuiOne Account as Treasury Sanctions Prince Group; Scattered Spider Members Plead Guilty to TfL Attack * [TREND] Attackers raced to weaponize fresh edge-gear flaws, hammering Ubiquiti UniFi OS and Lantronix servers while dropping webshells via a Cisco Unified CM file-write path to root. see: Ubiquiti and Lantronix Flaws Exploited in the Wild; Cisco Unified CM PoC Reveals File-Write Path to Root * [TREND] The Five Eyes alliance warned AI's cyber threat now arrives in months, with researchers describing agentic adversaries that find and exploit flaws at machine speed. see: Five Eyes Warns AI Threat Arrives in Months * [TREND] AI commentary sharpened as Ed Zitron decries cargo-cult hype, Cal Newport tells firms to stop doom trolling, and Ben Thompson draws takeaways from his vibe coding experiment. see: Cargo Culture; Dear AI Companies: Stop the "Doom Trolling"; My Vibe Coding Adventure, The App and the Experience, Ten Takeaways * [UPDATE (new)] Local business shake-ups piled up as Day Owl began liquidating, Giant Eagle moved to replace Schwebel bread, and Calamityware sold to new owners. see: Day Owl to Close; Giant Eagle Responds to Schwebel Closure; Calamityware Sold to New Owners * [UPDATE (new)] Around town, Nelly and Third Eye Blind headline a Commonwealth Concert this Saturday while the Andy Warhol Bridge marks its 100th birthday. see: Nelly and Third Eye Blind at Point State Park; Andy Warhol Bridge 100th Birthday Bash SECURITY ---------------------------------------------------------------- 1. OPERATION ENDGAME DISMANTLES STEALC AND AMADEY Ransomware and Cybercrime · [malware, takedown, cybercrime] Latest developments: Microsoft's Digital Crimes Unit, Europol, Proofpoint, and international partners disrupted hundreds of command-and-control servers backing the StealC and Amadey infostealers on June 24, 2026, the latest Operation Endgame strike after the SocGholish seizures. StealC and Amadey are infostealers built by separate criminal groups that operate in tandem to compromise devices and harvest credentials and sensitive data; the takedown suspended and blocked the domains forming their shared infrastructure. - Microsoft Security Blog: https://www.microsoft.com/en-us/security/blog/2026/06/24/stealc-and-amadey-breaking-down-infostealers-and-the-cybercrime-services-that-deliver-them/ - BleepingComputer: https://www.bleepingcomputer.com/news/security/amadey-stealc-malware-operations-disrupted-in-operation-endgame-action/ - SecurityWeek: https://www.securityweek.com/microsoft-and-allies-smash-shared-infrastructure-of-amadey-and-stealc-malware/ - Help Net Security: https://www.helpnetsecurity.com/2026/06/24/operation-endgame-stealc-amadey-malware-disrupted/ 2. CISCO UNIFIED CM POC REVEALS FILE-WRITE PATH TO ROOT Vulnerabilities and Exploits · [exploit, patch, rce] Latest developments: A public proof-of-concept exposed a file-write path to root for CVE-2026-20230, the CVSS 8.6 server-side request forgery flaw in Cisco Unified Communications Manager, as Defused honeypots logged automated Tor sweeps dropping webshells over the weekend. The flaw lets unauthenticated, remote attackers abuse the WebDialer component to achieve code execution on Unified CM and Session Management Edition servers; administrators should patch and block external access to the management interface. - The Hacker News: https://thehackernews.com/2026/06/cisco-unified-cm-flaw-exploited-after.html - Help Net Security: https://www.helpnetsecurity.com/2026/06/24/cisco-unified-cm-flaw-exploited-to-drop-webshells-cve-2026-20230/ - BleepingComputer: https://www.bleepingcomputer.com/news/security/cisco-unified-cm-sme-flaw-cve-2026-20230-now-exploited-in-attacks/ 3. FIVE EYES WARNS AI THREAT ARRIVES IN MONTHS AI Security · [ai, policy, apt] Latest developments: The Five Eyes intelligence alliance issued a joint alert warning that AI's threat to cybersecurity has compressed from years to months, as separate analyses described agentic adversaries that find, exploit, and act at machine speed. The alert frames autonomous AI agents as a near-term offensive force capable of collapsing the researcher-to-exploit timeline; defenders are urged to assume faster compromise and adapt detection accordingly. - The Record: https://therecord.media/five-eyes-alert-artificial-intelligence - The Hacker News: https://thehackernews.com/2026/06/dawn-of-apex-agentic-adversary.html - SecurityWeek: https://www.securityweek.com/agentic-ai-security-wrong-context-wrong-decisions-at-machine-speed/ 4. DOJ SEIZES HUIONE ACCOUNT AS TREASURY SANCTIONS PRINCE GROUP Ransomware