Advertise on podcast: YPO Technology Network AI Brief

The UK government quietly confirmed an AI model just completed the hacking equivalent of a four-minute mile. Eleven of the largest companies on Earth already have a copy. The threat model you were operating under on Friday is not the one you are operating under today. In this episode: What Claude Mythos actually did on AISI's 32-step "Last Ones" test — and why Anthropic's own safety team called it "the greatest alignment-related risk" they've released The Roger Bannister four-minute mile analogy — why one lab crossing a capability barrier changes what every other lab believes is possible Project Glasswing — the eleven companies with access (AWS, Apple, Cisco, CrowdStrike, Google, JPMorgan, Microsoft, NVIDIA, Palo Alto Networks, Goldman Sachs, Linux Foundation) and the oversight framework that isn't public Why your threat model shifted from nation-states to "everyone who has ever been angry at you and kept a copy of something" The three-step playbook to ask about by Friday: kill switches (1-10-60 rule, CrowdStrike/SentinelOne/Defender isolation), agentic security platforms reading your logs 24/7, and immutable 3-2-1-1 backups (Veeam, Rubrik, Commvault, AWS S3 Object Lock) The CEO mirror — a three-column credential audit to take into your next forum meeting Key line: "The tool does the skill. The tool does the twenty hours of work. A motivated amateur with a Claude API key and a grudge is now a credible threat." Cybersecurity used to be a specialist problem. It is now an operational problem. It belongs in the same meeting as insurance and succession. The YPO Technology Network AI Brief is a daily, peer-to-peer podcast for YPO members (CEOs and Presidents of $13M+ companies) making sense of AI without the hype. Produced by BuildClub.

Welcome to the YPO Technology Network AI Brief with Stephen Forte. Every weekday morning in about ten minutes, Stephen walks you through what actually happened in AI — and what it means for the company you run. Not the hype cycle. Not the vendor press releases. Just answers, through the CEO lens, with a take. Weekdays at 6am Eastern. Saturdays, a longer weekend edition. Follow the show and share it with a fellow member.

Episode summary. Sam Altman says a world-shaking AI cyberattack is coming within twelve months. The proof of concept arrived this weekend: one Roblox download on a personal device triggered a three-company breach that ended with Vercel's source code, GitHub tokens, and NPM publishing keys for sale on BreachForums. Stephen Forté connects the warning, the breach, and the architectural fix most companies have not yet implemented — giving every AI agent, tool, and integration its own machine identity. Why this matters. AI is no longer a tool sitting next to your business. AI is the attack surface. The new physics is clear: your security perimeter now includes every AI tool used by every vendor of every employee of every customer. The fix is not another seat license — it is plumbing, and your CIO can implement it this quarter. What this episode covers: Sam Altman's Axios interview and why frontier-lab safety data backs the warning — Anthropic's 99% valid zero-day finding rate, and the $2,283 / 20-hour discovery of Chrome CVE-2026-5873.The Vercel breach chain of custody: Lumma Stealer → Context.ai OAuth tokens → Vercel mailbox → GitHub + NPM. 580 employee records, undisclosed API keys, sold by ShinyHunters for $2M.The GitGuardian 2026 numbers: 28M hardcoded secrets exposed in 2025, AI credentials up 81% YoY, 24,000 unique creds leaked from MCP config files alone.The architectural fix: machine identity and agent-level authentication — treating every AI tool, agent, and integration as its own authenticated principal rather than sharing an employee's OAuth token.The three questions to take to your CIO and CISO this week.Key takeaway. The breaches coming in 2026 will not look like the breaches of 2024. The attacker does not need to beat your security team. The attacker walks through three companies on a single thread of inherited AI trust. Identity is the new perimeter — and AI agents need identities of their own. Hosted by Stephen Forté for the YPO Technology Network.

