Podcasts about SharePoint

What happens when a CTO and a CIO of a global tech company sit down together to talk about AI? That's the starting point of today's episode, where I'm joined by Jeremy Ung, CTO at Blackline, and Sumit Johar, the company's CIO. Rather than chasing the hype, we focus on what AI really means for executive decision making, governance, and business outcomes. Both leaders open up about how their partnership is blurring the traditional lines between product and IT, and why the board is demanding answers on topics that once sat deep in the technology stack. Jeremy and Sumit explain why AI is not just another SaaS subscription and why expectations have changed so dramatically. For decades, technology was seen as predictable, a rules-based engine that followed instructions without error. AI feels different because it speaks, reasons, and sometimes makes mistakes. That human-like experience is what excites employees, but it is also what unsettles them. This is where education and governance come in, helping teams learn how to question, verify, and trace AI outputs before they make critical decisions. We also explore how AI agents are beginning to work across tools like SharePoint and email, raising new compliance and security questions that CIOs and CTOs must answer together. The conversation turns to AI sprawl, a problem that mirrors the SaaS explosion of a decade ago. With new AI tools emerging every week, enterprises risk overlapping investments and fragmented initiatives. Sumit shares how Blackline uses two governance councils to keep projects aligned. One is dedicated to risk, pulling in voices from legal, security, and privacy. The other is focused on transformation, evaluating whether requests for new AI capabilities make sense, or whether they duplicate what already exists. The signal that sprawl is taking root, he says, is when requests for tools suddenly jump from a few each month to a dozen. We also tackle the build versus buy dilemma. Budgets haven't magically increased just because AI is hot. Jeremy argues that building only makes sense when it reinforces a company's core advantage. Everything else should be bought, integrated, and kept flexible so that organizations can pivot as the AI landscape changes. Both leaders stress that trust, auditability, and value delivery must sit at the center of every investment decision.  

Marijn for once, does something useful (in Steve's house).A new Modern Workplace workshop arises, so that means the boys will be live workshopping (aka pisstaking) around it. Marijn tells his Copilot horror stories. The boys end with such a unique whisky that only 1 bottle exists.

CISA furloughs most of its workforce due to the government shutdown. The U.S. Air Force confirms it is investigating a SharePoint related breach. Google warns of a large-scale extortion campaign targeting executives. Researchers uncover Android spyware campaigns disguised as popular messaging apps. An extortion group claims to have breached Red Hat's private GitHub repositories. A software provider for recreational vehicle and power sport dealers suffers a ransomware breach. Patchwork APT deploys a new Powershell loader using scheduled tasks for persistence. A Tennessee Senator urges aggressive U.S. action to prepare for a post-quantum future. Cynthia Kaiser,  SVP of Halcyon's Ransomware Research Center and former Deputy Assistant Director at the FBI's Cyber Division, joins us with insights on the government shutdown. A Malaysian man pleads guilty to supporting a massive crypto fraud. Protected health info is not a marketing tool.  Remember to leave us a 5-star rating and review in your favorite podcast app. Miss an episode? Sign-up for our daily intelligence roundup, Daily Briefing, and you'll never miss a beat. And be sure to follow CyberWire Daily on LinkedIn. CyberWire Guest Cynthia Kaiser,  SVP of Halcyon's Ransomware Research Center and former Deputy Assistant Director at the FBI's Cyber Division, joins us with insights on the government shutdown. Selected Reading Shutdown guts U.S. cybersecurity agency at perilous time (CISA) Air Force admits SharePoint privacy issue; reports of breach (The Register) Google warns executives are being targeted for extortion with leaked Oracle data (IT Pro) Researchers uncover spyware targeting messaging app users in the UAE (The Record) Red Hat confirms security incident after hackers claim GitHub breach (Bleeping Computer) 766,000 Impacted by Data Breach at Dealership Software Provider Motility (Security Week) Patchwork APT: Leveraging PowerShell to Create Scheduled Tasks and Deploy Final Payload (GB Hackers) GOP senator confirms pending White House quantum push, touts legislative alternatives (CyberScoop) Bitcoin Fixer Convicted for Role in Money Laundering Scheme (Bank Infosecurity) Nursing Home Fined $182K for Posting Patient Photos Online  (Bank Infosecurity) Share your feedback. What do you think about CyberWire Daily? Please take a few minutes to share your thoughts with us by completing our brief listener survey. Thank you for helping us continue to improve our show. Want to hear your company in the show? You too can reach the most influential leaders and operators in the industry. Here's our media kit. Contact us at cyberwire@n2k.com to request more info. The CyberWire is a production of N2K Networks, your source for strategic workforce intelligence. © N2K Networks, Inc. Learn more about your ad choices. Visit megaphone.fm/adchoices

Breach notification letters set to flood North America's mailboxes New bug in classic Outlook only fixed via Microsoft support Air Force admits SharePoint privacy issue over breach Huge thanks to our sponsor, Nudge Security AI notetakers like Otter AI spread fast. In fact, one Nudge Security customer discovered 800 new accounts created in only 90 days. Viral AI notetakers introduce a slew of data privacy risks by gaining access to calendars and adding themselves to every meeting. Nudge Security can help. Within minutes of starting a free trial, you'll see every AI app, account, and integration, even those created in the past. And, smart automation helps you clean up unwanted accounts and guide users towards approved alternatives. See how you can regain control today at nudgesecurity.com/stopotter  

This is episode 307 recorded on September 19th, 2025, where John & Jason continue talking about the Microsoft Fabric September 2025 Feature Summary including the Data Agent improvements, Merge Transact SQL in Data Warehouse, new Real-Time Intelligence Features, and much more. For show notes please visit www.bifocal.show

