Hosts:
Justin Shelley - https://www.phoenixitadvisors.com/
Mario Zaki - https://www.mazteck.com/
Bryan Lachapelle - https://www.b4networks.ca/

What happens when your laptop gets stolen and you forgot to lock it? In this episode of UnHacked, our hosts dive deep into endpoint security - the real perimeter of your business in today's digital world.

Justin, Bryan, and Mario explore real-world examples of how endpoints (computers, phones, VPNs, smart devices) are compromised and share practical CEO-level guidance on protecting these critical access points. From VPN vulnerabilities to improperly configured guest networks, learn why 97% of breaches could be prevented with basic security measures.

Key topics include: the four essential endpoint protection checks every CEO should perform, why "it's in the cloud" doesn't mean you're protected, the importance of detection systems alongside prevention, and how to hold your IT team accountable.

Whether you're paying for managed IT services or handling security in-house, this episode provides actionable steps to verify your endpoints are truly protected. Don't wait until your business is the next cautionary tale.

Hosts:
Justin Shelley - https://www.phoenixitadvisors.com/
Mario Zaki - https://www.mazteck.com/

You can't secure what you can't see. In this critical episode of our baseline security series, Justin and Mario expose the dangerous reality of "shadow IT" - the hidden software, devices, and vulnerabilities lurking in your business that could be costing you everything.

From TeamViewer installations left wide open to former vendors still having backdoor access years later, discover why even the most well-intentioned businesses are sitting ducks for ransomware attacks. Learn the shocking truth about unprotected home computers accessing corporate data, outdated backup software creating attack surfaces, and why "we moved to the cloud" doesn't mean you're safe.

This episode delivers actionable steps every CEO needs to take THIS WEEK to identify their digital assets and close dangerous security gaps. Don't wait until you're the next headline - your business depends on knowing what you're protecting.

Hosts:
Justin Shelley - https://www.phoenixitadvisors.com/
Mario Zaki - https://www.mazteck.com/
Bryan Lachapelle - https://www.b4networks.ca/

Episode 76 kicks off a comprehensive multi-part series on baseline cybersecurity with a deep dive into identity and access control. The hosts reveal why courts can now pull your ChatGPT conversations in legal proceedings, and break down the critical difference between passwords and passphrases. Learn why shared accounts are a business owner's worst nightmare, discover the three essential Microsoft 365 security settings most companies miss, and understand why your ego might be your biggest security vulnerability. From conditional access policies to employee onboarding checklists, this episode provides non-technical business owners with actionable steps to protect their greatest asset - their business. The conversation includes real-world horror stories of access control failures and practical solutions for companies of all sizes.

Hosts:

Justin Shelley - https://www.phoenixitadvisors.com/
Mario Zaki - https://www.mazteck.com/

In this episode, Justin and Mario dive deep into why "I didn't know" isn't a legal defense when your business gets hit with a cyber attack. Using a realistic scenario of a 60-employee manufacturing company facing $180,000 in losses from ransomware, they explore how delayed IT decisions can devastate businesses overnight.

The hosts kick off a comprehensive mini-series on cybersecurity governance, frameworks, and compliance, breaking down complex topics for non-technical business owners. Mario shares real-world stories from his MSP practice, including the shocking reality of passwords taped to monitors and the doctor who simply didn't care about security.

Key topics covered: the true cost of cyber attacks, cybersecurity frameworks (CIS, NIST), multi-factor authentication beyond just Office 365, risk assessment strategies, and why business owners must take ownership of their cybersecurity decisions.

Whether your industry is regulated or not, this episode provides the foundation every business owner needs to make intelligent security decisions and protect their greatest asset: their business.

Hosts:
Justin Shelley - https://www.phoenixitadvisors.com/
Mario Zaki - https://www.mazteck.com/
Bryan Lachapelle - https://www.b4networks.ca/

After a two-month hiatus, the UnHacked team returns with hard-earned lessons from 2025 and critical predictions for 2026. When their scheduled guest no-shows, Justin, Mario, and Bryan deliver an unfiltered discussion about the dangerous complacency creeping into business security.

Mario reveals how AI is making business owners go "on autopilot" with potentially devastating consequences, while Bryan predicts the mainstream adoption of passkeys will revolutionize login security. Justin warns about the hidden security risks as AI democratizes coding and development.

Key takeaways include the power of consistency over perfection, why AI can't spell "strawberry" correctly but businesses still trust it with critical decisions, and practical steps to avoid becoming the low-hanging fruit for cybercriminals in 2026.

Perfect for business owners who want to stay ahead of emerging threats while learning from real-world security experiences.

Hosts:
Justin Shelley - https://www.phoenixitadvisors.com/
Mario Zaki - https://www.mazteck.com/
Bryan Lachapelle - https://www.b4networks.ca/

Guest: Faiz Gouri -https://www.linkedin.com/in/faizgouri/ https://modelcontextprotocol.io/ Microsoft Senior Software Engineer

Business owners, your data just became incredibly powerful—and potentially dangerous. Microsoft engineer Faiz Gouri reveals the Model Context Protocol (MCP), the breakthrough technology that lets AI read and analyze your entire business database in plain English.
Imagine asking your computer: "How many customers did we lose last month and why?" or "Which products are trending down and what should we do?" This isn't science fiction—it's happening now.
But here's the catch: While MCP can revolutionize how you access business intelligence, it also creates new security vulnerabilities that could expose everything. Faiz breaks down the real risks, the massive opportunities, and what every business owner needs to know before their competitors get there first.

Key topics: AI data integration, business intelligence automation, cybersecurity implications, and practical implementation strategies.

Hosts:
Justin Shelley - https://www.phoenixitadvisors.com/
Mario Zaki - https://www.mazteck.com/
Bryan Lachapelle - https://www.b4networks.ca/

Guest: Craig Taylor - http://cyberhoot.com/

Your cybersecurity awareness training might be sabotaging your business. Recent studies show traditional "gotcha" phishing tests actually increase clicks and create disengaged, apathetic employees. Craig Taylor, CISSP-certified cybersecurity expert with 30 years of experience and co-founder of CyberHoot, reveals why punishment-based security training fails and how positive reinforcement and gamification can transform your first line of defense. Discover why rewarding good behavior works better than shaming mistakes, learn about the psychology behind effective training, and find out how AI is changing the threat landscape. Plus, get actionable steps to build a security-aware culture that actually protects your business.

Hosts:
Justin Shelley - https://www.phoenixitadvisors.com/
Mario Zaki - https://www.mazteck.com/
Bryan Lachapelle - https://www.b4networks.ca/

Guest: Milan Rogers - Complete Healthcare Business Consulting -https://chcbconsulting.com/

Healthcare practices face the highest cybersecurity costs of any industry - averaging $10.93 million per breach. In this critical episode, healthcare consultant Milan Rogers reveals why medical records sell for $250-$5,000 each on the dark web and shares the devastating real-world impact of the Change Healthcare breach that affected 190+ million patients. Learn about HIPAA's tiered penalty system ($141 to $2.1 million per violation), the three essential security safeguards every practice needs, and why 97% of breaches are preventable with basic measures. Whether you're a healthcare provider or manage any business with sensitive data, this episode could save your company from a catastrophic "game-ending" cyber attack.