Hosts:
Justin Shelley – https://www.phoenixitadvisors.com/
Mario Zaki – https://www.mazteck.com/
Bryan Lachapelle – https://www.b4networks.ca/
Joshua Holloway – https://7thdi.com/

You’ve heard “just make it read-only” and figured you were covered. You’re not.

In Episode 91 of UnHacked, Justin, Mario, Bryan, and Josh pick up their ongoing AI series and get into the real-world Security risks hiding inside AI integrations — the ones that don’t show up until something goes wrong. Bryan takes the hot seat this week and walks through what happened when he connected Claude to his accounting software through Xero’s MCP server. Spoiler: the data it can access tells a hacker exactly who your best clients are and how much they’re paying you. That’s not a read-only problem. That’s a target.

The crew also digs into why “read-only” is only safe at the start, why there’s no Control-Z once your AI does something you didn’t intend, and why your endpoints are now the biggest vulnerability in your entire security stack. Plus, Brian shares what happened when he tried connecting Claude to DocuSign — and what almost worked.

Key takeaways from this episode:

• Before you add any connector, understand exactly what it’s accessing and whether it launches with guardrails in place (Josh)
• If you’re not using an integration, disconnect it. Less footprint, less risk. If you’re not gonna use it, lose it. (Mario)
• Your employees are already using personal AI accounts with your company data. Put a policy in place and give them a sanctioned tool before shadow IT does it for you. (Bryan)
• Stop using public AI tools for business. Ditch them and get a secure platform — because everything you put into a free tool, you lose. (Justin)

This is Part 2 of the team’s multi-part AI series: basic chat setup, integrations (that’s right now), and vibe coding is coming next. The series follows a crawl-walk-run framework designed to help business owners actually implement AI without burning it all down.

Not sure where to start? Go to unhackmybusiness.com, click any episode, and use the action cards below the player to ask a question or request a free consult.

Most Recent Episodes

June 23, 2026

92. The Automation That Pays for Itself in a Week (And Why Security Can't Be DIY)

Hosts:Justin Shelley | Phoenix IT Advisors: https://www.phoenixitadvisors.com/Mario Zaki | Mazteck IT: https://www.mazteck.com/Joshua Holloway | 7th Di Technologies: https://7thdi.com/What if the...

Listen · 52:18

June 9, 2026

90. Clone Yourself With AI: The Integration That Saves 1.5 Hours a Day (and $26K a Year)

Hosts:Justin Shelley – Phoenix IT Advisors | https://www.phoenixitadvisors.com/Mario Zaki – Mazteck IT | https://www.mazteck.com/Bryan Lachapelle – B4 Networks |...

Listen · 59:25

May 29, 2026

89. Your AI Is Lying to You (And You'd Never Know): How to Prompt Smarter Before It Costs You

Hosts:Justin Shelley – Phoenix IT Advisors: https://www.phoenixitadvisors.com/Mario Zaki – Mazteck IT: https://www.mazteck.com/Bryan Lachapelle – B4 Networks: https://www.b4networks.ca/Joshua...

Listen · 51:06

Load More Episodes

Justin Shelley CEO

Justin Shelley has been in love with technology since his father brought home an Apple IIe when he was just 12 years old. But more than technology, Justin loves the world of business and entrepreneurship. As a child, he watched his parents struggle, and eventually lose their first business. Today his passion is helping his clients leverage technology to build their businesses, with the ultimate goal of preventing them from losing everything in the event of a cyber attack.

Cybercrime is everywhere, and class-action lawsuits are following in the wake. This deadly combination is destroying businesses and lives. Justin has a simple formula that will prevent both.