Episode summary. On February 17, 2026, federal Judge Jed Rakoff issued the first nationwide ruling holding that conversations with consumer AI chatbots are not protected by attorney-client privilege and are fully discoverable in litigation. Six weeks later, the Delaware Court of Chancery used a CEO's deleted AI chat logs as trial evidence in a $250 million earnout dispute. This episode walks CEOs, GCs, and CISOs through what the courts actually held, what it means for your company in practice, and the five specific moves to make this week. Why this matters. Every prompt your employees type into ChatGPT, Claude, Gemini, or Copilot is now a timestamped, logged document living on a third party's servers under terms that explicitly permit disclosure to regulators and courts. The candor of AI conversations — precisely because employees feel they are thinking in private — makes them disproportionately damaging in discovery. This is the AI wake-up call, and it lands harder than email did in the 2000s or Slack did in the 2010s. The Four Rulings You Need to Know1. United States v. Heppner — No. 25 Cr. 503 (JSR), 2026 WL 436479 (S.D.N.Y. Feb. 17, 2026). Judge Jed S. Rakoff, Southern District of New York. The anchor case. Bradley Heppner, former Chair of GWG Holdings, was indicted for securities fraud allegedly costing investors more than $150 million. Facing a grand jury subpoena, he used the free version of Anthropic's Claude to generate 31 documents analyzing his defense strategy and shared them with Quinn Emanuel. FBI agents seized the documents during a Dallas search warrant. The government moved to compel. Rakoff — calling it "a question of first impression nationwide" — ruled the documents were not privileged on three independent grounds and found they may have even waived privilege over the original attorney-client communications Heppner had pasted into Claude. 2. Fortis Advisors LLC v. Krafton, Inc. — C.A. No. 2025-0805-LWW (Del. Ch. Mar. 16, 2026). Delaware Court of Chancery, Vice Chancellor Will. Krafton acquired Unknown Worlds Entertainment (maker of Subnautica) for $500M up front plus a $250M earnout. When the deal soured, Krafton's CEO used an AI chatbot to draft a "Response Strategy to a No-Deal Scenario" including a "pressure and leverage package" and a "two-handed strategy" combining legal pressure with softer retention offers. The court quoted the AI logs extensively to establish pretextual intent — and noted the CEO's admitted deletion of some logs may "factor prominently" in the damages phase. Civil discovery, not criminal. The reasoning travels. 3. Warner v. Gilbarco, Inc. — No. 2:24-CV-12333, 2026 WL 373043 (E.D. Mich. Feb. 10, 2026). Magistrate Judge Anthony P. Patti. A pro se plaintiff in an employment discrimination case used ChatGPT to prepare filings. The court upheld work product protection on narrow facts — a pro se litigant is the party, FRCP Rule 26(b)(3)(A) protects party-prepared materials, and uploading to an AI tool is not disclosure to an adversary. This is not a circuit split with Heppner (different context, criminal vs. civil, represented vs. pro se), but it is the only counterweight on the books. 4. Morgan v. V2X, Inc. — No. 1:25-cv-01991 (D. Colo. Mar. 30, 2026). Magistrate Judge Maritza Dominguez Braswell. A modified protective order establishing the precise contractual checklist any AI tool must meet before confidential discovery materials can be loaded into it: (1) no training on inputs, (2) strict confidentiality, (3) contractual right to delete. The court acknowledged this effectively bars most consumer AI tools from discovery-sensitive workflows. 5. In re OpenAI Copyright Litigation — S.D.N.Y. Jan. 5, 2026. The court upheld a discovery order requiring OpenAI to produce a sample of 20 million de-identified ChatGPT conversation logs. Confi

Healthy-company layoffs are no longer just a lagging indicator of weakness. In this weekend edition, Stephen Forte argues they can be an early signal of organizational redesign — and explains what mid-market CEOs should do before the pressure shows up in their numbers. What this episode covers: Why this wave of layoffs is different from 2009 and different from the 2023 over-hiring correctionWhy many strong companies are redesigning around new information economics, not just cutting costsWhy most mid-market firms should not copy Block directlyThe pattern Stephen sees across successful and failed AI adoption effortsA practical 90-day playbook for CEOs: pick two workflows, map them properly, run shadow mode, define decision rights, and learn from overrides Key idea: the real shift is not AI as a tool. It is AI as a change to how context moves, how decisions get made, and what parts of management remain valuable. If your company is healthy, that is not a reason to delay this work. It may be the best reason to start it.

