================================================================ INFOSECFOLLOW -- security, markets, business, pittsburgh Wednesday, June 24, 2026 - 9:05 PM EDT ================================================================ Microsoft, Europol, and partners ran Operation Endgame to dismantle the StealC, Amadey, and SocGholish cybercrime services, recovering 27 million stolen credentials in a strike on the criminal supply chain. CONTENTS: Emerging Trends and Key Updates | Security | Business and Politics | Pittsburgh | Sports | Reading | Markets EMERGING TRENDS AND KEY UPDATES ---------------------------------------------------------------- * [TREND] Operation Endgame disrupted StealC, Amadey, and SocGholish infrastructure as courts jailed a DraftKings account hijacker and Treasury squeezed phishing-kit and scam-laundering operators. see: Operation Endgame Dismantles StealC, Amadey, and SocGholish; Courts and Treasury Squeeze Cybercrime Operators * [TREND] Attackers exploited a Cisco SD-WAN zero-day, CVE-2026-20245, for root access two months before disclosure while weaponizing fresh Unified CM flaws. see: Cisco SD-WAN and Unified CM Flaws Exploited * [TREND] Threat actors are turning trusted system features against defenders, chaining macOS behaviors to silently disable endpoint security agents without admin rights. see: macOS Flaws Let Users Silently Kill Security Agents * [UPDATE (new)] Bajaj Auto disclosed a ransomware incident while separate hackers looted more than 45 gigabytes from Madison Square Garden, including New York Rangers data. see: Ransomware Strikes Bajaj Auto as Hackers Loot Madison Square Garden * [UPDATE (new)] Researchers warned of surging cyber threats around the 2026 FIFA World Cup, after Bob DaHacker obtained the tournament's live broadcast controls. see: 2026 FIFA World Cup Draws a Surge in Cyber Threats SECURITY ---------------------------------------------------------------- 1. OPERATION ENDGAME DISMANTLES STEALC, AMADEY, AND SOCGHOLISH Ransomware and Cybercrime · [cybercrime, malware, takedown] Latest developments: Microsoft, Europol, Proofpoint, Bitdefender, Bitsight, and ESET widened the operation to three cybercrime-as-a-service families—adding SocGholish alongside StealC and Amadey—disrupted more than 300 command-and-control servers, and recovered 27 million stolen credentials, with Microsoft's Digital Crimes Unit framing the sweep as a strike on the full cybercrime supply chain. StealC steals credentials and Amadey loads follow-on payloads; together the families compromise devices, harvest data, and stage ransomware and fraud. Organizations should rotate exposed credentials and hunt for the malware on their networks. - Ars Technica Security: https://arstechnica.com/security/2026/06/one-two-punch-delivered-in-global-operation-disrupts-cybercrime-assembly-line/ - The Record: https://therecord.media/stealc-amadey-socgholish-malware-takedown-europol-microsoft - The Hacker News: https://thehackernews.com/2026/06/amadey-and-stealc-malware-network.html - Microsoft Security Blog: https://www.microsoft.com/en-us/security/blog/2026/06/24/stealc-and-amadey-breaking-down-infostealers-and-the-cybercrime-services-that-deliver-them/ 2. CISCO SD-WAN AND UNIFIED CM FLAWS EXPLOITED Vulnerabilities and Exploits · [zero-day, exploit, patch] Latest developments: Mandiant disclosed that attackers exploited CVE-2026-20245 in Cisco Catalyst SD-WAN as a zero-day two months before its disclosure, using rogue peering to reach devices and forge root-level accounts, while honeypots caught automated Tor sweeps dropping webshells through Unified Communications Manager flaw CVE-2026-20230 after a proof-of-concept exposed a file-write path to root. Cisco Catalyst SD-WAN and Unified Communications Manager run enterprise networking and voice systems; both flaws hand unauthenticated