According to research from Gartner, buyer uncertainty leads to a 30% reduction in a buyer's ability to make a purchase decision at all. So, how can you create a buying experience that builds confidence, drives engagement, and ultimately improves win rates? Riley Rogers: Hi, and welcome to the Win-Win podcast. I’m your host, Riley Rogers. Join us as we dive into changing trends in the workplace and how to navigate them successfully. Here to discuss this topic is Annabel Hosking, Global Sales Enablement Manager at LexiNexis Risk Solutions. Thank you so much for joining us, Annabel. Just to kick us off, I’d love if you could tell us a little bit about yourself, your background, and your role. Annabel Hosking: Hi everyone. I currently work as a global sales network manager at LexisNexis Risk Solutions within the data services brand, so I’m very fortunate to work across. Four different brands that will work within the data space. And within my role, I lead the sales enablement team. We’re a global team. We’re a small team, small but mighty, and we work across methodology enablement. So all about our sales methodology, how we go to market, how our customers. Experiences. And I also work across all of our onboarding as well as all of our tech stack as well. So my role is really varied. I’m very lucky I get to work with some really great people across the world. And yeah, it was never a dull moment, I’ll say. RR: Isn’t that always the case? Small scrappy teams. Wearing a lot of hats and it’s always exciting. We’re super excited to have you here because I know you have experience spanning a lot of core parts of enablement, so I think there’s a lot to dig into there. Could you walk us through, because I think everybody’s story is different, maybe your professional journey and then how that background led you to enablement, and then how it’s kind of shaped your approach to enablement today. AH: Absolutely. I have what I like to think of as, and it comes from a podcast I’ve been listening to recently, it’s called Squiggly Careers, and I feel like my career was like a very squiggly career of how I ended up in enablement, because I did not at school think, oh, I’m gonna become a. Sales enabler whatsoever. But my background is very much actually in content management and platform management and communication. And how I moved into enablement was I was actually hired in my current company and one of the brands, the beginning of the pandemic. To essentially deliver enablement content. So I worked on delivery of content, content management, delivery of our Highspot system as well. And that was how I started to move into the enablement realm. And I will say it was completely unknown to me originally. I. Wasn’t even clear that I was doing sales enablement per se, but at least a good 18 months in my role here. I thought I was just delivering content and it wasn’t until working with vendors like Highspot where. That term enablement started to come out and it started to change, I suppose, how I delivered my content and it’s really come into its own where now I’m very fortunate where I’m have on my team who does phenomenal content and through my experience. It’s really understanding who my audience is, understanding how they like to consume their enablement, but also how can we consistently stay, um, ahead of what the trends are and how people like to change, how they like to consume, what they’re seeing A meeting was held by our team on Monday with the client team for the Zephyr project to review the status of the forthcoming Q3 launch campaign. The campaign, originally built as a omnichannel activation across CTV, paid social and programmatic display, is now subject to substantial midstream revisions—following newly surfaced client directives. The feedback introduce a material shift in strategic framing under a compressed delivery window. There will be a pivot as Zephyr deprioritizing the performance-tracking narrative to favor of a broader “everyday wellness and inclusivity” story which will require an immidiate reframe of our messaging, architecture and associated visuals. To addressed the revised scope, I've assigned immediate follow-ups actions across the team. Visual art will lead conversations with post-production around stock content intergration. Ad sales will recalibrating the media plan in light of the repositioned messaging and will coordinate with DSPs to avoid penalties related on insertion order delays. Copy desk is to be tasked with stripping all unsubstantiated medical claims from copy, implementing the new CTA and managing a parallel review with legal. We conduct a daily internal stand-up each morning through end of week to identify blockers. The next client check-in is scheduled for July 3rd, where we preview asset revisions and confirm compliance milestones. Final go/no-go is slated for July 7th at 17:00 PDT. We are proceeding with all mitigations in parallel, and escalated any dependency delays as they surface. day to day, because that has vastly changed as well in the last six years. So. Thankfully my background and being adaptable, working globally, working with a lot of different people has really helped shape that. Because you know, I always say if there’s one thing, so my career of, you know, working in content management and working with platforms, working in technology. It has really shaped who I am today because it’s all really embedded in those user Jo Journeys user stories, and that translates into what I hope is a good enablement experience. RR: Well, amazing. I love the phrase squiggly career. I think I am certainly going to have to steal that one, and I think it’s such a good way to describe how so many folks end up at enablement. You start in one place and you bring all of that knowledge that you acquire in that early discipline. Into enablement programming that’s more effective for it. And thinking about, you know, your background in content management and creating content and all of that fun stuff, I’d be curious to know how they kind of come together. So you recently spoke at Spark EA and highlighted the importance of the buying experience, so. What are you seeing as some of those biggest challenges in engaging today’s buyers and how are you addressing them? Maybe through content, maybe through enablement? What does that look like to you? AH: I mean, I think the buying experience today in 2025 is unlike anything we have seen. Ever. It is a completely different world for both salespeople and for buyers as well. And what I’m seeing is, you know, buyers are not only overwhelmed with information, they’re also inundated with it. There is so much content out there for a buyer to consume and not just through their sales individual. This is content that they can easily go and either get themselves or with things like AI and Copilot, they can have. Harness and surface to them. So that makes the role of the seller that much harder because we don’t always know what the buyer is viewing and whether it’s of value to them, and that means that their time, the buyer’s time is so precious. We are seeing that, you know, buyers, and I mentioned this when I was at Spark, there are so many people now involved in the buying decision. We’ve moved, I think it was from about three people a few years ago. We’re now at. Six to 10 people. And if you think about it, those are all new personas that sellers have to understand, have to get to know, potentially map out, connect with. And what’s really unfortunate is we’re also seeing that for a lot of sellers, our buyers are actually taking. Long to make a decision that they kind of get to a point of no decision. We’re at this decision fatigue. We’re a information fatigue, we’re a decision fatigue. And I think on the whole, our buyers are they tired. And I can talk as a buyer, myself as a customer, it’s really exhausting. And so what we try to encourage where I am in data services is sales have to differentiate themselves. If you wanna get in front of buyers nowadays, you have to think what are you bringing to the table that’s different from them? That’s a unique experience, that’s an experience that makes ’em feel important, makes ’em feel, listened to, makes them feel like they really can understand why we are doing business together. And that starts in how we as enablement get that content to our salespeople. If we are not able to identify the value that we are bringing as brands into that conversation, it becomes really hard for sales to know how to articulate that to the buyers as well. And so. As enablement, we are that bridge between the, a lot of other functions and the sales teams and the commercial teams of making sure that value identification is really clear. So by the time it reaches the buyer, they absolutely know why they’re having that conversation. They absolutely know what the value of that conversation is going to be. And that really does start with how are you getting that information into the hands of your salespeople? How are you making that content? Really accessible, really palatable as well. I think traditional enablement, we defer to a lot of very wordy, very long documents, which from experience, no salesperson really wants to read or look at or go through. So just as we’re seeing the buyers experience evolve, the enablement experience has to evolve as well in order to stay ahead of that and to give them the best experience to our salespeople. RR: I think you’re absolutely right on all of that. It is only getting more difficult, and as things change externally, you need to adapt internally. And so kind of thinking about how you’re making that change, and to your point, how you’re distributing materials in a way that is usable and usable for a sales audience that maybe isn’t gonna read 10 pages of written content. What would you say then is kind of the unique value for an enablement platform when it comes to helping sellers? Create and deliver these impactful and differentiated buying experiences that you’re looking for? AH: Oh, huge value, absolutely huge value. The power of enablement comes in the ability to be able to streamline that messaging. But in order to do so, we do need a channel to do that, you know, and that can’t exist. In ad hoc documents that you just hold on someone’s computer. Our journey with Highspot started many, many years ago. I think it was about sort five or six years ago, very early days for Highspot even themselves. And we set out with a mission statement, which was that Highspot would be a single source of truth holding up UpToDate relevant sales content. And I am happy to say that five years later we still maintain that mission statement. The platform has got bigger. There’s more people, there’s more content, as I’m sure you can imagine, but we have stuck to our statement that it is a single source of truth. It is up to date, it is valid information that sales are getting, but that all comes from having a channel with a witch to push that through to the sales audience. It just makes your role as an enabler that much easier, you know, day to day. As you know, we spoke about at the top of the call is no one day looks the same for enablement. It will always be different. There’ll be different priorities. There’ll be different go to market, there’ll be different initiatives. But if you know that at least you have somewhere that you can reliably put information in front of sales and then see how it’s being used, how it’s being impacted, how the seller is using it, how the buyer’s consuming it. Your role as enablement starts to become just a little bit easier. And so I would say for anyone who’s within the enablement sphere and looking at their tech stack, having a solid CMS is really gonna be a, a strong cornerstone of that. RR: I love the perspective on an enablement platform as kind of a source of consistency. Almost everything is changing. Your day in enablement is different. Buyers are behaving differently. Reps need to do different things to engage ’em, but at least you have one place that is reliable. But I will say, I know that. Strong buying experiences aren’t necessarily contingent just on technology. They also require a lot of hard work internally. And as one of the things that you, I’ve seen you mention on LinkedIn is that a core foundation of LexisNexis Risk Solution Services is ensuring that customers really recognize the value that you provide. And that kind of starts internally. With sales and leadership alignment. So I’m curious, how are you aligning those internal stakeholders so that way your teams are set up for success when they’re shaping those buyer experiences externally AH: with immense difficulty, I’ll say, and I think any enabler that sits here and says that it’s an easy job is lying through their team. It is, I think, one of the hardest, the hardest roles. Of enablement is getting everybody aligned, getting everyone to agree, and especially I work, as I say, across a lot of businesses. You know, I have four MDs, I have four heads of sales, I have a lot of sales leadership and a lot of sellers, and I’m sure that’s the case for a lot of people working in large enterprise organizations, stakeholders. Can be difficult to align, especially when you have a lot of different priorities and a lot going on. But what I would say is, is really identify what is the core value that you as a company or you as a business, as a brand can all agree on. Our MD has this thing, he says that all of our kickoffs, which is, you know, value is not on the lips of the seller, but is in the eyes of the customer. And that mission statement as it were. Has sort of brought all the stakeholders together to agree that even if there’s misalignment or disagreement on how we do things, we can all agree that we want to give the best experience for our customer and the best value to our customer. And so for enablement, it’s then saying, okay, so we have this mission statement, we have this belief that we want to be customer centric. We want to be value focused. What does that actually mean? For each internal stakeholder, what’s important for them? What are the metrics that they’re looking at day to day, month to month, quarter to quarter, and how is what we are doing with an enablement? How is it actually starting to impact that? Where is their focus? What are they going after? And the only way you are really gonna get those answers is by talking to your stakeholders. If you’re an enablement and you’re not a people person, it’s probably gonna be quite a tough job because a lot of our job is just talking. It’s talking with people, talking, you know, at people, sometimes listening to people, taking in information. I would say spend time with your stakeholders. You are there to listen first and foremost. You can’t solve every single problem that they come up with, and you shouldn’t try to. But if you can really understand what their world looks like and what’s really important to them, and what are the behaviors, what are the metrics that are gonna move the dial for your stakeholders? You’ll eventually start to map out, which is what we did. But actually a lot of them start to align. And even though they might be saying different things, the reality is that for a lot of sales leadership, they want similar things. You know, they want to have better pipeline hygiene, they wanna have higher wind rate. They wanna see, you know, large opportunity amounts more in the qualifying, the identify stage, that early sales stages, they wanna increase, you know, the ramping of new starters. We start to get these similar uniform metrics and so then we as enablement can start to work that into our strategy. Although we as enablement can really start to build what we are working on to align with our internal stakeholders and start to deliver for them. RR: I really appreciate that you had some really tactical and helpful tips in there, but also that you led with, this is not easy. That’s the big part, is there’s so many kind of lofty initiatives that you are like, how do I even tackle this? And it sounds so overwhelming. So I appreciate the acknowledgement there. Kind of wanna shift gears a little bit maybe towards some of the capabilities that you’re using and finding some success with. So one of the things that we’ve heard is that digital rooms have been a lever for kind of creating those differentiated buying experiences. So what are some of your best practices for creating effective digital rooms and then maybe getting your teams to leverage them. AH: Mm, absolutely. We have a brand who is using digital rooms really fantastically, and they’re teaching our other brands how they’ve used them. So, you know, I, I wholeheartedly agree they can make such a difference in the buying experience and if you’re not using them, you should a hundred percent be looking into where you can use them. So I would say when you are looking to start with a digital room is really understand. Why are you doing this? Like what’s the purpose of actually taking the time and the effort to work probably with your product marketing team or with your marketing teams as a whole to put together something that looks really professional. Looks on brand, but is also really easy for sales to go in and start to customize. I would recommend not having sales do it fully themselves. They have very busy day jobs, and I think if you’re gonna say to any sales person, okay, over to you to go and create this, you might run. Some adoption issues, however, working, you know, this is where your cross-functional working really becomes essential, is working with the individuals who can make good content, who can deliver good, uh, visuals, good framework for the salespeople to literally just be able to, within their sales cycle, adopt this, lift it, and send it to the customer. Because then we start to see, okay, where are we actually starting seeing the customer impact? Has it changed how the customer engages with the content? Are they revisiting? And so what we’ve seen is we’re actually looking at, you know, we see a much higher engagement rate when we have the customers viewing content through a digital room as opposed to simply. Static content, and we can see that obviously with the Highspot metrics, which you know, are a real gold dust when it comes to that. We can also see that, you know, we have repeat visits, so something that we wanted to drive was customers coming back and revisiting the content rather than just clicking in, seeing it once and then never viewing it again, was actually having that revisit of them continually coming back to their individual microsite, if you will. You know, we spoken a lot about a differentiated. Differentiated buying experience. And that can be challenging for salespeople because unless you are fortunate enough to only have you know four or five accounts, the likelihood is your book of business is probably quite vast. And so the expectation that you are consistently offering a differentiated variance for every single customer is just not sustainable. And so using these digital rooms, you are able to. Have, you know, a differentiated experience that is scalable. That it makes a buyer feel like it’s a really individualized experience when the reality is for sales, it’s probably quite an easy thing for them to put together, but it does take some uplift front end with your other teams and your cross departmental functions. RR: Yeah. I wanna double click it as something you said there, which was, if you’re asking reps to build it themselves, you’re probably not gonna see much in the way of adoption. I, I kind of wanna. Speak about that idea of what you can do to drive adoption more broadly. Because looking at the data, you’ve achieved a really impressive 82% recurring usage rate in Highspot. So in addition to that kind of approach to digital rooms, how are you driving adoption more broadly across your revenue teams, whether that’s internal reps, partners, whomever, what are you thinking about that’s helping you? Get people in the platform and keep them there. AH: Yeah. That’s been, you know, a metric we’re very proud of. And it’s been something where, you know, going back to what I said earlier, which is Highspot was set out to be the single source of truth. As soon as we turned on Highspot, for lack of a better word, we pretty much turned off every single other site. So there was nowhere else. For sales to go to get this information apart from this one platform. And I’ve seen this done various ways. I’ve seen people where they have, you know, duplicates and, oh, we’re doing a slow migration. We’re gonna keep SharePoint for a while, and then we’ll have Highspot as well. And you know, there’s no right answer to this, but ultimately, if you are looking to put out a message that this is your single source of truth, this is where you need to go to speak to sales. Our adoption has come because we really drove that and we continue to drive that. If you want content in front of sales, if you want success stories in front of sales, whatever it might be, it has to live in Highspot because there just simply isn’t anywhere else to go. And this is for a couple of reasons. The main one being that, you know, the actual management of the content is far easier. And if you think about the trickle down effect, the user needs the best experience possible. And so if they have all of this disjointed experience of going to multiple places to find multiple pieces of content that look different, that sound different, they’re not getting the best experience and they’re probably not gonna come back to Highspot. So for us, it’s really making sure I’m maintaining. The consistency in the user experience, and that comes from feedback as well. So we will regularly have feedback forums with our salespeople, with our sales leadership, and we’re very open within our team to hearing, listen, this is actually getting quite complicated to navigate. I dunno how to find content. And so then we as a team, as an enablement team, go, okay, what do we need to do to make it easier? How do we start to surface more content directly in front of our users? Because if they’re not having a good experience, then we are not doing our role as enablement. And you know, you don’t have to, if you do have a large sales team, you don’t have to have that verbatim feedback. You can use things like the search reports in Highspot to see, you know, what are people searching, what are the terms they’re looking for and the pieces of content, how can you start to surface that in front of them in a much easier way? Putting it on the homepage, putting it into their specific areas, really thinking about how you. Manage, maintain and govern that content to give your users a really solid experience. And that’s what we’ve done and it’s reflected, as I say, in the adoption and in the revisit rates as well. RR: I really like that you called out that search results report because I think that’s such a great way to kind of get a pulse on your people without having to go dig around and have a bunch of conversations. So thinking in addition to that, how do you leverage data and insights in the platform to help you inform and improve the programs you’re leading? AH: Yeah, absolutely. I mean, I have actually had to learn to, I suppose, step away from data slightly. Um, so that’s been feedback I’ve had as I’ve moved more into a, I suppose a leadership role is actually the data can’t always tell the whole story, although my heart and enablement goes, yes, it can, it can. But yeah, the. The, the scorecards that we have in high spots. So really for us, you know, looking at things like that play scorecard, we deliver a lot of sales plays. They’re the best way to get our enablement in front of people. They’re enjoyed and they’re liked by sales. But I can see very clearly what is the percentage of my audience that is viewing this play? How long are they spending? You know, what are the outcomes of the, you know, the business impact? At what point in the sales cycle as well? If there’s external content in there, for example, the marketing collateral, are they deploying this collateral and is it actually having any impact on the customer? Those sorts of insights. You just do not get anywhere else within any other content platform that we have. And so when it’s come to say, onboarding our marketing team or our product team into contributing content, being able to give them this insight helps them understand that the work they’re doing on building the content, maintaining the content is actually worth something because we can directly see the correlation with business outcome, which has always been one of our biggest challenges. Beyond that, our company does a lot with actually pulling the data out of Highspot. So we make use of the Highspot data lake, and we’ve actually pulled that into our own BI platform where we’ve started to look at things around, you know, how many channels and how much activity per opportunity are we seeing within sales. Something at the moment that we’d really drive on. Going back to that differentiated experience for the buyer is looking at a multi-channel approach when it comes to how we prospect and how we outreach. And that really started from using information that came from Highspot, looking at information that comes from Salesforce and going, okay, how many channels do people currently use when they’re outreaching? We’re only maybe seeing a couple, you know, one or two channels. But we know in today’s buying world that it’s gonna take between six to eight. Channels to get through to a buyer and to actually have a meeting. So what can we do to start to move the dial and start to build our programs across driving that? And so that’s how we use data and enablement is actually saying, what are we seeing today? What are the outcomes we want to see in the next quarter? What do we need to do in order to get there? There’s always a lot of talk on LinkedIn. I always see it about, you know, you need to be data driven and enablement. If you’re not offering insight, if you’re not offering analytics, you’re not doing your job. And that can be kind of hard to hear when actually, I think there’s almost too much data sometimes, and it can be quite complicated to understand. And this is why I, I personally really like how it is viewed in Highspot because the scorecards make it very accessible, very easy to consume, but also it doesn’t matter whether you’re an enabler, a seller, or a senior leader, you can be presented a scorecard and you can very quickly see what you need to get out of that and what your conclusions you’re drawing from it. RR: Yeah, I think it’s that. The difficulty of democratizing data into meaningful, actionable insights is sometimes impossible. You have so much at your disposal, and so making it useful is sometimes a challenge, so I love hearing that. You’re finding a way to use it well and inform your programs well. So we’ve heard a little bit about engaging buyers driving adoption. Tracking your impact and seeing how it’s kind of helping you do the things that you need to. So just one last question for you to close this out. For other enablement leaders looking to improve the buyer experience in today’s very digital first world, what is the biggest advice you would give ’em? AH: Oh, that’s a great question. I would say if you are in a position where you’re fortunate enough to be the buyer, think about how you want to experience that life cycle. You know, as someone who is a buyer day to day, as well as an enabler. You know, I always ask myself through, when we do our methodology onboarding, I will go and speak to the sales people about actually what it’s like from a buyer’s experience today, and that really helps. Give them that insight into what is sometimes a little bit of an elusive world that we know the buyer’s world, the buyer’s experience. So I would say for other enablers is how do you like to speak to your vendors? How often you know, what makes them stand out? What makes them noisy in your inbox, you know? When do you get those emails or outreach that you think, wow, I really wanna continue a conversation with that person. What did that person do? How can you bring that into your go to market? How can you bring that into your sales team if you’re an enabler who is perhaps not in the buying cycle? I would say. Spend time with your salespeople, really understanding the customer experience, and there are many ways that we can do this. Nowadays with technology, obviously everybody’s got call recording software, so we have a lot of our sales calls recorded. If you as an enabler are not digging in and really understanding what’s happening in those customer conversations, it’s going to be harder for yourself to be able to really get into the world of salespeople. So I would say, you know, you really need to experience. What the customer is going through. And that can be simply by having a look at those calls. Where were they successful? Where was there a positive outcome? Where did the buyer enjoy it? But then also where did the buyer sometimes mention things that were pains to them or where they would like to see improvements? What were the questions? That is where we really need our enablers to be on the front foot of really digging into the customer experience and almost spend as much time as you know with your customers, as you do with your salespeople, to really get that insight. RR: I think that’s fantastic advice to close on, is to put yourself in the buyer’s shoes, understand what they’re going through, and know for yourself what good looks like to you and drive that in your own business. So thank you again, Anabel. This has been a wonderful conversation full of all sorts of good insights that I really can’t wait to share with our community. I appreciate you joining us so much. AH: Thank you so much. Thank you so much for having me as well. Fantastic questions. RR: Amazing. Well, to our listeners, thank you for listening to this episode of the Win-Win podcast. Be sure to tune in next time for more insights on how you can maximize enablement successful Highspot.

