daily plain-text briefing: security, markets, business, and pittsburgh
A stealthy new Mistic backdoor and weaponized browser extensions feed Europe's resurgent ransomware gangs while researchers warn that prompt injection has turned AI agents into the next attack surface.
Latest developments: A new paper flagged by Bruce Schneier showed the role tags LLMs rely on for security never survive into the model's internal representations, leaving role confusion exploitable, as SecurityWeek mapped how attackers poison the data autonomous agents trust and OpenClaw pulled five malicious ClawHub skills carrying infostealers.
Prompt injection and cognitive-state poisoning turn trusted data sources and agent skill marketplaces into traps; teams deploying AI agents should treat every external input as hostile and vet marketplace skills before installing them.
Sources: Schneier on Security · SecurityWeek · Dark Reading · ↑ top
Latest developments: Symantec and Carbon Black's Threat Hunter team detailed Mistic, a stealthy backdoor also tracked as MLTBackdoor that the access broker Woodgnat, also called KongTuke, has pushed since April 2026 through ClickFix and ModeloRAT campaigns.
Mistic hits insurance, education, IT, and professional-services firms, and Woodgnat, a financially motivated initial-access broker active since May 2024, has handed footholds to the Qilin, Interlock, Rhysida, Akira, and 8Base ransomware crews; defenders should hunt ClickFix lures and the MLTBackdoor implant.
Sources: Help Net Security · The Hacker News · ↑ top
Latest developments: BleepingComputer documented Edgecution, a malicious Microsoft Edge extension that abused Native Messaging to escape the browser sandbox and drop a Python backdoor in a ransomware attack, while Island found Adblock for YouTube, an extension with more than 10 million installs and a Featured badge on the Chrome Web Store, carrying dormant code to run arbitrary JavaScript.
Both cases turn trusted add-ons into malware delivery channels reaching millions of users; administrators should inventory installed extensions, strip unneeded ones, and watch for Native Messaging abuse and hidden script-injection capability.
Sources: BleepingComputer · The Hacker News · ↑ top
Latest developments: A cyberattack snarled operations at a dairy producer in Russia's republic of Bashkortostan, the latest of the country's milk processors to suffer one, and on the same day a suspected cyberattack disrupted app services at Ukraine's state postal operator.
Unidentified attackers keep striking food and logistics targets on both sides of the war; the Russian producer lost operational systems while Ukraine's postal service warned customers of degraded app services as it investigates.
Sources: The Record · The Record · ↑ top
Latest developments: Dark Reading reported that ransomware crews, after a global lull, have swung toward European Union organizations and their suppliers, turning the region into the operators' richest new hunting ground.
Gangs increasingly target EU enterprises and the smaller suppliers feeding their supply chains; European firms should tighten third-party risk programs, segmentation, and offline backups.
Sources: Dark Reading · ↑ top
Latest developments: NIST opened an updated draft of its IoT security guidance for public review, defining product cybersecurity requirements for devices that connect to federal agency networks.
The guidance would set baseline security expectations for IoT products entering U.S. government environments; vendors and agencies can file comments during the review window.
Sources: SecurityWeek · ↑ top
Latest developments: May personal-consumption-expenditures inflation printed above expectations at a three-year high, and the dollar climbed to 161.94 yen—its strongest since July 2024 and near a 40-year peak—putting Tokyo on intervention watch.
The Federal Reserve's preferred inflation gauge jumped to a three-year high in May, reinforcing trader bets that the Fed's next move is a rate hike, while the dollar's surge toward a four-decade high against the yen has markets braced for Japanese intervention.
Sources: FT Markets · WSJ Markets · ↑ top
This Afternoon: Chance Showers And Thunderstorms, high 82F.
Tonight: Showers And Thunderstorms Likely, low 64F.
Friday: Mostly Cloudy then Slight Chance Showers And Thunderstorms, high 82F.
Latest developments: Pittsburgh City Council voted Wednesday to enact the skill-games tax that Councilman Anthony Coghill had floated days earlier.
Pittsburgh City Council passed a tax on skill games, the slot-like machines now taxable after the Pennsylvania Supreme Court's June ruling, aiming to capture revenue inside the city before Harrisburg sets statewide rules.
Latest developments: The Pennsylvania Film Office awarded $117 million in film-production tax credits to a record 59 projects, film commissioner Gino Anthony Pesi announced.
The Pennsylvania Film Office distributed $117 million through its Film Production Tax Credit Program to 59 projects, the most ever, which it estimates will inject $1.1 billion into the economy across 35 counties as independent-filmmaker demand surges.
Latest developments: WPXI profiled Hellbender Inc., the Harmar Township firm that manufactures camera systems for AI and robotics, led by co-founder and chief executive Brian Beyer.
Brian Beyer, a Marine Corps veteran, co-founded and runs Hellbender Inc. in Harmar Township, where the company manufactures the camera systems—what Beyer calls the 'eyes and brains'—for artificial-intelligence and robotics applications.
Latest developments: PennDOT tested the system Thursday, June 25, that will slide the new 22-million-pound Commercial Street Bridge into place, closing the street and the Nine Mile Run trail beneath Interstate 376 ahead of a full Parkway East closure on July 10.
