TLDR IT 2026-05-11

UBS replaced 16 applications and automated 170+ cloud data sources with RunMyJobs by Redwood. It's the only SAP Endorsed workload automation and a Gartner Magic Quadrant Leader with:

• 99.95% uptime SLA — 10x higher than the nearest enterprise competitor
• Agentless architecture — no agents, VMs or databases to maintain
• Native MCP and A2A support — your automation becomes AI-agent ready

👉 Over four billion SaaS executions run through RunMyJobs annually across Fortune 50 and global enterprises.

It's enterprise-grade orchestration built to reduce your total cost of ownership (TCO).

Get a demo today and quantify your TCO reduction

A malicious Hugging Face repository, Open-OSS/privacy-filter, impersonated OpenAI to distribute Rust-based infostealer malware. The repository reached 244,000 downloads before removal. The malware targets browser data, cryptocurrency wallets, and credentials, using anti-analysis techniques to evade detection. Victims should reimage machines and rotate all compromised credentials immediately.

Microsoft and G42's planned $1B East Africa data center has stalled over payment guarantee demands from the Kenyan government. The project has not been canceled, but the dispute shows how AI/cloud infrastructure expansion is increasingly tied to energy, sovereign risk, and long-term capacity commitments.

CISA's new CI Fortify guidance urges critical infrastructure operators to plan for disruptive cyberattacks by building isolation and recovery capabilities before a crisis. The guidance is especially relevant for IT and security teams responsible for systems that may need to keep running even when vendors, networks, or cloud services are degraded.

Major tech firms reported $540 billion in revenue and $700 billion in AI capex, marking an aggressive quarter. Palantir achieved a 145% Rule of 40, while SaaS firms like Atlassian and Twilio show reacceleration. Success now requires both base monetization and net new customer acquisition via AI integration.

Researchers scanned more than 1M exposed AI services and found weak defaults, misconfigurations, and public exposure across AI infrastructure. AI infra is being deployed like experimental software, but it is increasingly connected to real data and production systems.

A Hacker News piece argues that AI agents are already operating inside enterprise environments faster than IAM and governance systems can track them. The core issue is not just model risk, but delegated authority: which apps, tokens, workflows, and agents can act on behalf of users or systems.

ServiceNow and NVIDIA unveiled “Project Arc,” an autonomous desktop AI agent that can execute complex enterprise tasks while being monitored and governed through ServiceNow AI Control Tower and NVIDIA OpenShell. The partnership also extends AI governance into data centers via NVIDIA's Enterprise AI Factory and launches open-source benchmarks to measure enterprise AI agent performance.

Anthropic reportedly signed a $1.8B cloud computing deal with Akamai to support growing demand for its AI software. The deal adds another signal that AI infrastructure demand is spilling beyond the usual hyperscaler relationships.

AI agents require data access, code environments, and integration layers to automate ERP tasks. While MCP offers structured tool discovery, CLI excels at handling high-volume data. SAP's new API policy restricts third-party agents, forcing developers to utilize alternative integration methods like SFTP, email, and screen automation.

Full-stack AI marketing often ignores the reality of diverse, legacy-heavy IT environments. Organizations struggle to integrate turnkey AI stacks with existing VMs, containers, and proprietary systems, proving that bespoke, hybrid infrastructure designs remain essential for modern enterprise operations.

Microsoft, Google, and xAI agreed to give the US government early access to new AI models for national security evaluations.

Next.js v16.2.6 patches thirteen security vulnerabilities, including high-severity issues like Denial of Service, middleware bypass, and server-side request forgery.