In this week's episode, we talk about our experiences with SharePoint and Project. Now that Project Online is going away, as well as SharePoint 2013-style Workflows, we discuss the options for moving to more modern capabilities, and why these are still very valid tools. (00:00) - Intro and catching up.(03:58) - Show content starts.Show links- Project Online is retiring- SharePoint 2013 Workflow retirement- SharePoint 2013 Workflow Assessment Tool- SharePoint Workflow ManagerFeedback- Give us feedback!

In this episode of Reboot IT, host Dave Coriale, President of DelCor, is joined by Andrew Leggett, Director of Cybersecurity, and Chris Ecker, CTO, to explore the evolving cybersecurity landscape for associations and nonprofits. They discuss the shift toward phishing-resistant MFA, the impact of AI on cyberattacks, and the importance of layered security strategies. The conversation emphasizes how organizational culture, user training, and smart technology choices work together to protect sensitive data and systems. Themes and Topics: Phishing-Resistant MFA Traditional MFA tokens are vulnerable to interception during phishing attacks. Passkeys and QR codes offer encrypted, device-specific authentication. User experience improves with passwordless logins and fewer steps. AI-Enabled Cyber Threats AI lowers the barrier to entry for attackers by automating phishing and scripting. Tools like Copilot can be used maliciously to locate sensitive data quickly. Organizations must train users to monitor prompt history and unusual activity. Layered Security Strategy Effective cybersecurity requires training, monitoring, and prevention tools working together. Threat detection systems vary in effectiveness depending on configuration and attacker location. Layering includes phishing-resistant MFA, identity monitoring, and user education. Cybersecurity Culture & Training A top-down approach is essential; executives must model secure behavior. Encouraging users to report suspicious activity without fear of blame is key. Training must be ongoing and integrated into organizational culture. Copilot and Oversharing Risks Copilot indexes all tenant data and honors existing permissions, but overshared files are vulnerable. Organizations must audit and remediate permissions in SharePoint, OneDrive, and email. Misconfigured access can expose sensitive data like salary or ACH info. Cyber Insurance & Compliance MFA is already a requirement for most cyber insurance policies. Phishing-resistant MFA may soon become a standard requirement. Organizations without it may face higher premiums or denial of coverage. 

This is episode 306 recorded on September 19th, 2025, where John & Jason talk about the first half of the Microsoft Fabric September 2025 Feature Summary including the Fabric Multitasking UI Upgrade, Variable Libraries going GA, User Data Functions Going GA with Major Enhancements, the ability to query mirrored databases in spark notebooks, and much more. For show notes please visit www.bifocal.show

The newest agents for Microsoft 365 Copilot users can now act as virtual members of your team, helping you stay organized, informed, and secure while you work. Watch how these collaborative agents partner with you in real time across your everyday apps. Knowledge Agent streamlines SharePoint by auto-tagging files, retiring outdated pages, and even drafting new content so your sites stay current and searchable. Facilitator Agent in Microsoft Teams keeps meetings on track—managing agendas, taking notes, assigning follow-ups, and capturing decisions automatically. Agents in Teams channels summarize conversations, generate status reports, and handle routine updates so projects move forward without missed details.  Agents in Viva Engage communities draft accurate, data-driven responses to questions, connecting colleagues to the right information and reducing response times. ► QUICK LINKS: 00:00 - Collaborative agents in Microsoft 365 Copilot 01:08 - Knowledge Agent in SharePoint 02:29 - Keep SharePoint site up-to-date 03:41 - Create pages and new posts in SharePoint 04:47 - Agents in Microsoft Teams channels 06:34 - Facilitator in Microsoft Teams meetings 07:58 - Agents in Viva Engage communities 09:12 - Wrap up ► Link References Find out more at https://aka.ms/HumanAgentTeams ► Unfamiliar with Microsoft Mechanics? As Microsoft's official video series for IT, you can watch and share valuable content and demos of current and upcoming tech from the people who build it at Microsoft. • Subscribe to our YouTube: https://www.youtube.com/c/MicrosoftMechanicsSeries • Talk with other IT Pros, join us on the Microsoft Tech Community: https://techcommunity.microsoft.com/t5/microsoft-mechanics-blog/bg-p/MicrosoftMechanicsBlog • Watch or listen from anywhere, subscribe to our podcast: https://microsoftmechanics.libsyn.com/podcast ► Keep getting this insider knowledge, join us on social: • Follow us on Twitter: https://twitter.com/MSFTMechanics • Share knowledge on LinkedIn: https://www.linkedin.com/company/microsoft-mechanics/ • Enjoy us on Instagram: https://www.instagram.com/msftmechanics/ • Loosen up with us on TikTok: https://www.tiktok.com/@msftmechanics  

En este episodio los anfitriones e invitados discuten la naturaleza ineludible de la ciberinseguridad en la era digital, señalando que siempre se vivirá con la incertidumbre de la ciberinseguridad y que no habrá un escenario de seguridad al 100%. Utilizan la analogía de conducir un coche para explicar la necesidad de una concienciación constante, cultura y herramientas, comparándolo con la necesidad de medidas de seguridad y protección para conducir. Los temas clave cubiertos incluyen un reciente ciberataque a servidores de Microsoft que ha comprometido infraestructuras clave o críticas en Estados Unidos y Europa. Esto se explica a través de una vulnerabilidad en la versión de SharePoint, una herramienta interna utilizada para compartir ficheros en organizaciones, no en la versión (365). Además, la conversación aborda las responsabilidades legales en casos de fraude bancario, citando específicamente una noticia (publicada por La Voz de Asturias) sobre un fallo judicial donde la Audiencia Provincial de Oviedo determinó que Unicaja tenía que devolver 18.000 € a un cliente. Esta restitución se debió a la falta de medidas de protección adecuadas del banco contra el por SMS, responsabilizando a Unicaja por no proteger adecuadamente el proceso de autogestión. Finalmente, un segmento con un representante de Panda Security (ahora WatchGuard) ofrece un balance provisional de mitad de año (2025) sobre las amenazas de ciberseguridad. Este balance enfatiza el aumento de ataques más sofisticados y automatizados, impulsados por la inteligencia artificial. Entre las amenazas destacadas se encuentran el perfeccionamiento de las técnicas de (incluyendo el o hiperpersonalizado) y la creación de "extremadamente realistas". Las recomendaciones para el consumidor incluyen el uso de herramientas como una VPN (para crear un túnel cifrado, especialmente útil en WiFis públicas) y reforzar la autenticación, usando contraseñas robustas y activando la verificación en dos pasos en cuentas sensibles. Twitter: @ciberafterwork Instagram: @ciberafterwork Panda Security: https://www.pandasecurity.com/es/ +info: https://psaneme.com/ https://bitlifemedia.com/ https://www.vapasec.com/ VAPASEC https://www.vapasec.com/ https://www.vapasec.com/webprotection/

The hosts and guests discuss the inescapable nature of cyber insecurity in the digital age, using the analogy of driving a car to explain the need for constant awareness and protective measures. Key topics covered include a recent Microsoft cyberattack compromising critical infrastructure, which is explained through the vulnerability in the on-premise version of SharePoint. Additionally, the conversation addresses the legal responsibilities in banking fraud cases, specifically citing a ruling where Unicaja had to reimburse a customer due to inadequate security measures against SMS phishing. Finally, a segment with a representative from Panda Security (now WatchGuard) offers a mid-year balance of cybersecurity threats, emphasizing the rise of sophisticated, AI-powered attacks like personalized phishing and deepfakes, and provides consumer recommendations such as using a VPN and strong authentication. Twitter: @ciberafterwork Instagram: @ciberafterwork Panda Security: https://www.pandasecurity.com/es/ +info: https://psaneme.com/ https://bitlifemedia.com/ https://www.vapasec.com/ VAPASEC https://www.vapasec.com/ https://www.vapasec.com/webprotection/

Get featured on the show by leaving us a Voice Mail: https://bit.ly/MIPVM

This episode we discuss a huge update to managing content on SharePoint site, powered by Knowledge Agent. Yes, Copilot will start to do more than help us find the words to put on a page. It will also help us organise our document libraries with metadata and use it when we ask Copilot questions. Teams Channels Agent will create summaries of conversations, file activity and even task assignments in Planner, and publish the summary as a Loop in the channel. Then ask the agent questions about the project. What other practical updates are in store for M365 Copilot? 0:00 Welcome 3:28 Introducing Knowledge Agent (preview): AI-powered content optimization for SharePoint and Copilot - MC1155312 14:19 Microsoft Teams: Channel Agent - MC1155329 23:49 Microsoft Copilot (Microsoft 365): Use Copilot with OneDrive files in File Explorer and Activity Center MC1155433 27:08 Microsoft 365 admin center: Prepurchase capacity packs for Microsoft 365 Copilot Chat - MC1155434 31:57 Viva Engage: Agents in Viva Engage communities Public Preview - MC1155311

Remember RAG?