and Cybercrime · [fraud, sanctions, money-laundering] Latest developments: The Justice Department seized a cloud computing account used by subsidiaries of Cambodia-based HuiOne Group on June 23, 2026, while the Treasury sanctioned nine individuals and 26 entities tied to the Prince Group over cyber-scam money laundering. HuiOne subsidiaries allegedly moved proceeds of online scam operations after the conglomerate was severed from the U.S. financial system last year; the dual action targets the laundering rails behind Southeast Asian fraud compounds. - The Hacker News: https://thehackernews.com/2026/06/doj-seizes-huione-cloud-account-tied-to.html - The Record: https://therecord.media/feds-seize-alleged-cyber-scam-infrastructure-southeast-asia 5. UBIQUITI AND LANTRONIX FLAWS EXPLOITED IN THE WILD Vulnerabilities and Exploits · [zero-day, patch, exploit] Latest developments: CISA warned on June 24, 2026, that attackers are actively exploiting maximum-severity flaws in Ubiquiti UniFi OS and Lantronix serial-to-ethernet servers, letting remote, unauthenticated attackers change system settings, reach underlying accounts, and inject commands. The exploited devices anchor enterprise and industrial networks; operators of UniFi OS gateways and Lantronix serial-to-ethernet servers should apply vendor patches and restrict internet exposure immediately. - BleepingComputer: https://www.bleepingcomputer.com/news/security/cisa-warns-of-max-severity-ubiquiti-flaws-exploited-in-attacks/ - SecurityWeek: https://www.securityweek.com/critical-ubiquiti-vulnerabilities-in-attackers-crosshairs/ 6. SCATTERED SPIDER MEMBERS PLEAD GUILTY TO TFL ATTACK Ransomware and Cybercrime · [cybercrime, arrest, extortion] Latest developments: Two key members of Scattered Spider pleaded guilty in the United Kingdom on the first day of an expected six-week trial to the August 2024 cyberattack that crippled Transport for London. The duo helped run the prolific extortion crew Scattered Spider, whose social-engineering intrusions have hit transport, retail, and casino targets; the pleas mark a rare courtroom resolution against the group. - Krebs on Security: https://krebsonsecurity.com/2026/06/scattered-spider-hackers-plead-guilty-on-day-1-of-trial/ BUSINESS AND POLITICS ---------------------------------------------------------------- * Venezuela's Sovereign Debt Restructuring Latest developments: Venezuela moved to begin what the Financial Times calls the largest sovereign-debt restructuring ever attempted. Caracas will open negotiations on its defaulted government bonds, a workout the Financial Times ranks as the biggest sovereign restructuring in history and a precedent-setting test for emerging-market creditors worldwide. - FT World: https://www.ft.com/content/f1f74404-2663-486b-a0bb-1351d67d8c17 * AI-Driven Tech Selloff Steadies Latest developments: After two days of declines, technology shares steadied Wednesday even as investors kept their focus on whether AI spending can sustain itself. A two-day slide in chipmakers and other AI-exposed stocks paused as U.S. tech futures edged higher, leaving the Nasdaq's bubble fears unresolved for investors weighing the sector's heavy capital spending. - WSJ Markets: https://www.wsj.com/finance/global-ai-selloff-steadies-as-u-s-tech-futures-edge-higher-ab06b1c7?mod=rss_markets_main * Oil Falls as Ships Recross Hormuz Latest developments: Oil prices extended their slide Wednesday as more vessels transited the Strait of Hormuz, unwinding the supply fears the strait's closure had stoked. Crude prices fell as shipping resumed through the Strait of Hormuz, easing a disruption that had stranded roughly 1,200 cargo ships, while U.S. commercial crude inventories dropped 6.1 million barrels for a ninth straight weekly decline. - WSJ Markets: https://www.wsj.com/finance/commodities-futures/oil-falls-on-signs-of-more-easing-of-supply-disruptions-in-mideast-8b2de17c?mod=rss_markets_main - WSJ US Business: https://www.wsj.com/business/energy-oil/u-s-crude-oil-inventories-fall-product-stocks-rise-10d9bae1?mod=pls_whats_news_us_business_f PITTSBURGH ---------------------------------------------------------------- Weather: This Afternoon: Sunny, high 81F. Tonight: Partly Cloudy, low 59F. Thursday: Partly Sunny then Chance Showers And Thunderstorms, high 84F. Business: * Calamityware Sold to New Owners Latest developments: Don Moyer agreed to sell Calamityware, the Mount Washington giftware company he founded. Calamityware, the e-commerce giftware brand that grew from Mount Washington designer Don Moyer's offbeat