attackers code execution and root. Administrators should patch and inspect for rogue accounts and webshells. - BleepingComputer: https://www.bleepingcomputer.com/news/security/mandiant-reveals-how-cisco-sd-wan-zero-day-attacks-gained-root-access/ - Dark Reading: https://www.darkreading.com/cyberattacks-data-breaches/attackers-hit-cisco-sd-wan-flaw-2-months-before-disclosure - Help Net Security: https://www.helpnetsecurity.com/2026/06/24/cisco-unified-cm-flaw-exploited-to-drop-webshells-cve-2026-20230/ - The Hacker News: https://thehackernews.com/2026/06/cisco-unified-cm-flaw-exploited-after.html 3. COURTS AND TREASURY SQUEEZE CYBERCRIME OPERATORS Ransomware and Cybercrime · [cybercrime, policy] Latest developments: A U.S. court sentenced Nathan Austad, alias Snoopy, to 18 months and roughly $1.8 million for the November 2022 DraftKings account takeovers; Spain extradited an Algerian national who ran phishing-kit and fraud-tool marketplaces to face bank fraud charges; and the Justice Department seized a HuiOne Group cloud account as the Treasury sanctioned nine individuals and 26 entities tied to Cambodia's Prince Group for laundering scam proceeds. The actions span credential-stuffing theft, phishing-kit sales, and Cambodian scam laundering, applying sustained pressure on cybercrime operators and the networks that move their cash. - SecurityWeek: https://www.securityweek.com/third-draftkings-hacker-sentenced-to-18-months-in-prison/ - Help Net Security: https://www.helpnetsecurity.com/2026/06/24/algerian-cybercrime-marketplace-operator-extradited-to-us/ - The Hacker News: https://thehackernews.com/2026/06/doj-seizes-huione-cloud-account-tied-to.html 4. MACOS FLAWS LET USERS SILENTLY KILL SECURITY AGENTS Vulnerabilities and Exploits · [macos, exploit] Latest developments: SecurityWeek and Dark Reading detailed a chain of macOS weaknesses that lets a standard non-admin account disable endpoint security and integrated browser tools by abusing legitimate operating-system behavior, sidestepping administrator privileges and kernel exploits entirely. The technique blinds EDR and browser protections on Macs without elevated rights, leaving fleets that rely on those agents exposed. Defenders should monitor for security tooling that goes dark. - SecurityWeek: https://www.securityweek.com/macos-weaknesses-chained-to-silently-disable-endpoint-security-agents/ - Dark Reading: https://www.darkreading.com/application-security/apple-macos-security-gap-users-disable-security-tools 5. 2026 FIFA WORLD CUP DRAWS A SURGE IN CYBER THREATS Cybersecurity Operations · [social-engineering, fraud] Latest developments: Dark Reading flagged a surge in cybercrime, social engineering, and infrastructure threats targeting the tournament across the United States, Canada, and Mexico, while researcher Bob DaHacker revealed she had obtained the live broadcast controls that could have Rickrolled the entire event. The 2026 World Cup, which the United States, Canada, and Mexico co-host, presents a sprawling attack surface across venues, broadcast systems, and fans. Organizers and sponsors face phishing, fraud, and infrastructure risk. - Dark Reading: https://www.darkreading.com/cybersecurity-operations/2026-fifa-world-cup-faces-surge-cyber-threats - Graham Cluley: https://grahamcluley.com/smashing-security-podcast-473/ 6. RANSOMWARE STRIKES BAJAJ AUTO AS HACKERS LOOT MADISON SQUARE GARDEN Data Breaches · [ransomware, breach] Latest developments: Bajaj Auto, India's motorcycle giant, told regulators it discovered a ransomware incident Tuesday morning and moved to contain it, while separate hackers stole more than 45 gigabytes from Madison Square Garden, including data on the New York Knicks and the venue's talent. Both incidents hit marquee organizations—an Indian manufacturer and a New York entertainment landmark—through