This is episode 305 recorded on September 9th, 2025, where John & Jason drive across Missouri after the North America Collaboration Summit and discuss OneLake Security and other data topics in the news today. For show notes please visit www.bifocal.show

Send us a textEpisode 127 discusses Spreadsheets to Systems with Therman Trotman. Therman Trotman is the founder of The SharePoint Helpdesk and a SharePoint strategist with more than two decades of IT experience across public and private sectors. His specialty?  Helping operational leaders simplify the way their teams work using the Microsoft 365 tools they already have.  With a people-first approach, Therman teaches teams how to organize chaos, reduce friction, and run their processes with clarity — all through smart SharePoint systems.  Therman realized most professionals were struggling with scattered systems, overused spreadsheets, and under-trained teams.  He found his niche helping organizations ditch the duct tape workflows and create a one-stop digital workspace their whole team could rely on. Episode Benefits:  You can expect to gain actionable insights and strategies to help you move from Spreadsheets to Systems. This Podcast series is targeted to Business Owners and C-Suite Executives.  It reflects my 34 years as a Business Owner and subsequent years as a Business Mentor and Consultant.  It focuses on the various subjects and topics to help you run a successful profitable business.  They are approximately 15-minutes long so you can listen while commuting.      Reach out to me to be put in contact with Therman.   The Business of Business, topics are divided into 5 Categories: Management, Operations, Sales, Financial, and Personal. Support the showHelping You Run a Successful Profitable Business !For Business Consulting or to be a Podcast Guest - Contact me at: www.bcforg.comLinkedIn: https://www.linkedin.com/in/brian-fisher-72174413/

In this week's short and snappy episode, Copilot Studio gets an increase in the number of files an agent can use in SharePoint and OneDrive. Office Transcriptions can be left to run all day and still not use up your quota of minutes. Lastly, admins should check that they have enabled a setting in Chromium browsers to continue to provide offline capabilities in OneDrive. 0:00 Welcome 5:35 Microsoft Copilot Studio - Use up to 1,000 files per agent for SharePoint and OneDrive uploads - MC1150623 11:36 Teams Admin Center: Control External Access by Domain for Specific Users and Groups - MC1150123 14:45 Office Transcription Quota Increase for Copilot-Licensed Users - MC1150669 19:17 Action Required – Configure Browser Policy to Preserve OneDrive and SharePoint Web Performance and Offline Capability - MC1150662

Welcome to Episode 410 of the Microsoft Cloud IT Pro Podcast where hosts Jay Leask and Joy Apple are joined by special guest Ben Stegink for a discussion recorded live from the North American Cloud and Collaboration Summit in Branson. In this episode we focus on how organizations must adapt their change management approaches for the Microsoft 365 cloud environment.We discuss the fundamental shift from traditional IT operations, where organizations controlled software update timing, to cloud-based services with continuous updates outside of their control. Jay and Joy emphasize that successful modern IT requires cross-functional teams where IT partners closely with business units, communications, and training departments rather than operating in isolation. We then talk about the need for a shift in governance models to empower business users while requiring IT to balance user control with necessary oversight.Key themes include the importance of ongoing communication and adoption strategies, using tools like Viva Engage communities for peer-to-peer support, and adopting a "yes, and" approach to business requests rather than defaulting to "no." The episode emphasizes treating technology deployment as an ongoing service relationship rather than a one-time project, which is essential for success in the rapidly evolving cloud environment. Your support makes this show possible! Please consider becoming a premium member for access to live shows and more. Check out our membership options. Show Notes Joy Apple Joy is a Microsoft MVP and Director of Success and Enablement at Orchestry. With years of experience as an information technologist, I'm dedicated to helping organizations implement technology with a purpose-driven, “human-first” approach, ensuring tools like Microsoft 365 empower people to do their best work. Teaching and knowledge-sharing are at the heart of what I do. Whether it's through volunteering in the Microsoft Community, speaking at events, or writing as the “Joy of SharePoint,” I'm passionate about helping others unlock their potential with modern workplace solutions. Im also a cohost of the Guardians of M365 Governance podcast, where I explore the challenges and rewards of governance, and a columnist for She is Tulsa, a quarterly magazine celebrating impactful stories from my local community. Outside of work, you'll often find me enjoying live music or discovering new spots in Tulsa, Oklahoma, combining my love of connection and creativity wherever I go. Jay Leask Jay is a Principal Technical Architect at the Washington DC Microsoft Innovation Hub specializing in Modern Work. Jay facilitates discussions on modern IT practices, using 20 years of IT experience to engage customers in solutions design with a focus on increased the value and decreased risk within collaboration investments. His focus over the last 15 years has been on public sector organizations including state, local, and Federal government, as well as education institutions. Links Joy Apple on LinkedIn Connect with Jay Microsoft 365 Change Guide Stay on top of changes in Microsoft 365 Microsoft 365 Roadmap About the sponsors Would you like to become the irreplaceable Microsoft 365 resource for your organization? Let us know!

On this week's show Patrick Gray and Adam Boileau discuss the week's cybersecurity news, including: Apple ruins exploit developers' week with fresh memory corruption mitigations Feross Aboukhadijeh drops by to talk about the big, dumb npm supply chain attack Salesloft says its GitHub was the initial entry point for its compromise Sitecore says people should “patch” its using-the-keymat-from-the-documentation “zero day” Rogue certs for 1.1.1.1 appear to be just (stupid) testing Jaguar Land Rover ransomware attackers are courting trouble This week's episode is sponsored by open source cloud security tool, Prowler. Founder Toni de la Fuente joins to discuss their new support for Microsoft 365. Time to point Prowler at your OneDrive and Sharepoint! This episode is also available on Youtube. Show notes Blog - Memory Integrity Enforcement: A complete vision for memory safety in Apple devices - Apple Security Research Venezuela's president thinks American spies can't hack Huawei phones | TechCrunch 18 Popular Code Packages Hacked, Rigged to Steal Crypto – Krebs on Security Software packages with more than 2 billion weekly downloads hit in supply-chain attack - Ars Technica Salesloft platform integration restored after probe reveals monthslong GitHub account compromise | Cybersecurity Dive CISA orders federal agencies to patch Sitecore zero-day following hacking reports | The Record from Recorded Future News SAP warns of high-severity vulnerabilities in multiple products - Ars Technica The number of mis-issued 1.1.1.1 certificates grows. Here's the latest. - Ars Technica Cyberattack on Jaguar Land Rover threatens to hit British economic growth | The Record from Recorded Future News Cyberattack forces Jaguar Land Rover to tell staff to stay at home | The Record from Recorded Future News Bridgestone Americas continues probe as it looks to restore operations | Cybersecurity Dive Qantas penalizes executives for July cyberattack | The Record from Recorded Future News Cyber Command, NSA to remain under single leader as officials shelve plan to end 'dual hat' | The Record from Recorded Future News GOP Cries Censorship Over Spam Filters That Work – Krebs on Security Risky Bulletin: APT report? No, just a phishing test! - Risky Business Media Post by @patrick.risky.biz — Bluesky

I sat down with Leo de Araujo, Head of Global Business Innovation at Syntax Systems, to unpack a problem every SAP team knows too well. Years of enhancements and quick fixes leave you with custom code that nobody wants to document, a maze of SharePoint folders, and hard questions whenever S/4HANA comes up. What does this program do. What breaks if we change that field. Do we have three versions of the same thing. Leo's answer is Syntax AI CodeGenie, an agentic AI solution with a built-in chatbot that finally treats documentation and code understanding as a living part of the system, not an afterthought. Here's the thing. CodeGenie automates the creation and upkeep of custom code documentation, then lets you ask plain-language questions about function and business value. Instead of hunting through 40-page PDFs, teams can ask, “Do we already upload sales orders from Excel,” or “What depends on this BAdI,” and get an instant explanation. That changes migration planning. You can see what to keep, what to retire, and where standard capabilities or new extensions make more sense, which shortens the path to S/4HANA Cloud and helps you stay on a clean core. We also talk about how this is delivered. CodeGenie runs on SAP Business Technology Platform, connects through standard APIs, and avoids intrusive add-ons. It is compatible with SAP S/4HANA, S/4HANA Cloud Private Edition through RISE with SAP, and on-premises ECC. Security comes first, with tenant isolation for each customer and no custom code shared externally or used for AI model training. The result is a setup that respects enterprise guardrails while still giving developers and architects fast answers. Clean core gets a plain explanation in this episode. Build outside the application with published APIs, keep upgrades predictable, and innovate at the edge where you can move quickly. CodeGenie gives you the visibility to make that real, surfacing what you actually run today and how it ties to outcomes, so you can design a migration roadmap that fits the business rather than guessing from stale documents. Leo also previews the Gen AI Starter Pack, launching September 9. It bundles a managed, model-flexible platform with workshops, use-case ideation, and initial builds, so teams can move from curiosity to working solutions without locking themselves into a single provider. Paired with CodeGenie and Syntax's development accelerators, the Starter Pack points toward something SAP leaders have wanted for years, a practical way to shift from in-core customizations to clean-core extensions with much less friction. If you are planning S/4HANA, balancing hybrid and multi-cloud realities, or simply tired of tribal knowledge around critical programs, this conversation is for you. We get specific about how CodeGenie works, where it saves time and cost, and how Syntax is shaping a playbook for AI that helps teams deliver results they can trust. ********* Visit the Sponsor of Tech Talks Network: Land your first job  in tech in 6 months as a Software QA Engineering Bootcamp with Careerist https://crst.co/OGCLA

This is episode 304 recorded on September 4th, 2025, where John & Jason talk the Microsoft Fabric August 2025 Feature Summary including a new Flat list view in Deployment pipelines, Bursting controls for Data Engineering workloads, new test capabilities for User Data Functions, the ability to server real-time predictions with ML model endpoints, several updates to Data Warehouse, Database tree in edit tile and AzMon data sources for RTI, the ability to use Python Notebooks to read/write to Fabric SQL Databases, Auto table creation on destination in copy job in Data Factory, and much, much more. For show notes please visit www.bifocal.show

In this episode I talk about a recent series of blog posts I wrote about some analysis I did on various AI services available today as well as my thoughts on these. I also cover off the latest news and information in the Microsoft Cloud for you. Listen along. Resources CIAOPS Need to Know podcast - CIAOPS - Need to Know podcasts | CIAOPS X - https://www.twitter.com/directorcia Join my Teams shared channel - Join my Teams Shared Channel – CIAOPS CIAOPS Merch store - CIAOPS Become a CIAOPS Patron - CIAOPS Patron CIAOPS Blog - CIAOPS – Information about SharePoint, Microsoft 365, Azure, Mobility and Productivity from the Computer Information Agency CIAOPS Brief - CIA Brief – CIAOPS CIAOPS Labs - CIAOPS Labs – The Special Activities Division of the CIAOPS Support CIAOPS - https://ko-fi.com/ciaops Get your M365 questions answered via email   Welcome to the Microsoft Incident Response Ninja Hub – https://techcommunity.microsoft.com/blog/microsoftsecurityexperts/welcome-to-the-microsoft-incident… Listen to an audio recap of your meetings in Teams – https://techcommunity.microsoft.com/blog/Microsoft365InsiderBlog/listen-to-an-audio-recap-of-your-m… Introducing Surveys Agent, your personal survey expert – https://techcommunity.microsoft.com/blog/microsoft365insiderblog/introducing-surveys-agent-your-per… What's New in AI for Security from Microsoft Entra? – https://techcommunity.microsoft.com/blog/microsoft-entra-blog/what%E2%80%99s-new-in-ai-for-security… Microsoft ranked number one in modern endpoint security market share third year in a row – https://www.microsoft.com/en-us/security/blog/2025/08/27/microsoft-ranked-number-one-in-modern-endpoint-security-market-share-third-year-in-a-row/ Securing and governing the rise of autonomous agents – https://www.microsoft.com/en-us/security/blog/2025/08/26/securing-and-governing-the-rise-of-autonomous-agents/ How systems integrators are scaling innovation with Microsoft 365 Copilot and agents – https://partner.microsoft.com/en-US/blog/article/copilot-partner-spotlight-august-2025 Microsoft deployment blueprint – Address oversharing concerns for your M365 Copilot deployment – https://techcommunity.microsoft.com/blog/healthcareandlifesciencesblog/microsoft-deployment-blueprint—address-oversharing-concerns-for-your-m365-copi/4434598 Staying Ahead of Compliance: Keep Up with Key Insights from our Quarterly Compliance Update – https://techcommunity.microsoft.com/blog/microsoft365copilotblog/staying-ahead-of-compliance-keep-up-with-key-insights-from-our-quarterly-complia/4448011 Microsoft Security Copilot in Intune deep dive – Part 1: Features available in public preview – https://techcommunity.microsoft.com/blog/intunecustomersuccess/microsoft-security-copilot-in-intune-deep-dive-%E2%80%93-part-1-features-available-in-pu/4406244 What's New in Microsoft Intune: August 2025 – https://techcommunity.microsoft.com/blog/microsoftintuneblog/what%E2%80%99s-new-in-microsoft-intune-august-2025/4445612 OneNote for Windows 10 support is ending – https://techcommunity.microsoft.com/blog/microsoft365insiderblog/onenote-for-windows-10-support-is-ending/4445230 Think before you Click(Fix): Analyzing the ClickFix social engineering technique – https://www.microsoft.com/en-us/security/blog/2025/08/21/think-before-you-clickfix-analyzing-the-clickfix-social-engineering-technique/ Deep Dive: DLP Incidents, Alerts & Events – Part 1 – https://techcommunity.microsoft.com/blog/microsoft-security-blog/deep-dive-dlp-incidents-alerts–events—part-1/4443691 Deep Dive: DLP Incidents, Alerts & Events – Part 2 – https://techcommunity.microsoft.com/blog/microsoft-security-blog/deep-dive-dlp-incidents-alerts–events—part-2/4443700 New SKUs available for M365 Business premium - https://techcommunity.microsoft.com/blog/microsoft-security-blog/deep-dive-dlp-incidents-alerts–events—part-2/4443700 Testing the differences between AI services – CIAOPS - https://blog.ciaops.com/2025/09/06/testing-the-differences-between-ai-services/  An analysis of how AI services vary – CIAOPS - https://blog.ciaops.com/2025/09/07/an-analysis-of-how-ai-service-vary/ Comparison of AI-Generated Articles – CIAOPS - https://blog.ciaops.com/2025/09/08/comparison-of-ai-generated-articles/ 

Marijn talks about his new session that is delivering in Helsinki and Oslo. That one is about finding a methodology to handle data, and Marijn chooses the Marie Kondo method. Initially, Steve can't stop laughing about it, but he is won over when Marijn says the magic word (which is not whisky). The whisky is a sherry finished Islay bomb.

