daily plain-text briefing: security, markets, business, and pittsburgh
Malware called Gaslight now plants prompt-injection traps to derail the AI tools analysts point at it, while attackers exploit Cisco zero-days and Lantronix industrial converters before defenders can patch.
Latest developments: CISA added Cisco Unified Communications Manager server-side request forgery flaw CVE-2026-20230 and PTC Windchill and FlexPLM input-validation flaw CVE-2026-12569 to its known exploited vulnerabilities catalog, as Mandiant detailed how attackers rode Catalyst SD-WAN zero-day CVE-2026-20245 to forge root accounts for two months before disclosure.
CVE-2026-20230 lets unauthenticated attackers forge server-side requests through Cisco Unified Communications Manager, CVE-2026-12569 hits PTC's Windchill and FlexPLM product-lifecycle software, and CVE-2026-20245 grants root on Catalyst SD-WAN via rogue peering. Federal agencies must patch all three under CISA's binding directive.
Sources: CISA Advisories · SecurityWeek · BleepingComputer · The Hacker News · ↑ top
Latest developments: Attackers began exploiting CVE-2025-67038 in Lantronix serial-to-IP converters, one of April's BRIDGE:BREAK flaws, the same day CISA published advisories covering EVoke Systems charging-station management software at CVSS 9.4, Daktronics controller firmware granting root access, Schneider Electric PowerLogic P7 relays, and Yokogawa FAST/TOOLS.
CVE-2025-67038 lets attackers reach Lantronix converters that bridge legacy industrial gear to networks. CISA's same-day advisories span EV charging, electronic displays, protection relays, and SCADA software; operators should segment and patch exposed devices.
Sources: SecurityWeek · CISA Advisories · CISA Advisories · CISA Advisories · ↑ top
Latest developments: Curl shipped fixes for 18 flaws including one that sat in the code for 25 years, GitLab patched 13 bugs across CE and EE with three high-severity defects enabling code execution and information disclosure, and Google's Chrome 149 closed 18 vulnerabilities, more than half of them use-after-free defects.
The 25-year-old curl flaw landed among 18 medium- and low-severity fixes, GitLab's high-severity bugs threaten self-managed instances, and Chrome's use-after-free defects can lead to remote code execution. Update all three now.
Sources: SecurityWeek · SecurityWeek · SecurityWeek · ↑ top
Latest developments: Researchers documented Gaslight, a Rust-based macOS implant and information stealer that hides prompt-injection strings and fake debugging data inside its executable to trick AI-assisted malware analysis tools into aborting or refusing the examination.
Gaslight exfiltrates data while embedding deceptive instructions that tell a malware analyst's AI assistant to refuse the job. Analysts who route samples through AI triage should verify every finding by hand.
Sources: BleepingComputer · The Hacker News · ↑ top
Latest developments: The Bluekit phishing-as-a-service platform added browser-in-the-middle capability and spun up nearly 70 new hostnames in a week to steal logins, while separate actors abused Shopify's Shop order-tracking app, planting fake purchase receipts to lure users into installing remote-access software.
Bluekit rents infrastructure that proxies victims through a real browser session to capture credentials and tokens past multi-factor prompts. Attackers separately seed fake receipts in Shop order histories to start callback-phishing calls; treat unexpected receipts and support numbers as bait.
Sources: BleepingComputer · BleepingComputer · ↑ top
Latest developments: California Water Service said Mandiant found no evidence the Iranian hacking group Handala reached operational-technology systems, despite the group's claim that it breached the utility and could disrupt the water supply.
California Water Service, a major U.S. water utility, brought in Mandiant after Handala claimed access and the ability to disrupt supply. The investigation confirmed the intrusion never touched the controls that run treatment and distribution.
Sources: SecurityWeek · ↑ top
Latest developments: Iran hit a container ship with a projectile in the Strait of Hormuz on June 25, and the International Maritime Organization paused the plan to evacuate vessels stranded by the blockade.
The strike came hours after Iran warned ships to avoid routes its regime had not sanctioned, testing the deal President Trump brokered to reopen the waterway; Brent crude settled higher even after prices had returned to prewar levels below $72.48 a barrel.
Sources: WSJ World News · FT World · ↑ top
Latest developments: The U.S. Supreme Court on June 25 overturned a verdict against Bayer over its Roundup weedkiller, a ruling expected to block thousands of cancer-warning lawsuits.
The justices threw out the verdict that had anchored billions of dollars in claims alleging Bayer's Monsanto unit failed to warn that Roundup's glyphosate causes cancer, lifting a years-long legal overhang on the German company.