Stephen Forte explores why AI investments are failing and the answer is not what you think. Drawing on the CIA 1944 Simple Sabotage Field Manual and a landmark 2026 survey showing 29 percent of employees actively sabotage their company AI strategy, he unpacks the invisible resistance destroying AI ROI. The CIA Manual: How 80-year-old bureaucratic sabotage tactics are alive and well in your AI steering committeeThe Data: 29 percent sabotage rate (44 percent among Gen Z), plus a 30-point perception gap between executives and employeesThe Failure Landscape: 95 percent of AI pilots deliver zero ROI (MIT), with BCG attributing 70 percent of failure to people, not technologyThe Fear Factor: 89 percent of workers worried about job security, 55,000 AI-related layoffs in 2025The Spectrum of Resistance: From overt refusal to invisible pretenders, plus the vicious cycle that makes sabotage look like technology failureThe Solution: Champion networks achieve 3x implementation success. Find the domain experts already using AI on their own Key insight: The programming language of this era is English. The real skill is domain expertise. Find your champions, reward them, and let your laggards self-select out. Sources: Writer/Workplace Intelligence 2026 Survey, MIT NANDA Initiative, BCG, RAND Corporation, ADP Research, Aalto University, CIA Simple Sabotage Field Manual (1944)

Today, one thread ties together a thousand layoffs at Snap, a survey showing the majority of C-suite leaders admitting AI is fracturing their organizations, and Molotov cocktails thrown at a tech CEO home. That thread is the cost of what you, as a leader, have not yet said. Snap cuts 1,000 jobs (16% of workforce) citing AI productivity. CEO Evan Spiegel was direct. Most CEOs have not been.Writer 2026 survey of 2,400 executives: 54% of the C-suite say AI is tearing their company apart. 97% deployed agents, only 29% see ROI. 35% cannot shut down a rogue agent.Physical attacks on AI leaders: Molotov cocktails at Sam Altman home, 13 bullets through an Indianapolis councilman front door over a data center vote. The thesis: Having no AI policy is a policy. You are just letting fear set it for you. Hosted by Stephen Forte.

Every adoption metric just crossed the line — and the line turns out to be behind us. Three stories about AI adoption outrunning governance at a pace no one predicted. Stories covered: The 50% Line — Gallup's Q1 2026 workplace survey of 23,717 employed adults finds 50% now use AI at work, up from 46% last quarter. But only 41% of organizations have formally integrated AI — meaning roughly 14 million American workers are using AI tools their employer hasn't approved or secured.CyberStrikeAI: 600 Firewalls in 5 Weeks — A free, open-source AI tool autonomously compromised 600+ Fortinet FortiGate firewalls across 55 countries. No zero-day vulnerabilities needed — just exposed management interfaces and weak authentication. The barrier to autonomous cyberattack just dropped to zero dollars and a laptop.96% Agents, 12% Governed — OutSystems surveyed 1,900 IT leaders: 96% are already using AI agents in production, but only 12% have centralized governance. Gartner forecasts 40% of enterprise applications will include task-specific agents by end of 2026, up from 5% in 2025. Action items: Ask your CISO about exposed management interfaces and single-factor authentication gaps — today, not next quarterFind out what percentage of your workforce is using AI tools IT hasn't provisionedCount your agents — if nobody can give you a number, that is the number that matters most Hosted by Stephen Forte. New episodes weekdays.

Three stories about how AI companies stopped competing on capability and started competing on leverage — and what the squeeze means for every CEO writing checks right now. Stories covered: Musk's Grok Toll Booth — The New York Times confirmed Elon Musk is requiring every bank advising the SpaceX IPO to purchase Grok enterprise subscriptions. Goldman Sachs, JPMorgan, Morgan Stanley, and others have committed tens of millions. Not because Grok won a bake-off — because the alternative is losing access to $500M+ in advisory fees from a $50B+ raise.GPU Prices Surge 48% — The Ornn Compute Price Index shows Nvidia Blackwell GPU rentals now cost $4.08/hour, up from $2.75 eight weeks ago. Half of planned 2026 data center builds are delayed — not by chips or capital, but by 5-year lead times on high-voltage electrical transformers.OpenAI Kills Sora — OpenAI is discontinuing its video generation tool with roughly six months notice. A Futurum Group survey found 61% of enterprises cite OpenAI as their primary generative AI platform — raising hard questions about single-vendor dependency. Action items: Lock in compute contracts before the next price jumpBuild optionality into your vendor stack before a deprecation notice forces your handIf 40%+ of your AI workloads run on a single vendor, draft a migration playbook now Hosted by Stephen Forte. New episodes weekdays.