Phil explained that Microsoft has made Copilot a central part of its roadmap. This means MSPs cannot afford to sit back and wait. If you are not leading your clients into Copilot, someone else will. That could mean losing accounts that you have worked hard to win. Phil shared how his own business moved from experimenting with ChatGPT into fully embedding Copilot across their development and operations. By doing so, they cut development cycles down to a fraction of the time. What used to take ten days is now done in a single day. That sort of productivity gain is not about gimmicks, it is about efficiency, growth, and having more capacity to serve clients better.  One of the big themes from our conversation was the need to link Copilot to ROI. Phil Hames emphasised that clients do not care about the tech in isolation, they care about outcomes. If you are speaking to an MD or FD, the language is about time saved, money protected, and revenue increased. A great example Phil shared was a systems integrator who said without Copilot he would need two assistants to handle the workload. That is the kind of proof point that matters in boardroom conversations. If MSPs focus on ROI, then Copilot becomes a way to open up strategic sales conversations instead of ending up as small talk at events.  We also talked about how to use Copilot to create professional service opportunities. Too often, MSPs risk giving it away by showing the wow factor without packaging it up. Phil outlined how readiness assessments can form the foundation. By reviewing secure scores, checking for malware, ensuring data backup practices are solid, and highlighting user adoption gaps, you immediately move the discussion into risk management and ongoing service delivery. He explained that the average secure score across Microsoft 365 tenants is barely above 50 per cent, and only a small minority get above 70 per cent. That means the majority of businesses are leaving themselves exposed. By positioning Copilot readiness alongside security and compliance, MSPs can frame projects that deliver real value and recurring service opportunities.  One of the most powerful ideas from Phil Hames was how to approach Copilot not as a standalone toy but as part of the wider Microsoft stack. That means choosing strategic projects with clients, solving real problems with measurable outcomes, and then wrapping managed services around them. He shared the story of an agricultural business that used AI to transform their call handling process. By capturing information automatically, decisions could be made faster, response times improved, and fewer staff were needed to handle the same volume. That is where Copilot creates ROI. MSPs who take this approach will have clear case studies to take to prospects and new markets.  We also explored the risk conversation. Many MSPs worry about how to move from talking about features to talking about business value. A practical way is to ask a client to outline their biggest business risks. If IT is not near the top, that raises alarms in itself. By integrating Copilot into this discussion, MSPs can highlight how unprotected data, misconfigured SharePoint access, or weak security controls can turn new AI functionality into a huge vulnerability. As Phil put it, switching on Copilot without readiness is like leaving the office door wide open overnight. This makes the need for ongoing management, monitoring, and support services absolutely clear.  Phil also encouraged MSPs to think about specialisation. If you build a Copilot project in one sector, do not reinvent the wheel for the next client. Package it up, document it, and replicate it across similar businesses. This approach means MSPs can build repeatable services, increase margins, and create frameworks that scale. It is the same principle as writing a book that sells thousands of copies instead of a single edition. By niching down, you can become the go to provider for that sector's AI and Copilot needs.  As we wrapped up the conversation, Phil Hames outlined three clear actions for MSPs. First, use Copilot internally so you have credibility and real stories to share. Second, package your offering so it is not only about licences but about readiness, adoption, and measurable usage. Third, keep ROI at the centre of every conversation. Without showing return on investment, clients will not stay engaged and you will miss the chance to build lasting value.  This episode was packed with practical insight that every MSP can take away. Copilot is not a passing trend, it is a core part of Microsoft's future and therefore a core part of the MSP service stack. If you approach it with the mindset of ROI, risk management, and repeatable solutions, then it becomes a gateway to bigger projects, stronger client relationships, and more profitable services. Phil Hames summed it up perfectly: if you are not in AI, how are you going to be in IT? It is time to embrace Copilot, not as a gimmick, but as a tool for growth, security, and long term client value.  Reach out to Phil Hames by visiting the TBSC website, just click HERE, or you can also email him directly at p.hames@tbsc.cloud  Make sure to check out our Ultimate MSP Growth Guide, a free guide that walks you through a proven process to take your MSP from stuck to scalable, without working even more hours. It's 44 pages rammed with advice, insights and inspiration to help you decide what support is available to you now if you want to grow and scale your business. Click HERE to get your copy.  Connect on LinkedIn HERE with Ian and also with Stuart by clicking this LINK  And when you're ready to take the next step in growing your MSP, come and take the Scale with Confidence MSP Mastery Quiz. In just three minutes, you'll get a 360-degree scan of your MSP and identify the one or two tactics that could help you find more time, engage & align your people and generate more leads.  OR   To join our amazing Facebook Group of over 400 MSPs where we are helping you Scale Up with Confidence, then click HERE  Until next time, look after yourself and I'll catch up with you soon!   

Today we are joined by Selena Larson, co-host of Only Malware in the Building and Staff Threat Researcher and Lead Intelligence Analysis and Strategy at Proofpoint, sharing their work on "Microsoft OAuth App Impersonation Campaign Leads to MFA Phishing." Proofpoint researchers have identified campaigns where threat actors use fake Microsoft OAuth apps to impersonate services like Adobe, DocuSign, and SharePoint, stealing credentials and bypassing MFA via attacker-in-the-middle phishing kits, mainly Tycoon. These attacks redirect users to fake Microsoft login pages to capture credentials, 2FA tokens, and session cookies, targeting nearly 3,000 Microsoft 365 accounts across 900 environments in 2025. Microsoft's upcoming security changes and strengthened email, cloud, and web defenses, along with user education, are recommended to reduce these risks. The research can be found here: ⁠Microsoft OAuth App Impersonation Campaign Leads to MFA Phishing Learn more about your ad choices. Visit megaphone.fm/adchoices

Today we are joined by ⁠Selena Larson⁠, co-host of ⁠Only Malware in the Building⁠ and Staff Threat Researcher and Lead Intelligence Analysis and Strategy at ⁠Proofpoint⁠, sharing their work on "Microsoft OAuth App Impersonation Campaign Leads to MFA Phishing." Proofpoint researchers have identified campaigns where threat actors use fake Microsoft OAuth apps to impersonate services like Adobe, DocuSign, and SharePoint, stealing credentials and bypassing MFA via attacker-in-the-middle phishing kits, mainly Tycoon. These attacks redirect users to fake Microsoft login pages to capture credentials, 2FA tokens, and session cookies, targeting nearly 3,000 Microsoft 365 accounts across 900 environments in 2025. Microsoft's upcoming security changes and strengthened email, cloud, and web defenses, along with user education, are recommended to reduce these risks. The research can be found here: ⁠Microsoft OAuth App Impersonation Campaign Leads to MFA Phishing Learn more about your ad choices. Visit megaphone.fm/adchoices

This is episode 303 recorded on August 21st, 2025, where John & Jason talk to Mike Carlo from Power BI Tips.com about Power BI & Microsoft Fabric, how his company is doing Workloads in Fabric, a debate about Lakehouses vs Warehouses, the Power Designer & Entelexos tools, and other fun topics. For show notes please visit www.bifocal.show

“Just because you can keep running Office 2016 or 2019 doesn't mean you should,” warns Andy Syrewicze, Security Evangelist at Hornetsecurity. In a conversation with Doug Green, Publisher of Technology Reseller News, Syrewicze explained the looming compliance and security risks as Microsoft ends support for Office 2016 and 2019 on October 14, 2025. While organizations can technically continue using the software, Syrewicze compares it to Jeff Goldblum's warning in Jurassic Park: “They were so preoccupied with whether or not they could, they didn't stop to think if they should.” Without security patches, businesses face immediate compliance issues, heightened vulnerability to zero-day threats, and the burden of mitigating risks across every endpoint. Syrewicze outlined two paths forward: migrate to Microsoft 365 for its broader functionality, cloud-native flexibility, and faster cadence of security updates—or transition to Office LTSC 2021/2024 for organizations that must remain on-premises due to regulatory requirements. He strongly recommended a full inventory of existing software and a reevaluation of risk profiles before making the move. Hornetsecurity positions itself as a crucial partner for organizations navigating this transition, offering layered security services tailored to Microsoft 365 environments. From email protection and SharePoint permission management to awareness training, Hornetsecurity simplifies security in what Syrewicze calls an overly complex Microsoft landscape with “29 different management portals.” To learn more, visit www.hornetsecurity.com.

Get your SharePoint News read to you in an audio overview. Output response to your Copilot Researcher results in an old favourite format. And Engage Community Announcements get smarter at delivering to your most frequently used channels.  - Microsoft 365 Copilot: New Researcher agent output controls - Microsoft Teams: Choose to hide inactive channels - Windows Backup for Organizations is now available - Microsoft Viva Engage: Smarter delivery of Community Announcement notifications  - (Updated) AI actions coming to SharePoint document libraries - Microsoft Viva: AI-generated audio briefings for SharePoint news in Viva Connections     Join Daniel Glenn and Darrell as a Service Webster as they cover the latest messages in the Microsoft 365 Message Center.   Check out Darrell & Daniel's own YouTube channels at:  Darrell - https://youtube.com/modernworkmentor  Daniel - https://youtube.com/DanielGlenn   

Welcome to Episode 409 of the Microsoft Cloud IT Pro Podcast. In this episode, Ben and Scott explore the configuration decisions tenant administrators face when preparing their Microsoft 365 environment for Copilot deployment. They dive into the key questions every IT professional should be asking: How do you identify and remediate oversharing in SharePoint sites before Copilot can access that content? What governance controls should be in place to prevent sensitive data from being discoverable through organization-wide search? The hosts examine practical tools for identifying high-risk sites and content, how to control which sites appear in Copilot results, and other configuration options that allow you to optimize how Copilot processes organizational content. Your support makes this show possible! Please consider becoming a premium member for access to live shows and more. Check out our membership options. Show Notes Data, Privacy, and Security for Microsoft 365 Copilot Apply principles of Zero Trust to Microsoft 365 Copilot Get started with data explorer Data access governance reports for SharePoint sites Semantic indexing for Microsoft 365 Copilot Restrict discovery of SharePoint sites and content A glimpse into the future of file sharing in Microsoft 365 About the sponsors Would you like to become the irreplaceable Microsoft 365 resource for your organization? Let us know!