ransomware and data theft, threatening operational disruption and the exposure of sensitive records. - The Record: https://therecord.media/indian-auto-giant-bajaj-auto-hit-by-ransomware - 404 Media: https://www.404media.co/how-hackers-broke-into-madison-square-garden/ BUSINESS AND POLITICS ---------------------------------------------------------------- * Banks Pass Fed Stress Test, Lift Payouts Latest developments: The Federal Reserve released its 2026 stress-test results Wednesday, and several Wall Street lenders immediately raised dividends and buybacks. The Fed's annual test found the largest U.S. banks would absorb roughly $700 billion in losses in a severe economic crash yet stay above capital minimums; JPMorgan and Bank of America passed comfortably under a methodology the Fed eased by publishing test details in advance, and lenders responded by boosting investor payouts. - FT Markets: https://www.ft.com/content/7f33dfda-bc49-4645-8e71-422ba7cc4d17 - WSJ Markets: https://www.wsj.com/finance/regulation/big-banks-ace-an-easier-annual-stress-test-6f85cdcc?mod=rss_markets_main * Trump Slams NATO, Seeks $88 Billion From Congress Latest developments: A day after canceling the housing-bill signing, President Trump demanded 'loyalty' from NATO allies over the Iran war, and the White House formally asked Congress for $87.6 billion, mostly to replenish the Pentagon. After meeting Secretary-General Mark Rutte, Trump publicly singled out alliance members including the United Kingdom for failing to back the U.S. campaign against Iran, while his administration sent Congress an $87.6 billion supplemental request covering war costs, aid to U.S. farmers, and an Ebola response, landing amid a shouting match with Republican lawmakers. - FT World: https://www.ft.com/content/39883d15-863b-4563-8b31-7e65102301cd - FT World: https://www.ft.com/content/79af99ab-3d87-4b21-911d-021fb8aadd41 PITTSBURGH ---------------------------------------------------------------- Weather: Tonight: Mostly Clear, low 60F. Thursday: Partly Sunny then Scattered Showers And Thunderstorms, high 84F. Thursday Night: Scattered Showers And Thunderstorms then Chance Showers And Thunderstorms, low 63F. Business: * City Heading for $24 Million Deficit Latest developments: Pittsburgh budget officials told a Wednesday finance discussion the city could finish 2026 about $24 million in the red even after this year's tax increase and spending cuts. Pittsburgh raised taxes and trimmed spending heading into 2026, yet city finance officials now project a roughly $24 million year-end deficit, deepening the budget pressure facing City Council. - TribLive: https://triblive.com/local/pittsburgh-on-pace-to-end-year-with-24m-deficit-despite-tax-hike-cuts/ * Precision Care Pharmacy Closes in Greensburg Latest developments: Precision Care Pharmacy in Greensburg has sat shuttered for a week, leaving former customers without their prescriptions or an explanation. Precision Care Pharmacy, a Greensburg pharmacy in Westmoreland County, abruptly closed and has stayed dark for a week, frustrating customers who say the business never told them where to transfer their prescriptions. - WTAE: https://www.wtae.com/article/customers-furious-precision-care-pharmacy-westmoreland-county-closed/71717167 * Strip District Grocer Expands as Pizzeria Pauses Latest developments: Rockaway Pizzeria has temporarily closed, Mayfly Market is expanding into the Strip District, and Leon's Caribbean has left Allentown, TribLive reported Wednesday. Pittsburgh's food scene shifted this week: Rockaway Pizzeria shut its doors temporarily, the grocer Mayfly Market announced an expansion to the Strip District, and the longtime Leon's Caribbean departed the Allentown neighborhood. - TribLive: https://triblive.com/business/rockaway-pizzeria-temporarily-closes-mayfly-market-expands-leons-carribean-leaves-allentown/ Around town: * Realtor Flags 35 Deed-Fraud Cases Latest developments: Pittsburgh real estate agent Kelsey Green said she has documented 35 cases of deed fraud across Allegheny County, most in the city and concentrated on the South Side. Kelsey Green, a Pittsburgh real estate agent, says she uncovered 35 properties whose deeds were fraudulently transferred away from owners current on their mortgages, with the bulk of the cases in the South Side neighborhood. - KDKA: https://www.cbsnews.com/pittsburgh/news/pittsburgh-deed-fraud/ * Measles Spreads to Northumberland County Latest developments: Pennsylvania's measles count jumped and the outbreak reached Northumberland County, the Post-Gazette reported Wednesday. Pennsylvania recorded a rise in measles cases that has now spread to Northumberland County, widening a public-health concern across the state. - Pittsburgh Post-Gazette: https://www.post-gazette.com/news/health/2026/06/24/measles-pa-cases/stories/202606240070 * Turnpike Braces for America 250 Traffic Latest developments: The Pennsylvania Turnpike released its America 250 traffic forecast Wednesday, warning of heavier-than-usual volume around the nation's 250th-anniversary celebrations. The Pennsylvania Turnpike Commission projected unusually heavy traffic on the state's largest toll road as travelers move for the country's 250th-birthday events, and it laid out construction and travel updates for the holiday stretch. - TribLive: https://triblive.com/local/regional/pa-turnpike-releases-america-250-traffic-forecast-and-updates/ Events: * Warhol Bridge Turns 100; OpenStreetPGH Returns Latest developments: NEXTpittsburgh's June 25-28 guide leads with the Andy Warhol Bridge 100th Birthday Bash and OpenStreetPGH. Pittsburgh's weekend of Thursday through Sunday, June 25 to 28, features the Andy Warhol Bridge 100th Birthday Bash, marking a century of the downtown span, and OpenStreetPGH, which closes city streets to cars, among more than a dozen listed events. - NEXTpittsburgh Arts & Entertainment: https://nextpittsburgh.com/events/14-things-to-do-this-weekend-june-25-28-2026/ SPORTS ---------------------------------------------------------------- Pirates (39-40) Tue Jun 23 · Mariners 3 · Pirates 2 · Final Cole Young hits a two-run home run in the seventh to lift Mariners to a 3-2 victory over Pirates https://plaintextsports.com/mlb/2026-06-23/sea-pit Wed Jun 24 · Mariners 1 · Pirates 10 · Bot 8th (in progress at last update) https://plaintextsports.com/mlb/2026-06-24/sea-pit Up Next · Mariners @ Pirates · Thu Jun 25, 12:35 PM https://plaintextsports.com/mlb/2026-06-25/sea-pit Around the Teams: * Steelers Add Cornerback Jamel Dean Latest developments: Steelers.com's SNR Drive broke down the addition of cornerback Jamel Dean to Pittsburgh's defense, with Matt Williamson and Wes Uhler weighing his fit. Matt Williamson and Wes Uhler used the Steelers' SNR Drive to assess cornerback Jamel Dean's arrival, gauging how the veteran slots into the secondary for 2026. - Pittsburgh Steelers (YouTube): https://www.youtube.com/shorts/fdaQSSO9Z4s * Is the NFL's Priciest Defense Delivering? Latest developments: A Post-Gazette video asked whether the Steelers are getting enough production from the NFL's most expensive defense, anchored by T.J. Watt and Cam Heyward. Post-Gazette analysts questioned the return on the Steelers' league-high defensive payroll, which carries T.J. Watt and Cam Heyward, as the team heads toward the 2026 season. - Post-Gazette Steelers: https://www.post-gazette.com/sports/steelers/2026/06/24/nfl-news-rumors-tj-watt-cam-heyward/stories/202606240043 * Wietgrefe's Scoreless Streak in Altoona Latest developments: The Post-Gazette's MiLB Monday spotlighted Pirates prospect Connor Wietgrefe, who has strung together a scoreless streak at Double-A