Three stories exploring the gap between what we believe and what the data shows in AI. Anthropic Mythos / Project Glasswing — An AI model too dangerous to release is now controlled by eleven handpicked organizations and the White House. That is not a safety framework. That is a guest list.OpenAI Acquires TBPN — OpenAI spent hundreds of millions to buy a podcast. It reports to their chief political operative. The sole financial relationship is now OpenAI. When you cannot control the narrative through technology, you buy the megaphone.AI Coding Quality Collapse — Six independent studies converge on the same finding: AI-generated code has more bugs, and developers using it believe they are faster when they are actually 19% slower. The 39-point perception gap is the largest ever documented.

Weekend Special Edition | Saturday, April 11, 2026 Anthropic launched Claude Managed Agents in public beta on April 9, 2026. The infrastructure problem that was killing enterprise agent projects between prototype and production is now a managed service. This episode goes deep on what changed and what to do about it. What we cover: Claude Managed Agents: four core capabilities — secure sandboxing, long-running autonomous sessions, multi-agent coordination (research preview), and a full governance layer. Pricing: standard token rates plus $0.08/session-hour.The three-agent harness: Planner expands your 1-4 sentence prompt into a full product spec. Generator builds in sprint rounds. Evaluator interacts with the live application via Playwright — clicking through UI, testing API endpoints, checking database states — and grades output against calibrated thresholds, running 5-15 iteration cycles until complete.The context problem solved: externalized state via JSON specs, progress logs, and git commits rather than in-context memory. The Ralph Loop prevents premature completion claims.Early adopters: Notion, Asana, Rakuten (10x faster agent delivery, 22-point task success improvement), Vibecode.The five-point executive playbook: find your stalled agent project, scope by workflow not AI capability, separate generators from evaluators in every AI process, design governance before scaling, get on the multi-agent coordination waitlist at claude.ai. Hosted by Stephen Forte, YPO Tahoe Integrated, YPO Miami Gold, YPO London Gold

OpenAI published a 13-page policy paper on April 7, 2026 — the same morning The New Yorker published a 1.5-year investigation into Sam Altman's trustworthiness on AI safety. This episode reads OpenAI's proposals not as forward-looking policy, but as a pre-apology for disruption that is already underway and already documented. In this episode: What OpenAI is actually proposing: a four-day work week, a Public Wealth Fund, a robot tax, worker voice mechanisms, and mandatory AI safety auditingHow each proposal maps to a specific, documented harm — including 60,000 job cuts in March alone and $852 billion in AI-driven capital concentrationOpenAI's two-year lobbying record against the exact safety policies the paper now endorsesThe timing collision: the policy paper and the New Yorker investigation dropped on the same dayWho is funding the D.C. think tanks that will define responsible AI policyA closing question for every CEO: could your company write the equivalent internal document? Sources: OpenAI — Industrial Policy for the Intelligence AgeTechCrunch — OpenAI's vision for the AI economyFortune — Sam Altman says AI needs a New Deal About the show: The YPO Technology Network AI Brief is a daily podcast for YPO members — CEOs and company presidents — covering AI developments with direct business impact. Hosted by Stephen Forte.

