TLDR IT 2026-05-26

We spent months interviewing IT leaders who are actively building the AI-era playbook at Cloudflare, Cursor, Lyft, GitLab, Nextdoor, Zip, Rubrik, Zscaler and Palo Alto Network, among others. Read the playbook that includes:

• The growth case for AI
• Running 90 day pilots, not 12-month RFPs
• Why it's IT's time to build
• The emergence of the IT engineer

Teams running this playbook are tracking toward delivering 40% of business initiative needs. Most IT organizations deliver 15% to 20% today.Download The State of IT 2026: the first research report on what the highest-performing IT organizations are building, and how.

SpaceX IPO filing disclosures indicate xAI has agreed to provide Anthropic large-scale AI compute services through xAI's Colossus and Colossus II clusters through May 2029. The deal is valued at roughly $1.25 billion per month, signaling that AI compute infrastructure is becoming a standalone monetizable business asset rather than only an internal capability tied to model development.

Ubiquiti released patches for three maximum-severity vulnerabilities in UniFi OS that could be exploited remotely without authentication, putting UniFi consoles and the infrastructure they manage at risk if left unpatched. For companies and IT teams running UniFi, this is a straightforward patch-now item, especially since UniFi often sits at the center of network, access, and security management.

There is a growing divide in Apple device management: Jamf leads on deep Apple-native controls, Intune focuses on cross-platform consolidation, and newer platforms like Iru are pitching simpler all-in-one alternatives. The real evaluation points are Apple management depth, automation, compliance controls, and whether stack consolidation is worth the tradeoff in flexibility.

The real problem with “enterprise” or “managed” browsers isn't security features, it's the architecture and deployment substrate. Rollout often stalls around 40–55%, so much of the workforce remains outside the security model. In contrast, an agentless session-layer approach can govern web sessions inside the user's existing browser and other app/webview contexts, enabling faster deployment and broader coverage without change management.

AI may make it easier to build lightweight tools and replace some point solutions, but core enterprise platforms like SAP and Workday are held together by years of integrations, process logic, compliance controls, and organizational dependency that are not easily rebuilt from scratch. For IT leaders, focus less on AI replacing SaaS and more on which categories get compressed while core systems evolve into platforms AI works through.

Legacy PAM complicates access and leaves long-lived, static credentials intact across your infrastructure. Teleport replaces static credentials with cryptographic identities, just-in-time access, unified audit trails, and automated access approvals so teams can reduce risk without slowing engineers down. Try Teleport.

Kore.ai has launched the new-generation Kore.ai Agent Platform Artemis edition, an AI-native platform for building, governing, and optimizing enterprise multiagent systems. The platform introduces Agent Blueprint Language (ABL), an AI agent architect (Arch), and a dual-brain architecture, initially deploying on Microsoft Azure with deeper cloud availability to follow.

Dell rolled out a major data center refresh with its new PowerStore Elite storage platform and 18th-generation PowerEdge servers, promising higher performance, denser compute, and better efficiency for AI and traditional enterprise workloads. Infrastructure vendors are now packaging storage, compute, cyber resilience, and automation as one AI-era stack rather than treating them as separate upgrades

Security researchers found that deleted Google API keys can continue working for up to 23 minutes, creating a dangerous revocation window where attackers can still make API calls, access enabled services, or rack up charges. Until Google changes this behavior, teams should rotate or disable exposed keys immediately and treat deletion as a delayed cleanup step rather than an instant kill switch.

Bumblebee is a read-only security scanner for macOS and Linux that checks local developer machines for risky packages, browser/editor extensions, and AI tool (MCP) configurations. It scans metadata such as lockfiles and extension manifests and outputs structured NDJSON records to help security teams quickly identify exposed endpoints.

npm is rolling out two security-focused CLI changes.

The “TrapDoor” supply-chain attack poisoned 34 packages across npm, PyPI, and Crates.io, affecting more than 384 versions.