Stop Buying Security Tools: The Shocking ROI of One XDR TimelineDrowning in alerts across M365, endpoints, and cloud apps? This video shows why your hybrid security stack is a Rube Goldberg machine that screams and still misses real attacks. You’ll see the four blind spots in Microsoft 365, ide…
MFA is not your shield – it’s already broken. In this episode, we walk the bridge of a real M365 tenant breach, step-by-step, from the attacker’s cockpit to your shattered inbox. You’ll hear how one phishing click plus an AitM proxy and a “benign” OAuth app stole live cookies, hijacked mailboxes, a…
The podcast explains how attackers bypass MFA by abusing OAuth consent instead of stealing passwords. When a user or admin approves a malicious “productivity” app, it gets tokens with scopes like mail or files read and offline_access. That lets the attacker quietly read email, files and chats for m…
Are your dashboards secretly preaching lies? In this episode, we turn data governance into a full-on revival meeting. We name the heresy of ad-hoc share links, stale workspaces and broken RLS that quietly corrupt your “single source of truth”. Then we reveal the doctrine of distribution: org apps a…
Your “Simple” Excel App Is Quietly Wrecking Your Business (And You Won’t See It Until It’s Expensive)Stop wiring Power Apps into spreadsheets and calling it “production.” Every shared Excel file is a glass elevator: silent data loss, last-save-wins concurrency, and zero governance until an audi…
This episode explains how to “calm down” a messy Conditional Access setup by removing blind spots and setting clear boundaries. It walks through three main trust problems—overbroad exclusions, unclear device compliance, and token theft—and shows how to replace permanent exceptions with time-bound a…
AI agents are shipping faster than your change control, and they’re carrying master keys to your data. This talk rips into how LangChain4J and Copilot Studio quietly turn “helpful copilots” into data-leaking, over-permissioned shadow admins with no audit trail. You’ll see exactly how prompt injecti…
In this episode of The M365 Show we investigate a familiar but often misunderstood failure pattern in enterprise AI: GPU costs rise, throughput collapses and latency becomes unpredictable, even though the dashboards look healthy and the models appear to work. Instead of blaming parameters or archit…
Stop burning cycles on manual Java upgrades. In this episode, we walk through a real-world, end-to-end modernization of a legacy Java 8 Spring app to Java 21, and show how AI agents quietly do the work your team keeps postponing—with receipts.You’ll hear how we go from a drifting Java 8-era Spr…
Tired of “smart” AI agents doing dumb, dangerous things in your Microsoft 365 tenant? This episode shows you the one architectural move that turns flaky prompt-powered agents into reliable, auditable systems: a pre-execution contract check that blocks bad behavior before it ever hits your data. We …
Why do so many Microsoft 365 Copilot projects fail — even when the prompts look fine?In this episode, we explain why the real issue is not prompt engineering, but context engineering.Most AI failures are not model failures. They are context failures. When Copilot lacks structured, governed,…
Summary: In this episode I explain why “1,400+ connectors” is a vanity metric and compare Power Automate vs Azure Logic Apps for real enterprise integration. We dig into throttling, throughput, vNet and private endpoints, Azure Arc hybrid, AI agents with Azure Functions, and give you a simple decis…
n this episode, we put Microsoft 365 Copilot’s Workflows Agent head-to-head with Power Automate and ask the uncomfortable question: are your painstakingly hand-built cloud flows now the slow, expensive option? We break down where conversational, intent-driven automation beats traditional designer-d…
In this episode, we break down the myth that “SharePoint lists are a database for Power Apps” and show why that belief quietly kills performance, scalability, and data integrity. You’ll learn exactly where SharePoint list–backed Power Apps fall apart: delegation limits (500/2,000 record caps), the …
You clicked “Create app from Excel,” felt clever, and accidentally migrated your chaos at scale. In this episode, we break down why Excel is a calculator with delusions of grandeur and why Dataverse will punish spreadsheet habits with integrity errors. I tear down the five silent failure patterns t…
Warehouse Snapshots in Microsoft Fabric promise simplified data recovery and historical consistency — but many organizations misunderstand how they actually work. Snapshots are not traditional backups, and relying on them incorrectly can lead to architectural and governance issues.In this guide…
This episode rips the mask off Microsoft’s new “canvas app revival” story and shows what’s actually happening under the hood. It’s not a renaissance. It’s a fork. A split. A deliberate architectural divide between the fast personal Copilot lane and the governed enterprise Power Platform lane. Acros…
Worried your SharePoint or Copilot agent is “hallucinating” data leaks? In this episode, we unpack why that’s almost never the model’s fault and almost always your permissions and scope design. You’ll learn how SharePoint and Microsoft 365 agents actually see your data through Microsoft Graph, why …
This episode rips apart the illusion that “Copilot training” is a workshop, a slide deck, or a single rollout campaign. It starts with a familiar pain: you trained users on Microsoft Copilot, pinned decks, hosted Q&As, ran office hours—and your help desk ticket queue still grew. Users got smarter f…
Your Power Automate email flows aren’t clever automations, they’re HR risk wrapped in HTML. You wire a flow to a “service account,” fight through MFA once, get it working, and decide it’s done. It’s not done. It’s brittle, over-privileged, impossible to audit cleanly, and the first time conditional…
Your SharePoint isn’t messy – it’s a digital landfill you’re paying to host. Dead projects, duplicate “final_v7_REAL_final” files, ghost guest access, broken links, and a Copilot happily hallucinating on rotten content. This video shows you how to turn that chaos into a governed, measurable, adult-…
Python is NOT the language of AI inside the Microsoft stack—and in this episode, I show you why that belief is quietly wrecking your Power Platform projects, inflating defects, and burning your budget. If you’re cramming Python into Power Automate, Power BI, Fabric, or custom connectors as “glue co…
Out-of-the-box Microsoft Copilot sounds like a genius—but in real enterprises it’s a dangerously confident intern. In this episode, we expose where default Copilot quietly fails on the questions that actually matter: “Can I share this file?”, “Who’s on-call right now?”, “Is this HIPAA-safe?” You’ll…
Your Copilot rollout is probably going to flop—and it won’t be the AI’s fault.Most organizations treat Microsoft 365 Copilot like a feature toggle: light up licenses, send a heroic memo, run one training… and three months later MAU is a rounding error. In this episode, we expose the five hidden…