PennDOT is replacing the Commercial Street Bridge where it crosses beneath the Parkway East near Frick Park, and crews tested the slide mechanism for the new span before the full Interstate 376 closure scheduled for July 10.
Sources: Pittsburgh Post-Gazette · KDKA · ↑ top
Latest developments: KDKA-TV declared Thursday, June 25, a First Alert Weather Day, with scattered storms and a low tornado risk arriving around 2 p.m. as a cold front stalls over the region.
A cold front stalling over western Pennsylvania set off scattered afternoon and evening thunderstorms Thursday, June 25, carrying high winds and a small tornado threat, the Storm Prediction Center's lowest non-zero risk level.
Latest developments: Walnut Capital Partners will bring two developments, on the South Side and in the East End, before the Pittsburgh Planning Commission at its meeting Tuesday.
Walnut Capital Partners, the developer behind Bakery Square, is set to present plans for projects on Pittsburgh's South Side and in the East End to the city Planning Commission next Tuesday.
Latest developments: The city and America250PA released road-closure, parking, and safety plans for the free, ticketed Commonwealth Concert Series at Point State Park, headlined by Nelly and Third Eye Blind.
Nelly and Third Eye Blind headline the free, ticketed Commonwealth Concert Series staged by America250PA at Point State Park downtown this weekend, with Pittsburgh rapper Frzy opening and the city detailing road closures and parking around the riverfront site.
Latest developments: The Pittsburgh Dance Workshop and Choreography Festival runs Thursday through Saturday, June 25-27, at the Charity Randall Theatre in Oakland.
The Pittsburgh Dance Workshop and Choreography Festival presents original works by emerging and established choreographers from the region and beyond at the Charity Randall Theatre in Oakland, with performances at various times Thursday through Saturday, June 25-27.
Sources: NEXTpittsburgh Events · ↑ top
Latest developments: The Pittsburgh Symphony Orchestra closed its classical season with Aaron Copland's 'Appalachian Spring' amid rising attendance, and its summer movie-music series continues at Heinz Hall.
The Pittsburgh Symphony Orchestra ended its classical season at Heinz Hall downtown with a program built around Copland's 'Appalachian Spring,' which a Post-Gazette analysis tied to rising attendance, as the orchestra rolls into a summer series of film-score concerts.
Sources: Post-Gazette Arts & Entertainment · ↑ top
Pirates (40-40)
Wed Jun 24 · Mariners 1 · Pirates 11 · Final
Ashcraft, Rodriguez, O'Hearn help Pirates rout AL West-leading Mariners 11-1
Up Next · Mariners @ Pirates · Thu Jun 25, 12:35 PM
Latest developments: The Post-Gazette reported first baseman Spencer Horwitz went on the injured list, the latest blow to a banged-up Pirates roster still tracking Konnor Griffin's rehab.
The Pittsburgh Pirates placed first baseman Spencer Horwitz on the injured list, and the Post-Gazette weighed how the club, near .500 at the season's midpoint, fills the gaps as prospect Konnor Griffin works back from injury at Double-A Altoona.
Sources: Post-Gazette Pirates · ↑ top
Latest developments: Post-Gazette columnist Noah Hiles argued the 40-40 Pirates have not earned the right to be buyers at the July trade deadline.
Post-Gazette writer Noah Hiles contended the .500 Pirates do not deserve to add at the trade deadline, faulting general manager Ben Cherington and owner Bob Nutting for failing to build a contender around ace Paul Skenes.
Sources: Post-Gazette Pirates · ↑ top
Latest developments: In his June 24 chat, Post-Gazette beat writer Gerry Dulac fielded questions on Aaron Rodgers, Mike McCarthy, cornerback Joey Porter Jr., and rookie passers Will Howard and Drew Allar.
Post-Gazette Steelers beat writer Gerry Dulac took reader questions about quarterback Aaron Rodgers, Mike McCarthy, cornerback Joey Porter Jr., and the rookie quarterback picture of Will Howard and Drew Allar heading toward training camp at Saint Vincent College.
Sources: Post-Gazette Steelers · ↑ top
Latest developments: Bode Miller's attorney said two misdemeanor drug charges against the Olympic gold-medal skier will be dropped.
An attorney for Bode Miller, the Olympic gold-medalist Alpine skier, said prosecutors will drop a pair of misdemeanor drug charges against him.
Sources: ESPN Olympics · ↑ top
Latest developments: ESPN detailed how the U.S. men's squad has bonded at its Southern California base before the round of 32, down to golf carts borrowed from a Dana Point dealer.
ESPN chronicled the off-field life of the U.S. men's national team at its World Cup base in Dana Point, California, where golf-cart rides and pizza runs have bound Christian Pulisic, Weston McKennie, and Alex Zendejas as the co-hosts await their July 1 round-of-32 match.
Sources: ESPN Soccer · ↑ top
S&P 500 7,423.43 ▼ -0.1% Dow 51,657.14 ▲ +1.0% Nasdaq 25,953.97 ▼ -0.1% WTI crude 74.35 ▼ -11.4% EUR/USD 1.1447 ▼ -1.2% GBP/USD 1.3232 ▼ -1.4% USD/JPY 161.30 ▲ +0.7%