91. Your AI Integration Is a Lit Match Over a Gas-Soaked Hay Pile
Hosts:
Justin Shelley - https://www.phoenixitadvisors.com/
Mario Zaki - https://www.mazteck.com/
Bryan Lachapelle - https://www.b4networks.ca/
Joshua Holloway - https://7thdi.com/
You've heard "just make it read-only" and figured you were covered. You're not.
Justin Shelley - https://www.phoenixitadvisors.com/
Mario Zaki - https://www.mazteck.com/
Bryan Lachapelle - https://www.b4networks.ca/
Joshua Holloway - https://7thdi.com/
You've heard "just make it read-only" and figured you were covered. You're not.
In Episode 91 of UnHacked, Justin, Mario, Bryan, and Josh pick up their ongoing AI series and get into the real-world security risks hiding inside AI integrations — the ones that don't show up until something goes wrong. Bryan takes the hot seat this week and walks through what happened when he connected Claude to his accounting software through Xero's MCP server. Spoiler: the data it can access tells a hacker exactly who your best clients are and how much they're paying you. That's not a read-only problem. That's a target.
The crew also digs into why "read-only" is only safe at the start, why there's no Control-Z once your AI does something you didn't intend, and why your endpoints are now the biggest vulnerability in your entire security stack. Plus, Brian shares what happened when he tried connecting Claude to DocuSign — and what almost worked.
Key takeaways from this episode:
- Before you add any connector, understand exactly what it's accessing and whether it launches with guardrails in place (Josh)
- If you're not using an integration, disconnect it. Less footprint, less risk. If you're not gonna use it, lose it. (Mario)
- Your employees are already using personal AI accounts with your company data. Put a policy in place and give them a sanctioned tool before shadow IT does it for you. (Bryan)
- Stop using public AI tools for business. Ditch them and get a secure platform — because everything you put into a free tool, you lose. (Justin)
This is Part 2 of the team's multi-part AI series: basic chat setup, integrations (that's right now), and vibe coding is coming next. The series follows a crawl-walk-run framework designed to help business owners actually implement AI without burning it all down.
Not sure where to start? Go to unhackmybusiness.com, click any episode, and use the action cards below the player to ask a question or request a free consult.
Creators and Guests
Host
Bryan Lachapelle
Hi, I’m Bryan, and I’m the President of B4 Networks. I started working with technology since early childhood, and routinely took apart computers as early as age 13. I received my education in Computer Engineering Technology from Niagara College. Starting B4 Networks was always a dream for me, and this dream became true in 2004. I originally started B4 Networks to service the residential market but found that my true passion was in the commercial and industrial sectors where I could truly utilize my experience as a Network Administrator for a large Toronto based Marine Shipping company. My passion today is to ensure that each and every client receives top of the line services. My first love is for my wonderful family. I also enjoy the outdoors, camping, and helping others. I’m an active Canadian Forces Officer working with the 613 Fonthill Army Cadets as a member of their training staff.
Host
Mario Zaki
During my career, I have advised clients on effective – and cost-effective – approaches to developing infrastructure that fosters productivity and profitability. My work has provided me with a broad-based knowledge of business from the inside, with an expertise in areas that go beyond IT alone, ranging from strategic planning to cloud computing to workflow automation solutions.
