Latest Issue

☕ Healthy network

To:Brew Readers

CYBERSECURITY

Alan Rosa

For CVS Health CISO Alan Rosa, a boring day is a beautiful one.

“The last thing you want as a cybersecurity leader—or technical operations leader, for that matter—is a phone call that says, ‘Something is wrong,’” Rosa told IT Brew. “A good day for me is when the phone doesn’t ring…That’s a boring day. That’s a beautiful day.”

A walk down memory lane. Though Rosa prefers a dull workday, his career in the industry has been anything but. In an RSAC interview, he told IT Brew his first gig of many in the industry wasn’t your traditional SOC analyst or help desk role.

“I was a watch guard in the Navy. So, that’s just my first time I was tasked with protecting something,” Rosa, who is also an SVP of infrastructure and operations at CVS Health, said. “And then after college, I was in Boeing [Defense, Space & Security] and so I was more of a general technologist.”

How Rosa tries to keep days nice and boring.—BM

Sponsored By Arctic Wolf

Move at machine speed

AI has moved cybersecurity into the fast lane. Those days of taking, well, days to respond to security threats are long gone. Now, you need to respond in hours—or even minutes, in some cases.

Arctic Wolf can help. Their Essential Guide to the Agentic SOC shows you how AI can speed up your security operations, like threat detection and response.

The main takeaway: Human-speed security won’t cut it anymore. You need machine-speed security to keep up—which means letting AI handle rapid-fire detection and response while you focus on the more important judgment calls that machines aren’t able to make.

Boost your reaction time with Agentic SOC.

SOFTWARE

Lockfile it up

Anna Kim

Open-source components can streamline software building, making them a developer’s best friend—or worst enemy, if a supply-chain attacker decides to poison a package.

Software supply-chain management company Sonatype identified 394,877 new open-source malware packages in Q4 2025, representing a whopping “476% increase compared to the previous three quarters combined.” (The company said the increase was due largely to a self-replicating malware campaign.)

This attack often begins with a threat actor compromising a developer’s account, then publishing a malicious package to a trusted repository. Other developers pull from that source to create their own apps and services, spreading the malware.

Oh, great. More Dune. The latest attack—a “mini Shai-Hulud” (named after a cinematic sandworm)—compromised legitimate software packages and installed malicious credential-stealing updates that spread along connected dependencies.

Locking it down.—BH

Sponsored By Black Kite

Hype of mythic proportions. Hero’s stories can sound too good to be true. In their latest podcast and article, Black Kite gets into whether Mythos is a true force. Anthropic's Project Glasswing, which used the Mythos model, surfaced a 16-year-old FFmpeg vulnerability that millions of automated tests missed. Get the details here.

SOFTWARE

Core development

Brandon Bell/Getty Images

There’s been a new development in how Apple manages its products—and it’s an AI disruption.

Apple debuted new AI capabilities at this year’s Worldwide Developers Conference. The company has always had a “consumer-oriented” approach to its products, said Matt Vlasach, Jamf SVP of enterprise product and solutions engineering, who spoke to IT Brew from the conference on June 9.

Now, they’re expanding their software offerings with an open approach to AI, focused on developer tool suite Xcode.

“They’re working with developers quite a bit to encourage them to develop stuff they were doing with Xcode,” Vlasach said. “They’re doing AI-assisted agentic development with Xcode using Anthropic, OpenAI, or Gemini—your subscription of choice.”

How this change could impact macOS and iOS devs.—EH

Sponsored By Celigo

Connecting fulfillment networks to enterprise ERPs. Automate inventory, orders, fulfillment, and financials in real time without custom integration work. Join Celigo and Amazon on June 17 to learn how they’re reinventing supply chain operations for the better. Register now.

PATCH NOTES

Francis Scialabba

Today’s top IT reads.

Stat: $130 billion. That’s the estimated worth of data center projects blocked or delayed by protests in the U.S. in Q1 of this year. (Ars Technica)

Quote: “US frontier models are increasingly treated as strategic assets, with access tightly controlled and shaped by national security consideration.”—Gary Tan, a portfolio manager at Allspring Global Investments, said of Anthropic’s blocked access for foreign nationals (Bloomberg)

Read: Google found that a China-linked hacking group has spent the past year inconspicuously stealing data from US and Canadian research organizations. (Reuters)

In the fast lane: AI is speeding up cyber threats. Are you keeping up? Arctic Wolf can help you streamline your threat detection and response. See how they can help shrink your response time from days to minutes.*

^{*A message from our sponsor.}

JOBS

CollabWORK connects you to the hidden job market through IT Brew and other trusted channels. Browse roles curated specifically for this community by clicking through to the job board.

SHARE THE BREW

Share the Brew, watch your referral count climb, and unlock brag-worthy swag.

Your friends get smarter. You get rewarded. Win-win.

Your referral count: 5

Click to Share

Or copy & paste your referral link to others:
itbrew.com/r/?kid=9ec4d467

ADVERTISE // CAREERS // SHOP // FAQ

Update your email preferences or unsubscribe .
View our privacy policy .

Copyright © 2026 Morning Brew Inc. All rights reserved.
22 W 19th St, 4th Floor, New York, NY 10011

☕ Healthy network

Top insights for IT pros