plates and prints into a self-sustaining business, will change hands; WPXI noted the buyers 'might be Ravens fans.' - WPXI: https://www.wpxi.com/news/local/mt-washington-based-calamityware-sells-new-owners-who-might-be-ravens-fans/BKYUD55UN5D57OVUYB5FHSV3YI/ * Day Owl to Close Latest developments: Day Owl, the Pittsburgh maker of recycled-bottle bags, began selling off inventory and announced it will close. Day Owl, which built sustainable backpacks and bags from fabric spun out of discarded plastic bottles, is liquidating its stock and shutting down. - WPXI: https://www.wpxi.com/news/local/pittsburghs-day-owl-selling-off-inventory-plans-close/WU2F5QPWUNCALMMBUZSXPN7F3M/ * Giant Eagle Responds to Schwebel Closure Latest developments: Giant Eagle said it was 'saddened' by Schwebel Baking Company's wind-down and will add bread options to replace the brand on its shelves. Schwebel Baking Company is winding down after more than 120 years; Giant Eagle, the region's dominant grocer, plans to introduce more bread options as the brand disappears from western Pennsylvania aisles. - WPXI: https://www.wpxi.com/news/local/giant-eagle-responds-schwebel-baking-company-closing-looking-introduce-more-bread-options/HN3JVF24GNFWTK2DNIKRJT67ZQ/ Around town: * United Way Commits $21 Million Latest developments: United Way of Southwestern Pennsylvania announced June 22 it will invest $21 million in human-services agencies over three years. United Way of Southwestern Pennsylvania will direct $21 million over the next three years to human-services agencies across the region. - WPXI: https://www.wpxi.com/news/local/united-way-southwestern-pennsylvania-invest-21m-human-services/6OEA2VDNZFCSPCFT5I6AOH5ENU/ * Trump to Return for McCormick Summit Latest developments: The Post-Gazette reported President Trump will return to Pennsylvania for a second McCormick innovation summit. President Trump plans to come back to Pennsylvania for the second innovation summit convened by Senator Dave McCormick, this one centered on defense technology. - Pittsburgh Post-Gazette: https://www.post-gazette.com/business/tech-news/2026/06/24/trump-mccormick-defense-innovation-summit/stories/202606240042 Events: * Nelly and Third Eye Blind at Point State Park Latest developments: Pittsburgh and America250PA announced Nelly and Third Eye Blind will headline the Commonwealth Concert at Point State Park on Saturday, June 27. The America250PA Commonwealth Concert Series brings Nelly and Third Eye Blind, plus Pittsburgh native Frzy and host Charlie Batch, the former Steelers quarterback, to Point State Park on Saturday, June 27, as part of the nation's 250th-anniversary celebration. - KDKA: https://www.cbsnews.com/pittsburgh/news/nelly-third-eye-blind-point-state-park-america250-pittsburgh-concert/ * Andy Warhol Bridge 100th Birthday Bash Latest developments: NEXTpittsburgh's June 25-28 guide highlights the Andy Warhol Bridge 100th Birthday Bash and OpenStreetPGH. Pittsburgh's weekend of June 25-28 features the Andy Warhol Bridge 100th Birthday Bash, the OpenStreetPGH open-streets event, and the Pittsburgh Dance Workshop and Choreography Festival at the Charity Randall Theatre, Thursday through Saturday at various times. - NEXTpittsburgh Events: https://nextpittsburgh.com/events/14-things-to-do-this-weekend-june-25-28-2026/ * Pittsburgh Symphony Closes Season Latest developments: The Pittsburgh Symphony Orchestra closed its classical season with Aaron Copland's 'Appalachian Spring' amid rising attendance. The Pittsburgh Symphony Orchestra ended its classical season with a program anchored by Aaron Copland's 'Appalachian Spring,' a year the Post-Gazette reports drew rising attendance at Heinz Hall downtown. - Post-Gazette Arts & Entertainment: https://www.post-gazette.com/ae/music/2026/06/24/pittsburgh-symphony-orchestra-classical-season/stories/202606240010 * Pickle Silent Disco at North Shore Latest developments: The Plaza at North Shore will host 'Pickle! At the Silent Disco' on Saturday, July 18, during Picklesburgh. The Plaza at North Shore plans 'Pickle! At the Silent Disco,' a pickle-themed silent-disco event on Saturday, July 18, timed to coincide with the Picklesburgh festival. - WPXI: https://www.wpxi.com/news/local/plaza-north-shore-plans-pickle-themed-silent-disco-during-picklesburgh/X273SJMPRBFY5B5L2VJFKUOKDY/ SPORTS ---------------------------------------------------------------- Pirates (39-40) Tue Jun 23 · Mariners 3 · Pirates 2 · Final Cole Young hits a two-run home run in the seventh to lift Mariners to a 3-2 victory over Pirates