This Afternoon: Partly Sunny, high 82F.
Tonight: Scattered Showers And Thunderstorms then Showers And Thunderstorms, low 64F.
Friday: Mostly Cloudy then Isolated Showers And Thunderstorms, high 82F.
Latest developments: Mayor Corey O'Connor announced June 25 that UPMC and Highmark will give Pittsburgh $45 million over five years to buy fire trucks, ambulances, and other first-responder equipment, on top of $10 million UPMC pledged earlier.
The two tax-exempt health giants, long criticized for their sprawling nontaxable property holdings, will fund replacements for the city's aging public safety fleet under the partnership O'Connor unveiled.
Sources: Pittsburgh Post-Gazette · TribLive · ↑ top
Latest developments: The Hoffmann family introduced itself June 25 as the Penguins' new principal owners, pledging commitment to Pittsburgh and a continuing role for franchise legend Mario Lemieux.
David Hoffmann and his family, completing their purchase from Fenway Sports Group, told fans 'you will win in Pittsburgh' and said they want Lemieux involved for generations to come.
Sources: Pittsburgh Post-Gazette · TribLive · ↑ top
Latest developments: PennDOT closed Commercial Street and the Nine Mile Run trail June 25 to test the system that will slide the 22-million-pound replacement span into place, and Pittsburgh Regional Transit released detour guidance for the coming Parkway East closure.
The Commercial Street Bridge replacement beneath Interstate 376 near Frick Park will shut the Parkway East for nearly a month starting in July; PennDOT's test confirmed the slide mechanism before the move.
Latest developments: The Shaler Township Police Department launched 'Operation Safe Speed' to crack down on speeding and aggressive driving along Route 8.
Police Chief Sean Frank said his officers are freshening their patrols on the busy artery that connects Allegheny and Butler counties, aiming to change driving habits on one of the area's heaviest-traveled roads.
Latest developments: Pittsburgh rapper Frzy joined the bill as an opener for the free concert at Point State Park this weekend, the Post-Gazette's things-to-do guide reported.
The performance is part of the free, ticketed Commonwealth Concert Series at Point State Park downtown, a weekend lineup that also marks the Andy Warhol Bridge's 100th birthday across the city, June 25-28.
Sources: Post-Gazette Music · ↑ top
Latest developments: Artist Patrick Marold's 'Open Columns' installation completed the public-art transformation at Pittsburgh International Airport's new terminal.
The work caps the art program built into the recently opened terminal, and travelers can view it as they move through the building in Findlay Township.
Sources: Post-Gazette Arts & Entertainment · ↑ top
Pirates (41-40)
Wed Jun 24 · Mariners 1 · Pirates 11 · Final
Ashcraft, Rodriguez, O'Hearn help Pirates rout AL West-leading Mariners 11-1
Thu Jun 25 · Mariners 1 · Pirates 5 · Final
Brandon Lowe, Henry Davis each homer to lead Pirates over Mariners 5-1
Up Next · Reds @ Pirates · Fri Jun 26, 6:40 PM
Latest developments: Former tight end Eric Ebron sat down with Cam Heyward's 'Not Just Football' podcast for a wide-ranging talk on his career and his retirement at 28.
Ebron shared locker-room stories from Detroit, Indianapolis, and Pittsburgh, reflected on Andrew Luck's retirement, and touched on Bill Belichick taking over at North Carolina.
Sources: Not Just Football with Cam Heyward · ↑ top
Latest developments: Pirates prospect Konnor Griffin excelled at the plate in a rehab start at Double-A Altoona, the Post-Gazette reported.
Griffin's progress offers a bright spot for an injury-riddled Pirates roster that placed first baseman Spencer Horwitz on the injured list this week.
Sources: Post-Gazette Pirates · ↑ top
Latest developments: The U.S. men's national team played its Group D finale against Türkiye on June 25, with manager Mauricio Pochettino rotating his lineup and resting four yellow-carded players to keep them eligible for the round of 32.
Having already clinched a knockout spot as a World Cup co-host, the United States used the match to manage suspensions ahead of its round-of-32 game July 1, with ESPN noting Türkiye presents a test similar to the tournament's best sides.
Sources: ESPN Soccer · ESPN Soccer · ↑ top
S&P 500 7,423.43 ▼ -0.1% Dow 51,657.14 ▲ +1.0% Nasdaq 25,953.97 ▼ -0.1% WTI crude 74.35 ▼ -11.4% EUR/USD 1.1447 ▼ -1.2% GBP/USD 1.3232 ▼ -1.4% USD/JPY 161.30 ▲ +0.7%