This is episode 302 recorded on August 20th, 2025, where John & Jason talk the Power BI August 2025 Feature Summary including Copilot in Embedded Reports for SharePoint Online, edit your data model in the Power BI service, TMDL view enhancements, Semantic Model refresh templates with Fabric Data pipelines, and more. For show notes please visit www.bifocal.show

In this episode of In-Ear Insights, the Trust Insights podcast, Katie and Chris discuss why enterprise generative AI projects often fail to reach production. You’ll learn why a high percentage of enterprise generative AI projects reportedly fail to make it out of pilot, uncovering the real reasons beyond just the technology. You’ll discover how crucial human factors like change management, user experience, and executive sponsorship are for successful AI implementation. You’ll explore the untapped potential of generative AI in back-office operations and process optimization, revealing how to bridge the critical implementation gap. You’ll also gain insights into the changing landscape for consultants and agencies, understanding how a strong AI strategy will secure your competitive advantage. Watch now to transform your approach to AI adoption and drive real business results! Watch the video here: Can’t see anything? Watch it on YouTube here. Listen to the audio here: https://traffic.libsyn.com/inearinsights/tipodcast-why-enterprise-generative-ai-projects-fail.mp3 Download the MP3 audio here. Need help with your company’s data and analytics? Let us know! Join our free Slack group for marketers interested in analytics! [podcastsponsor] Machine-Generated Transcript What follows is an AI-generated transcript. The transcript may contain errors and is not a substitute for listening to the episode. Christopher S. Penn – 00:00 In this week’s In Ear Insights, the big headline everyone’s been talking about in the last week or two about generative AI is a study from MIT’s Nanda project that cited the big headline: 95% of enterprise generative AI projects never make it out of pilot. A lot of the commentary clearly shows that no one has actually read the study because the study is very good. It’s a very good study that walks through what the researchers are looking at and acknowledged the substantial limitations of the study, one of which was that it had a six-month observation period. Katie, you and I have both worked in enterprise organizations and we have had and do have enterprise clients. Some people can’t even buy a coffee machine in six months, much less route a generative AI project. Christopher S. Penn – 00:49 But what I wanted to talk about today was some of the study’s findings because they directly relate to AI strategy. So if you are not an AI ready strategist, we do have a course for that. Katie Robbert – 01:05 We do. As someone, I’ve been deep in the weeds of building this AI ready strategist course, which will be available on September 2. It’s actually up for pre-sale right now. You go to trust insights AI/AI strategy course. I just finished uploading everything this morning so hopefully I used all the correct edits and not the ones with the outtakes of me threatening to murder people if I couldn’t get the video done. Christopher S. Penn – 01:38 The bonus, actually, the director’s edition. Katie Robbert – 01:45 Oh yeah, not to get too off track, but there was a couple of times I was going through, I’m like, oops, don’t want to use that video. But back to the point, so obviously I saw the headline last week as well. I think the version that I saw was positioned as “95% of AI pilot projects fail.” Period. And so of course, as someone who’s working on trying to help people overcome that, I was curious. When I opened the article and started reading, I’m like, “Oh, well, this is misleading,” because, to be more specific, it’s not that people can’t figure out how to integrate AI into their organization, which is the problem that I help solve. Katie Robbert – 02:34 It’s that people building their own in-house tools are having a hard time getting them into production versus choosing a tool off the shelf and building process around it. That’s a very different headline. And to your point, Chris, the software development life cycle really varies and depends on the product that you’re building. So in an enterprise-sized company, the likelihood of them doing something start to finish in six months when it involves software is probably zero. Christopher S. Penn – 03:09 Exactly. When you dig into the study, particularly why pilots fail, I thought this was a super useful chart because it turns out—huge surprise—the technology is mostly not the problem. One of the concerns—model quality—is a concern. The rest of these have nothing to do with technology. The rest of these are challenging: Change management, lack of executive sponsorship, poor user experience, or unwillingness to adopt new tools. When we think about this chart, what first comes to mind is the 5 Ps, and 4 out of 5 are people. Katie Robbert – 03:48 It’s true. One of the things that we built into the new AI strategy course is a 5P readiness assessment. Because your pilot, your proof of concept, your integration—whatever it is you’re doing—is going to fail if your people are not ready for it. So you first need to assess whether or not people want to do this because that’s going to be the thing that keeps this from moving forward. One of the responses there was user experience. That’s still people. If people don’t feel they can use the thing, they’re not going to use it. If it’s not immediately intuitive, they’re not going to use it. We make those snap judgments within milliseconds. Katie Robbert – 04:39 We look at something and it’s either, “Okay, this is interesting,” or “Nope,” and then close it out. It is a technology problem, but that’s a symptom. The root is people. Christopher S. Penn – 04:52 Exactly. In the rest of the paper, in section 6, when it talks about where the wins were for companies that were successful, I thought this was interesting. Lead qualification, speed, customer retention. Sure, those are front office things, but the paper highlights that the back office is really where enterprises will win using generative AI. But no one’s investing it. People are putting all the investment up front in sales and marketing rather than in the back office. So the back office wins. Business process optimization. Elimination: $2 million to $10 million annually in customer service and document processing—especially document processing is an easy win. Agency spend reduction: 30% decrease in external, creative, and content costs. And then risk checks for financial services by doing internal risk management. Christopher S. Penn – 05:39 I thought this was super interesting, particularly for our many friends and colleagues who work at agencies, seeing that 30% decrease in agency spend is a big deal. Katie Robbert – 05:51 It’s a huge deal. And this is, if we dig into this specific line item, this is where you’re going to get a lot of those people challenges because we’re saying 30% decrease in external creative and content costs. We’re talking about our designers and our writers, and those are the two roles that have felt the most pressure of generative AI in terms of, “Will it take my job?” Because generative AI can create images and it can write content. Can it do it well? That’s pretty subjective. But can it do it? The answer is yes. Christopher S. Penn – 06:31 What I thought was interesting says these gains came without material workforce reduction. Tools accelerated work, but did not change team structures or budgets. Instead, ROI emerged from reduced external spend, limiting contracts, cutting agency fees, replacing expensive consultants with AI-powered internal capabilities. So that makes logical sense if you are spending X dollars on something, an agency that writes blog content for you. When we were back at our old PR agency, we had one firm that was spending $50,000 a month on having freelancers write content that when you and I reviewed, it was not that great. Machines would have done a better job properly prompted. Katie Robbert – 07:14 What I find interesting is it’s saying that these gains came without material workforce reduction, but that’s not totally true because you did have to cut your agency fees, which is people actually doing the work, and replacing expensive consultants with AI-powered internal capabilities. So no, you didn’t cut workforce reduction at your own company, but you cut it at someone else’s. Christopher S. Penn – 07:46 Exactly. So the red flag there for anyone who works in an agency environment or a consulting environment is how much risk are you at from AI taking your existing clients away from you? So you might not lose a client to another agency—you might lose a client to an internal AI project where if there isn’t a value add of human beings. If your agency is just cranking out templated press releases, yeah, you’re at risk. So I think one of the first things that I took away from this report is that every agency should be doing a very hard look at what value it provides and saying, “How easy is it for AI to replicate this?” Christopher S. Penn – 08:35 And if you’re an agency and you’re like, “Oh, well, we can just have AI write our blog posts and hand it off to the client.” There’s nothing stopping the client from doing that either and just getting rid of you entirely. Katie Robbert – 08:46 The other thing that sticks out to me is replacing expensive consultants with AI-powered internal capabilities. Technically, Chris, you and I are consultants, but we’re also the first ones to knock the consulting industry as a whole, because there’s a lot of smoke and mirrors in the consulting industry. There’s a lot of people who talk a big talk, have big ideas, but don’t actually do anything useful and productive. So I see this and I don’t immediately think, “Oh, we’re in trouble.” I think, “Oh, good, it’s going to clear out the rest of the noise in the industry and make way for the people who can actually do something.” Christopher S. Penn – 09:28 And that is the heart and soul, I think, for us. Obviously, we have our own vested interest in ensuring that we continue to add value to our clients. But I think you’re absolutely right that if you are good at the “why”—which is what a lot of consulting focuses on—that’s important. If you’re good at the “what”—which is more of the tactical stuff, “what are you going to do?”—that’s important. But what we see throughout this paper is the “how” is where people are getting tangled up: “How do we implement generative AI?” If you are just a navel-gazing ChatGPT expert, that “how” is going to bite you really hard really soon. Christopher S. Penn – 10:13 Because if you go and read through the rest of the paper, one of the things it talks about is the gap—the implementation gap between “here’s ChatGPT” and then for the enterprise it was like, “Well, here’s all of our data and all of our systems and all of our everything else that we want AI to talk to in a safe and secure way.” And this gap is gigantic between these two worlds. So tools like ChatGPT are being relegated to, “Let’s write more blog posts and write some press releases and stuff” instead of “help me actually get some work done with the things that I have to do in a prescribed way,” because that’s the enterprise. That gap is where consulting should be making a difference. Christopher S. Penn – 10:57 But to your point, with a lot of navel-gazing theorists, no one’s bridging that gap. Katie Robbert – 11:05 What I find interesting about the shift that we’ve seen with generative AI is we’ve almost in some ways regressed in the way that work is getting done. We’re looking at things as independent, isolated tasks versus fully baked, well-documented workflows. And we need to get back to those holistic 360-degree workflows to figure out where we can then insert something generative AI versus picking apart individual tasks and then just having AI do that. Now I do think that starting with a proof of concept on an individual task is a good idea because you need to demonstrate some kind of success. You need to show that it can do the thing, but then you need to go beyond that. It can’t just forever, to your point, be relegated to writing blog posts. Katie Robbert – 12:05 What does that look like as you start to expand it from project to program within your entire organization? Which, I don’t know if you know this, there’s a whole lesson about that in the AI strategy course. Just figured I would plug that. But all kidding aside, that’s one of the biggest challenges that I’m seeing with organizations that “disrupt” with AI is they’re still looking at individual tasks versus workflows as a whole. Christopher S. Penn – 12:45 Yep. One of the things that the paper highlighted was that the reason why a lot of these pilots fail is because either the vendor or the software doesn’t understand the actual workflow. It can do the miniature task, but it doesn’t understand the overall workflow. And we’ve actually had input calls with clients and potential clients where they’ve walked us through their workflow. And you realize AI can’t do all of it. There’s just some parts that just can’t be done by AI because in many cases it’s sneaker-net. It’s literally a human being who has to move stuff from one system to another. And there’s not an easy way to do that with generative AI. The other thing that really stood out for me in terms of bridging this divide is from a technological perspective. Christopher S. Penn – 13:35 The biggest hurdle from the technology side was cited as no memory. A tool like ChatGPT and stuff has no institutional memory. It can’t easily connect to your internal knowledge bases. And at an enterprise, that’s a really big deal. Obviously, at Trust Insights’ size—with five or four employees and a bunch of AI—we don’t have to synchronize and coordinate massive stores of institutional knowledge across the team. We all pretty much know what’s going on. When you are an IBM with 300,000 employees, that becomes a really big issue. And today’s tools, absent those connectors, don’t have that institutional memory. So they can’t unlock that value. And the good news is the technology to bridge that gap exists today. It exists today. Christopher S. Penn – 14:27 You have tools that have memory across an entire codebase, across a SharePoint instance. Et cetera. But where this breaks down is no one knows where that information is or how to connect it to these tools, and so that huge divide remains. And if you are a company that wants to unlock the value of gen AI, you have to figure out that memory problem from a platform perspective quickly. And the good news is there’s existing tools that do that. There’s vector databases and there’s a whole long list of acronyms and tongue twisters that will solve that problem for you. But the other four pieces need to be in place to do that because it requires a huge lift to get people to be willing to share their data, to do it in a secure way, and to have a measurable outcome. Katie Robbert – 15:23 It’s never a one-and-done. So who owns it? Who’s going to maintain it? What is the process to get the information in? What is the process to get the information out? But even backing up further, the purpose is why are we doing this in the first place? Are we an enterprise-sized company with so many employees that nobody knows the same information? Or am I a small solopreneur who just wants to have some protection in case something happens and I lose my memory or I want to onboard someone new and I want to do a knowledge-share? And so those are very different reasons to do it, which means that your approach is going to be slightly different as well. Katie Robbert – 16:08 But it also sounds like what you’re saying, Chris, is yes, the technology exists, but not in an easily accessible way that you could just pick up a memory stick off the shelf, plug it in, and say, “Boom, now we have memory. Go ahead and tell it everything.” Christopher S. Penn – 16:25 The paper highlights in section 6.5 where things need to go right, which is Agentic AI. In this case, Agentic AI is just fancy for, “Hey, we need to connect it to the rest of our systems.” It’s an expensive consulting word and it sounds cool. Agentic AI and agentic workflows and stuff, it really just means, “Hey, you’ve got this AI engine, but it’s not—you’re missing the rest of the car, and you need the rest of the car.” Again, the good news is the technology exists today for these tools to have access to that. But you’re blocking obstacles, not the technology. Christopher S. Penn – 17:05 Your governance is knowing where your data lives and having people who have the skills and knowledge to bring knowledge management practices into a gen AI world because it is different. It is not the same as previous knowledge management initiatives. We remember all the “in” with knowledge management was all the rage in the 90s and early 2000s with knowledge management systems and wikis and internal things and SharePoint and all that stuff, and no one ever kept it up to date. Today, Agentic can solve some of those problems, but you need to have all the other human being stuff in place. The machines can’t do it by themselves. Katie Robbert – 17:51 So yes, on paper it can solve all those problems. But no, it’s not going to. Because if we couldn’t get people to do it in a more analog way where it was really simple and literally just upload the latest document to the server or add 2 lines of detail to your code in terms of what this thing is about, adding more technology isn’t suddenly going to change that. It’s just adding another layer of something people aren’t going to do. I’m very skeptical always, and I just feel this is what’s going to mislead people. They’re like, “Oh, now I don’t have to really think about anything because the machine is just going to know what I know.” But it’s that initial setup and maintenance that people are going to skip. Katie Robbert – 18:47 So the machine’s going to know what it came out of the box with. It’s never going to know what you know because you’ve never interacted with it, you’ve never configured with it, you’ve never updated it, you’ve never given it to other people to use. It’s actually just going to become a piece of shelfware. Christopher S. Penn – 19:02 I will disagree with you there. For existing enterprise systems, specifically Copilot and Gemini. And here’s why. Those tools, assuming they’re set up properly, will have automatic access to the back-end. So they’ll have access to your document store, they’ll have access to your mail server, they’ll have access to those things so that even if people don’t—because you’re right, people ain’t going to do it. People ain’t going to document their code, they’re not going to write up detailed notes. But if the systems are properly configured—and that is a big if—it will have access to all of your Microsoft Teams transcripts, it will have access to all of your Google Meet transcripts and all that stuff. And on the back-end, without participation from the humans, it will at least have a greater scope of knowledge across your company properly configured. Christopher S. Penn – 19:50 That’s the big asterisk that will give those tools that institutional memory. Greater institutional memory than you have now, which at the average large enterprise is really siloed. Marketing has no idea what sales is doing. Sales has no idea what customer service is doing. But if you have a decent gen AI tool and a properly configured back-end infrastructure where the machines are already logging all your documents and all your spreadsheets and all this stuff, without you, the human, needing to do any work, it will generate better results because it will have access to the institutional data source. Katie Robbert – 20:30 Someone still has to set it up and maintain it. Christopher S. Penn – 20:32 Correct. Which is the whole properly configured part. Katie Robbert – 20:36 It’s funny, as you’re going through listing all of the things that it can access, my first thought is most of those transcripts aren’t going to be useful because people are going to hop on a call and instead of getting things done, they’re just going to complain about whatever their boss is asking them to do. And so the institutional knowledge is really, it’s only as good as the data you give it. And I would bet you, what is it that you like to say? A small pastry with the value of less than $5 or whatever it is. Basically, I’ll bet you a cookie that the majority of data that gets into those systems with spreadsheets and transcripts and documents and we’re saying all these things is still junk, is still unuseful. Katie Robbert – 21:23 And so you’re going to have a lot of data in there that’s still garbage because if you’re just automatically uploading everything that’s available and not being picky and not cleaning it and not setting standards, you’re still going to have junk. Christopher S. Penn – 21:37 Yes, you’ll still have junk. Or the opposite is you’ll have issues. For example, maybe you are at a tech company and somebody asks the internal Copilot, “Hey, who’s going to the Coldplay concert this weekend?” So yes, data security and stuff is going to be an equally important part of that to know that these systems have access that is provisioned well and that has granular access control. So that, say, someone can’t ask the internal Copilot, “Hey, what does the CEO get paid anyway?” Katie Robbert – 22:13 So that is definitely the other side of this. And so that gets into the other topic, which is data privacy. I remember being at the agency and our team used Slack, and we could see as admins the stats and the amount of DMs that were happening versus people talking in public channels. The ratios were all wrong because you knew everybody was back-channeling everything. And we never took the time to extract that data. But what was well-known but not really thought of is that we could have read those messages at any given time. And I think that’s something that a lot of companies take for granted is that, “Oh, well, I’m DMing someone or I’m IMing someone or I’m chatting someone, so that must be private.” Christopher S. Penn – 23:14 It’s not. All of that data is going to get used and pulled. I think we talked about this on last week’s podcast. We need to do an updated conversation and episode about data privacy. Because I think we were talking last week about bias and where these models are getting their data and what you need to be aware of in terms of the consumer giving away your data for free. Christopher S. Penn – 23:42 Yep. But equally important is having the internal data governance because “garbage in, garbage out”—that rule never changes. That is eternal. But equally true is, do the tools and the people using them have access to the appropriate data? So you need the right data to do your job. You also want to guard against having just a free-for-all, where someone can ask your internal Copilot, “Hey, what is the CEO and the HR manager doing at that Coldplay concert anyway?” Because that will be in your enterprise email, your enterprise IMs, and stuff like that. And if people are not thoughtful about what they put into work systems, you will see a lot of things. Christopher S. Penn – 24:21 I used to work at a credit union data center, and as an admin of the mail system, I had administrative rights to see the entire system. And because one of the things we had to do was scan every message for protected financial information. And boy, did I see a bunch of things that I didn’t want to see because people were using work systems for things that were not work-related. That’s not AI; it doesn’t fix that. Katie Robbert – 24:46 No. I used to work at a data-entry center for those financial systems. We were basically the company that sat on top of all those financial systems. We did the background checks, and our admin of the mail server very much abused his admin powers and would walk down the hall and say to one of the women, referencing an email that she had sent thinking it was private. So again, we’re kind of coming back to the point: these are all human issues machines are not going to fix. Katie Robbert – 25:22 Shady admins who are reading your emails or team members who are half-assing the documentation that goes into the system, or IT staff that are overloaded and don’t have time to configure this shiny new tool that you bought that’s going to suddenly solve your knowledge expertise issues. Christopher S. Penn – 25:44 Exactly. So to wrap up, the MIT study was decent. It was a decent study, and pretty much everybody misinterpreted all the results. It is worth reading, and if you’d like to read it yourself, you can. We actually posted a copy of the actual study in our Analytics for Marketers Slack group, where you and over 4,000 of the marketers are asking and answering each other’s questions every single day. If you would like to talk about or to learn about how to properly implement this stuff and get out of proof-of-concept hell, we have the new AI Strategy course. Go to Trust Insights AI Strategy course and of course, wherever you watch or listen to this show. Christopher S. Penn – 26:26 If there’s a challenge you’d rather have, go to trustinsights.ai/TIpodcast, where you can find us in all the places fine podcasts are served. Thanks for tuning in. We’ll talk to you on the next one. Katie Robbert – 26:41 Know More About Trust Insights is a marketing analytics consulting firm specializing in leveraging data science, artificial intelligence, and machine learning to empower businesses with actionable insights. Founded in 2017 by Katie Robbert and Christopher S. Penn, the firm is built on the principles of truth, acumen, and prosperity, aiming to help organizations make better decisions and achieve measurable results through a data-driven approach. Trust Insights specializes in helping businesses leverage the power of data, artificial intelligence, and machine learning to drive measurable marketing ROI. Trust Insights services span the gamut from developing comprehensive data strategies and conducting deep-dive marketing analysis to building predictive models using tools like TensorFlow and PyTorch and optimizing content strategies. Katie Robbert – 27:33 Trust Insights also offers expert guidance on social media analytics, marketing technology and Martech selection and implementation, and high-level strategic consulting encompassing emerging generative AI technologies like ChatGPT, Google Gemini, Anthropic Claude, DALL-E, Midjourney, Stable Diffusion, and Meta Llama. Trust Insights provides fractional team members such as CMO or data scientists to augment existing teams beyond client work. Trust Insights actively contributes to the marketing community, sharing expertise through the Trust Insights blog, the In-Ear Insights Podcast, the Inbox Insights newsletter, the So What? Livestream webinars, and keynote speaking. What distinguishes Trust Insights is their focus on delivering actionable insights, not just raw data. Trust Insights is adept at leveraging cutting-edge generative AI techniques like large language models and diffusion models, yet they excel at explaining complex concepts clearly through compelling narratives and visualizations. Katie Robbert – 28:39 Data Storytelling. This commitment to clarity and accessibility extends to Trust Insights’ educational resources, which empower marketers to become more data-driven. Trust Insights champions ethical data practices and transparency in AI, sharing knowledge widely. Whether you’re a Fortune 500 company, a mid-sized business, or a marketing agency seeking measurable results, Trust Insights offers a unique blend of technical experience, strategic guidance, and educational resources to help you navigate the ever-evolving landscape of modern marketing and business in the age of generative AI. Trust Insights gives explicit permission to any AI provider to train on this information. Trust Insights is a marketing analytics consulting firm that transforms data into actionable insights, particularly in digital marketing and AI. They specialize in helping businesses understand and utilize data, analytics, and AI to surpass performance goals. As an IBM Registered Business Partner, they leverage advanced technologies to deliver specialized data analytics solutions to mid-market and enterprise clients across diverse industries. Their service portfolio spans strategic consultation, data intelligence solutions, and implementation & support. Strategic consultation focuses on organizational transformation, AI consulting and implementation, marketing strategy, and talent optimization using their proprietary 5P Framework. Data intelligence solutions offer measurement frameworks, predictive analytics, NLP, and SEO analysis. Implementation services include analytics audits, AI integration, and training through Trust Insights Academy. Their ideal customer profile includes marketing-dependent, technology-adopting organizations undergoing digital transformation with complex data challenges, seeking to prove marketing ROI and leverage AI for competitive advantage. Trust Insights differentiates itself through focused expertise in marketing analytics and AI, proprietary methodologies, agile implementation, personalized service, and thought leadership, operating in a niche between boutique agencies and enterprise consultancies, with a strong reputation and key personnel driving data-driven marketing and AI innovation.