https://plaintextsports.com/mlb/2026-06-23/sea-pit Up Next · Mariners @ Pirates · Wed Jun 24, 6:40 PM https://plaintextsports.com/mlb/2026-06-24/sea-pit Around the Teams: * Steelers Add Jamel Dean Latest developments: On SNR Drive, Matt Williamson and Wes Uhler broke down the Steelers' addition of cornerback Jamel Dean to their defense. The Steelers' team channel posted SNR Drive hosts Matt Williamson and Wes Uhler discussing what cornerback Jamel Dean brings to Pittsburgh's secondary. - Pittsburgh Steelers (YouTube): https://www.youtube.com/shorts/fdaQSSO9Z4s * Dulac Fields Steelers Questions Latest developments: Gerry Dulac's June 24 chat covered Joey Porter Jr., Aaron Rodgers, Mike McCarthy, Will Howard, and rookie quarterback Drew Allar. In his June 24 transcript, Post-Gazette beat writer Gerry Dulac answered reader questions on cornerback Joey Porter Jr., quarterback Aaron Rodgers, Mike McCarthy, Will Howard, and rookie Drew Allar. - Post-Gazette Steelers: https://www.post-gazette.com/sports/steelers/2026/06/24/nfl-news-joey-porter-rodgers-mccarthy-will-howard-allar/stories/202606240035 * Value of Steelers' Costly Defense Latest developments: A Post-Gazette video asked whether the Steelers get enough from the NFL's most expensive defense, anchored by T.J. Watt and Cam Heyward. A Post-Gazette video weighed whether the Steelers extract enough production from the NFL's most expensive defense, built around edge rusher T.J. Watt and defensive lineman Cam Heyward. - Post-Gazette Steelers: https://www.post-gazette.com/sports/steelers/2026/06/24/nfl-news-rumors-tj-watt-cam-heyward/stories/202606240043 Team USA: * Balogun's World Cup Breakout Latest developments: Folarin Balogun scored in both of the USMNT's first two World Cup matches, placing him among the tournament's leading scorers and drawing interest from top European clubs. USMNT striker Folarin Balogun, with two goals in two games, ranks among the leading scorers at the World Cup the United States co-hosts, and ESPN reports Europe's biggest clubs are taking notice. - ESPN Soccer: https://www.espn.com/soccer/story/_/id/49165598/usmnt-folarin-balogun-world-cup-europe-biggest-clubs-taking-notice * Pochettino on USMNT's Turnaround Latest developments: Coach Mauricio Pochettino said he felt 'naïve' about the USMNT's complacency when he arrived in 2024, calling it a 'big punch' that drove his overhaul. USMNT coach Mauricio Pochettino said his 2024 arrival exposed a complacent culture he called a 'big punch,' and credited his reset for the team's dominant start as a 2026 World Cup co-host. - ESPN Soccer: https://www.espn.com/soccer/story/_/id/49162699/pochettino-admits-naive-usmnt-culture-2024-arrival-world-cup-2026 READING ---------------------------------------------------------------- * Stratechery -- My Vibe Coding Adventure, The App and the Experience, Ten Takeaways Ben Thompson recounts building an app he plans to use regularly through AI-assisted 'vibe coding,' then draws ten takeaways about what the experience reveals about software development. https://stratechery.com/2026/my-vibe-coding-adventure-the-app-and-the-experience-ten-takeaways/ * Ed Zitron -- Cargo Culture Ed Zitron argues the tech and AI industry increasingly imitates the surface rituals of past successes without grasping what actually made them work, a cargo-cult posture that sustains the hype. https://www.wheresyoured.at/cargo-culture/ * Cal Newport -- Dear AI Companies: Stop the "Doom Trolling" Cal Newport argues AI companies undercut their own credibility by publishing alarmist warnings about their products' dangers—as if Ford warned the F-150 was terrifyingly powerful—and should quit the 'doom trolling.' https://calnewport.com/dear-ai-companies-stop-the-doom-trolling/ MARKETS (weekly average, change vs prior week) ---------------------------------------------------------------- S&P 500 7,454.06 ▲ +0.6% Dow 51,687.29 ▲ +1.5% Nasdaq 26,133.91 ▲ +1.1% WTI crude 75.49 ▼ -12.5% EUR/USD 1.1493 ▼ -0.7% GBP/USD 1.3277 ▼ -0.9% USD/JPY 161.06 ▲ +0.5% ================================================================ Generated 2026-06-24 12:06 EDT. Sources: 24 security feeds; 9 Pittsburgh feeds; 4 Pittsburgh arts and events feeds; 6 Pittsburgh sports beat and podcast feeds; 4 Team USA feeds; the Wall Street Journal, the Economist, and the Financial Times; and Ed Zitron, Stratechery, Cal Newport. Markets from Yahoo Finance, weather from the NWS, scores from ESPN. Summaries are AI-generated from the linked reporting; verify at the sources. ================================================================