One Employee Destroyed a Warehouse. Now Imagine Your Network. | April 9, 2026 A Kimberly-Clark warehouse in Ontario, California is gone — 1.2 million square feet, total loss — because one employee had access, motive, and fuel that was already in the building. This episode traces that pattern from the physical world into the digital: 500,000 tech layoffs coming this year, the SolarWinds supply chain attack explained, and last week’s AI-era version of the same breach — 40 minutes, three major AI labs in the blast radius simultaneously. What we cover: The Ontario warehouse fire: Chamel Abdulkarim, 29, arrested on felony arson charges after destroying a 1.2M sq ft Kimberly-Clark distribution center serving 50 million peopleThe layoff fuse: 78,557 tech cuts in Q1, 9x increase forecast this year — every departing employee walking out with system knowledge, credentials, and potentially still-active accessSolarWinds explained: Russian intelligence spent 14 months inside US government networks — Treasury, Homeland Security, State, DOE — through a trusted update that 18,000 organizations installed voluntarily. $90M+ recovery. First CISO ever charged by the SEC.AI’s SolarWinds: LiteLLM poisoned on PyPI for 40 minutes, cascading to Mercor — supplier to OpenAI, Anthropic, and Google simultaneously — 4TB claimed stolenThree actions: offboarding access audit, AI supply chain dependency monitoring, AI-powered log monitoring Key data: 1.2M sq ft warehouse, total loss — one person, no specialized skills78,557 Q1 tech layoffs | 47.9% attributed to AI | 9x increase forecast 2026SolarWinds: 18,000 orgs | 14 months undetected | $90M+ recovery | 11% avg revenue impactLiteLLM attack: 40 minutes active | all 3 top US AI labs in blast radius | 4TB claimedIBM X-Force: 4x increase in supply chain attacks since SolarWinds Sources: LA Times: Kimberly-Clark Warehouse FireTom’s Hardware: Q1 2026 Tech LayoffsBreachsense: SolarWinds Case StudyMercor/LiteLLM BreachMandiant: SolarWinds SUNBURST Analysis Hosted by Stephen Forte, YPO Tahoe Integrated, YPO Miami Gold, YPO London Gold

The Citizen Hacker | April 8, 2026 Anthropic built an AI model so capable at finding security vulnerabilities that it cannot be released to the public. Claude Mythos Preview has already found thousands of high-severity flaws in every major operating system and browser, including a 27-year-old bug that survived decades of expert review. This episode unpacks what that signals about corporate security today, introduces the citizen hacker, and closes with five specific moves every company needs to make before this month is out. What we cover: The model Anthropic won't release: what Claude Mythos found, and what it means that it found these flaws entirely autonomouslyThe reality check: 94% of passwords reused, breaches taking 328 days to detect, hackers paying employees up to $15,000 for network accessThe citizen hacker: how vibe coding's mirror image is already attacking companies at scaleThe five moves: credential audit, AI log monitoring, agent governance, behavioral monitoring, continuous patching Key data: 74-95% of breaches involve the human element (Verizon / SentinelOne 2025)Average credential breach detection: 328 daysTime-to-exploit: negative one day (Mandiant 2025)Insider risk: $19.5M per organization annually (Ponemon 2026)Attacker breakout time: 29 minutes, down 65% (CrowdStrike 2025)Global ransomware damage: $74 billion in 2026 (Cybersecurity Ventures) Sources: Anthropic Project GlasswingSecureframe 2026 Data Breach StatisticsMandiant: Negative Time-to-ExploitPonemon/DTEX 2026 Cost of Insider RisksForrester: Vibe Hacking and No-Code RansomwareCybersecurity Ventures: Ransomware Damage 2026 Hosted by Stephen Forte, YPO Tahoe Integrated, YPO Miami Gold, YPO London Gold

This episode of the YPO Technology Network AI Brief, hosted by Stephen Forte, maps the agent explosion happening across every major enterprise platform — and explains why the right move is neither consolidation nor inaction. Key topics covered: Why Salesforce, Notion (21,000+ custom agents), Jira, Zoom, monday.com, and Asana all shipped autonomous agents in the same quarterThe governance crisis: 3M+ corporate AI agents in deployment globally, with only 47% monitoredScenario: Velocity Digital (400-person agency) discovers 31 unauthorized agents running for six weeksThe experimentation thesis: why picking one agent now is the wrong moveScenario: Meridian Financial's 90-day, $180K experiment generates a projected $2.1M annual productivity gainFour structural differentiators: model flexibility, local access, data connectivity, and governance surfaceArthur AI's Agent Discovery platform as an early governance response Quotable close: "The window for informed experimentation is roughly 90 days before market consolidation starts making the decision for you." Hosted by Stephen Forte for the YPO Technology Network.