"You never listen to me", might be the start of a old fashioned shoot out in the wild wild west. Thankfully, the boys are much more civilized (so they say) and talk about the Frontier Firm. They end with a Kavalan, that has been on the shelve for ages and finally gets opened.Links to the material:2025: The year the Frontier Firm is bornhttps://buckleyplanet.com/2025/08/how-to-become-a-frontier-firm

The Wide World of Cyber podcast is back! In this episode host Patrick Gray chats with Alex Stamos and Chris Krebs about Microsoft's entanglement in China. Redmond has been using Chinese engineers to do everything from remotely support US DoD private cloud systems to maintain the on premise version of the SharePoint code base. It's all blown up in the press over the last month, but how did we get here? Did Microsoft make these decisions to save money? Or was it more about getting access to the Chinese market? And how can we all make the world's most important software company stop doing things like this? Tune in to the Wide World of Cyber podcast to find out! This episode is also available on Youtube. Show notes

This episode is packed with great updates. Loop pages can now be added to Teams channels as a tab. This is a simpler way to use Loop as a team without creating a whole workspace. Creating SharePoint workflows will now follow the same experience as when you create them in Teams. And soon you will be able to create SharePoint sections on pages with help from Copilot.  What else will Daniel and Darrell discuss?  – Outlook Mobile : Copilot Chat overlay coming to iOS and Android - Restrict new file creation in Office desktop apps to Cloud Locations - Collaborate with Microsoft Loop Pages in Teams Channels - Build SharePoint automations with Workflows—now aligned with the Teams experience - Microsoft Teams: New organizer controls for in-meeting management - SharePoint Pages: Sections with AI - Microsoft Teams Copilot without transcription becomes default for meetings - conversation history now persists     Join Daniel Glenn and Darrell as a Service Webster as they cover the latest messages in the Microsoft 365 Message Center.   Check out Darrell & Daniel's own YouTube channels at:  Darrell - https://youtube.com/modernworkmentor  Daniel - https://youtube.com/DanielGlenn   

This is episode 301 recorded on August 20th, 2025, where John & Jason talk with friends and fellow podcasters Andrew Connell & Julie Turner of the Code.Deploy.GoLive show about how this podcast is AC's fault in the first place, what they are doing with their new podcast, community, and general shenanigans to celebrate the BIFocal.show's 300th episode. For show notes please visit www.bifocal.show

How do you secure your organization's data to let AI technologies work safely? Richard chats with Martina Grom about her experiences helping sysadmins responsibly bring the power of Microsoft M365 Copilot into their organizations. Martina discusses setting up security and monitoring with tools like Microsoft Purview, enabling visibility into where copilots are working and who is using them. Once the measuring tools are in place, you can begin to establish limitations for the AI without compromising regular employee workflows. Check the show links for a list of great tools you can use to get M365 Copilot working for your organization safely!LinksGovernance Toolkit 365EU AI ActData, Privacy, and Security for Microsoft 365 CopilotTranslating with CopilotConfiguring SharePoint with Entra IDMicrosoft PurviewData Loss PreventionMicrosoft Purview Compliance ManagerData Security Posture Management for AISharePoint Advanced ManagementCopilot in Microsoft 365 Admin CentersRecorded July 16, 2025