Altoona. Pirates pitching prospect Connor Wietgrefe is drawing notice for a scoreless streak with the Double-A Altoona Curve, the Post-Gazette reported in its minor-league roundup. - Post-Gazette Pirates: https://www.post-gazette.com/sports/pirates/2026/06/22/milb-prospects-wietgrefe-murf-gray-stafura-brazoban-hernandez/stories/202606210084 Team USA: * Pochettino Rests Yellow-Carded Starters vs Türkiye Latest developments: Mauricio Pochettino said Wednesday he will not start his four yellow-carded players against Türkiye on Thursday, June 25, to keep them eligible for the round of 32 on July 1. With the U.S. men already through to the knockouts as a World Cup co-host, manager Mauricio Pochettino will hold out the four players carrying yellow cards in Thursday's Group D finale against Türkiye, avoiding suspensions that would carry into the round-of-32 match July 1. - ESPN Soccer: https://www.espn.com/soccer/story/_/id/49169923/pochettino-risk-united-states-players-yellows * Milan Rejects NYCFC Bid for Pulisic Latest developments: AC Milan turned down a New York City FC approach for Christian Pulisic, telling sources the U.S. attacker is not for sale. AC Milan rejected an inquiry from New York City FC for forward Christian Pulisic during the World Cup, with the Italian club insisting the United States attacker is not available for transfer. - ESPN Soccer: https://www.espn.com/soccer/story/_/id/49169086/ac-milan-rejects-nycfc-approach-christian-pulisic * Balogun Among World Cup's Top Scorers Latest developments: Folarin Balogun has scored twice in two World Cup matches, ranking him among the tournament's leading scorers and drawing interest from Europe's biggest clubs. U.S. striker Folarin Balogun's two goals in two group games place him among the World Cup's top scorers and have prompted some of Europe's largest clubs to take notice. - ESPN Soccer: https://www.espn.com/soccer/story/_/id/49165598/usmnt-folarin-balogun-world-cup-europe-biggest-clubs-taking-notice READING ---------------------------------------------------------------- * Stratechery -- My Vibe Coding Adventure, The App and the Experience, Ten Takeaways Ben Thompson recounts vibe coding a working app he plans to use regularly, then draws ten takeaways about what the experience reveals about AI-assisted software development. https://stratechery.com/2026/my-vibe-coding-adventure-the-app-and-the-experience-ten-takeaways/ * Ed Zitron -- Cargo Culture Zitron argues much of the AI and tech industry practices a cargo cult, mimicking the rituals and rhetoric of successful companies without the underlying value or economics to justify the hype. https://www.wheresyoured.at/cargo-culture/ * Cal Newport -- Dear AI Companies: Stop the “Doom Trolling” Newport contends that AI firms publishing alarming warnings about the dangers of their own products amounts to a marketing tactic, as absurd as a carmaker warning its bestselling truck is too powerful to control. https://calnewport.com/dear-ai-companies-stop-the-doom-trolling/ MARKETS (weekly average, change vs prior week) ---------------------------------------------------------------- S&P 500 7,423.43 ▼ -0.1% Dow 51,657.14 ▲ +1.0% Nasdaq 25,953.97 ▼ -0.1% WTI crude 75.49 ▼ -12.5% EUR/USD 1.1447 ▼ -1.2% GBP/USD 1.3232 ▼ -1.4% USD/JPY 161.30 ▲ +0.7% ================================================================ Generated 2026-06-24 21:05 EDT. Sources: 24 security feeds; 9 Pittsburgh feeds; 4 Pittsburgh arts and events feeds; 6 Pittsburgh sports beat and podcast feeds; 4 Team USA feeds; the Wall Street Journal, the Economist, and the Financial Times; and Ed Zitron, Stratechery, Cal Newport. Markets from Yahoo Finance, weather from the NWS, scores from ESPN. Summaries are AI-generated from the linked reporting; verify at the sources. ================================================================