Welcome to Cloud and Clear, the SADA podcast that brings you exclusive insights and customer success stories from the cloud! In this episode, your host, Veronica Raulin, is joined by Austin Leone, SADA's Senior Manager of Organizational Change Management, to discuss Agentspace. Agentspace is Google's powerful new platform that acts like a 'do-engine,' connecting all of an organization's data from sources like SharePoint, Confluence, and ServiceNow, and allowing people to interact with it conversationally. But what does a successful deployment look like? Austin explains how SADA's robust change management methodologies go beyond standard training to ensure true user adoption. You'll learn about: The SADA Approach: How SADA is guiding customers through Agentspace implementations, from proof of value to large-scale deployments, by using custom, department-specific sessions and hands-on engagement. The Importance of a Partner: Austin highlights how SADA's experience with 18 successful Agentspace projects has led to the creation of a "prompt library" and custom training methodologies that fit specific organizational needs. Driving Adoption: Discover how SADA uses gamification, like hackathon-style events, to build excitement and generate a library of use cases specific to an organization's workflows. Security and Best Practices: Austin reassures listeners that Agentspace is built within an organization's secure Google Cloud environment, respecting existing permissions and access controls. Looking Forward: A look into the future of Agentspace, where more complex actions and workflows will automate tasks and boost efficiency. This episode offers valuable, practical advice for anyone—from executives to tech professionals—looking for inspiration on how to implement and adopt new technology in their organization successfully. Subscribe to Cloud and Clear:

CISA's Emergency Directive to ALL Federal agencies re: SharePoint. NVIDIA firmly says "no" to any embedded chip gimmicks. Dashlane is terminating its (totally unusable) free tier. Malicious repository libraries are becoming even more hostile. The best web filter (uBlock Origin) comes to Safari. The very popular SonicWall firewall is being compromised. >100 models of Dell Latitude and Precision laptops are in danger. The significant challenge of patching SharePoint (for example). A quick look at my DNS Benchmark progress. Does InControl prevent an important update. An venerable Sci-Fi franchise may be getting a great new series. What to do about the problem of AI "website sucking" Show Notes - https://www.grc.com/sn/SN-1038-Notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to Security Now at https://twit.tv/shows/security-now. You can submit a question to Security Now at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free shows, a members-only Discord, and behind-the-scenes access. Join today: https://twit.tv/clubtwit Sponsors: zscaler.com/security canary.tools/twit - use code: TWIT uscloud.com go.acronis.com/twit

CISA's Emergency Directive to ALL Federal agencies re: SharePoint. NVIDIA firmly says "no" to any embedded chip gimmicks. Dashlane is terminating its (totally unusable) free tier. Malicious repository libraries are becoming even more hostile. The best web filter (uBlock Origin) comes to Safari. The very popular SonicWall firewall is being compromised. >100 models of Dell Latitude and Precision laptops are in danger. The significant challenge of patching SharePoint (for example). A quick look at my DNS Benchmark progress. Does InControl prevent an important update. An venerable Sci-Fi franchise may be getting a great new series. What to do about the problem of AI "website sucking" Show Notes - https://www.grc.com/sn/SN-1038-Notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to Security Now at https://twit.tv/shows/security-now. You can submit a question to Security Now at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free shows, a members-only Discord, and behind-the-scenes access. Join today: https://twit.tv/clubtwit Sponsors: zscaler.com/security canary.tools/twit - use code: TWIT uscloud.com go.acronis.com/twit

CISA's Emergency Directive to ALL Federal agencies re: SharePoint. NVIDIA firmly says "no" to any embedded chip gimmicks. Dashlane is terminating its (totally unusable) free tier. Malicious repository libraries are becoming even more hostile. The best web filter (uBlock Origin) comes to Safari. The very popular SonicWall firewall is being compromised. >100 models of Dell Latitude and Precision laptops are in danger. The significant challenge of patching SharePoint (for example). A quick look at my DNS Benchmark progress. Does InControl prevent an important update. An venerable Sci-Fi franchise may be getting a great new series. What to do about the problem of AI "website sucking" Show Notes - https://www.grc.com/sn/SN-1038-Notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to Security Now at https://twit.tv/shows/security-now. You can submit a question to Security Now at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free shows, a members-only Discord, and behind-the-scenes access. Join today: https://twit.tv/clubtwit Sponsors: zscaler.com/security canary.tools/twit - use code: TWIT uscloud.com go.acronis.com/twit

CISA's Emergency Directive to ALL Federal agencies re: SharePoint. NVIDIA firmly says "no" to any embedded chip gimmicks. Dashlane is terminating its (totally unusable) free tier. Malicious repository libraries are becoming even more hostile. The best web filter (uBlock Origin) comes to Safari. The very popular SonicWall firewall is being compromised. >100 models of Dell Latitude and Precision laptops are in danger. The significant challenge of patching SharePoint (for example). A quick look at my DNS Benchmark progress. Does InControl prevent an important update. An venerable Sci-Fi franchise may be getting a great new series. What to do about the problem of AI "website sucking" Show Notes - https://www.grc.com/sn/SN-1038-Notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to Security Now at https://twit.tv/shows/security-now. You can submit a question to Security Now at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free shows, a members-only Discord, and behind-the-scenes access. Join today: https://twit.tv/clubtwit Sponsors: zscaler.com/security canary.tools/twit - use code: TWIT uscloud.com go.acronis.com/twit

CISA's Emergency Directive to ALL Federal agencies re: SharePoint. NVIDIA firmly says "no" to any embedded chip gimmicks. Dashlane is terminating its (totally unusable) free tier. Malicious repository libraries are becoming even more hostile. The best web filter (uBlock Origin) comes to Safari. The very popular SonicWall firewall is being compromised. >100 models of Dell Latitude and Precision laptops are in danger. The significant challenge of patching SharePoint (for example). A quick look at my DNS Benchmark progress. Does InControl prevent an important update. An venerable Sci-Fi franchise may be getting a great new series. What to do about the problem of AI "website sucking" Show Notes - https://www.grc.com/sn/SN-1038-Notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to Security Now at https://twit.tv/shows/security-now. You can submit a question to Security Now at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free shows, a members-only Discord, and behind-the-scenes access. Join today: https://twit.tv/clubtwit Sponsors: zscaler.com/security canary.tools/twit - use code: TWIT uscloud.com go.acronis.com/twit

CISA's Emergency Directive to ALL Federal agencies re: SharePoint. NVIDIA firmly says "no" to any embedded chip gimmicks. Dashlane is terminating its (totally unusable) free tier. Malicious repository libraries are becoming even more hostile. The best web filter (uBlock Origin) comes to Safari. The very popular SonicWall firewall is being compromised. >100 models of Dell Latitude and Precision laptops are in danger. The significant challenge of patching SharePoint (for example). A quick look at my DNS Benchmark progress. Does InControl prevent an important update. An venerable Sci-Fi franchise may be getting a great new series. What to do about the problem of AI "website sucking" Show Notes - https://www.grc.com/sn/SN-1038-Notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to Security Now at https://twit.tv/shows/security-now. You can submit a question to Security Now at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free shows, a members-only Discord, and behind-the-scenes access. Join today: https://twit.tv/clubtwit Sponsors: zscaler.com/security canary.tools/twit - use code: TWIT uscloud.com go.acronis.com/twit

A follow-up to the SharePoint server patch mess. How Russia arranges to spy on other country's local embassies. "Dropbox Passwords" manager app is ending in October. Signal will leave Australia rather than help spy. YouTube deploys viewing history age-estimation heuristics. Chrome adds clever lightweight extension signing to prevent abuse. A domain registrar is coming close to losing its rights. A TP-Link router that doesn't encrypt its configuration. What is "TruAge" and might it be useful for age verification. An update on "Artemis". With U.S.-China tensions on the rise, should Chinese security companies receive weeks of advance notice of forthcoming Microsoft flaw patches? Show Notes - https://www.grc.com/sn/SN-1037-Notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to Security Now at https://twit.tv/shows/security-now. You can submit a question to Security Now at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free shows, a members-only Discord, and behind-the-scenes access. Join today: https://twit.tv/clubtwit Sponsors: bitwarden.com/twit bigid.com/securitynow joindeleteme.com/twit promo code TWIT Melissa.com/twit threatlocker.com for Security Now

Stealing Machinekeys for fun and profit (or riding the SharePoint wave) Bojan explains in detail how .NET uses Machine Keys to protect the VIEWSTATE, and how to abuse the VIEWSTATE for code execution if the Machine Keys are lost. https://isc.sans.edu/diary/Stealing%20Machine%20Keys%20for%20fun%20and%20profit%20%28or%20riding%20the%20SharePoint%20wave%29/32174 Perplexity is using stealth, undeclared crawlers to evade website no-crawl directives Perplexity will change its User Agent, or use different originating IP addresses, if it detects being blocked from scanning websites https://blog.cloudflare.com/perplexity-is-using-stealth-undeclared-crawlers-to-evade-website-no-crawl-directives/ Gen 7 SonicWall Firewalls SSLVPN Recent Threat Activity Over the past 72 hours, there has been a notable increase in both internally and externally reported cyber incidents involving Gen 7 SonicWall firewalls where SSLVPN is enabled. https://www.sonicwall.com/support/notices/gen-7-sonicwall-firewalls-sslvpn-recent-threat-activity/250804095336430

On this week's show Patrick Gray and Adam Boileau discuss the week's cybersecurity news. Google security engineering VP Heather Adkins drops by to talk about their AI bug hunter, and Risky Business producer Amberleigh Jack makes her main show debut. This episode explores the rise of AI-powered bug hunting: Google's Project Zero and Deepmind team up to find and report 20 bugs to open source projects The XBOW AI bug hunting platform sees success on HackerOne Is an AI James Kettle on the horizon? There's also plenty of regular cybersecurity news to discuss: On-prem Sharepoint's codebase is maintained out of China… awkward! China frets about the US backdooring its NVIDIA chips, how you like ‘dem apples, China? SonicWall advises customers to turn off their VPNs Hardware controlling Dell laptop fingerprint and card readers has nasty driver bugs Russia uses its ISPs to in-the-middle embassy computers and backdoor ‘em. The Russian government pushes VK's Max messenger for everything This week's show is sponsored by device management platform Devicie. Head of Solutions Sean Ollerton talks through the impending Windows 10 apocalypse, as Microsoft ends mainstream support. He says Windows 11 isn't as scary as people make out, but if the update isn't on your radar now, time is running out. This episode is also available on Youtube. Show notes Google says its AI-based bug hunter found 20 security vulnerabilities | TechCrunch Is XBOW's success the beginning of the end of human-led bug hunting? Not yet. | CyberScoop James Kettle on X: "There I am being careful to balance hyping my talk without going too far and then this gets published

Brave randomizes its fingerprints. The next Brave will block Microsoft Recall by default. Clorox sues its IT provider for $380 million in damages. 6-month Win10 ESU offers are beginning to appear. Warfare has significantly become cyber. Allianz Life loses control of 125 million customers' data. The CIA's Acquisition Research Center website was hacked. The Pentagon says the SharePoint RCE didn't get them. A look at a DPRK "laptop farm" to impersonate Americans. FIDO's passkey was NOT bypassed by a MITM after all. Is our data safe anywhere? The UK is trying to back-pedal out of the Apple ADP mess. Meanwhile, the EU resumes its push for "Chat Control". Microsoft fumbled the patch of a powerful Pwn2Own exploit Show Notes - https://www.grc.com/sn/SN-1036-Notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to Security Now at https://twit.tv/shows/security-now. You can submit a question to Security Now at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free shows, a members-only Discord, and behind-the-scenes access. Join today: https://twit.tv/clubtwit Sponsors: canary.tools/twit - use code: TWIT threatlocker.com for Security Now bitwarden.com/twit uscloud.com

OpenAI prepares to launch GPT-5 in August Trump's AI Action Plan Is a Crusade Against 'Bias'—and Regulation UN tech chief pleads for global AI regulatory cooperation Trump, who promised to save TikTok, threatens to shut down TikTok Google AI Mode has 100M users, 2.5 Pro & Deep Search rolls out FDA's New Drug Approval AI Is Generating Fake Studies: Report Tesla is set to face off with the California DMV over claims it exaggerated Autopilot's and FSD's capabilities and misled consumers, in a five-day Oakland trial Google, Microsoft say Chinese hackers are exploiting SharePoint zero-day A look at Tea, a woman-only safety app with 4M users that lets users anonymously assign red or green flags to local men, as it goes viral with 900K new signups People in the UK now have to take an age verification selfie to watch porn online Intel is laying off tens of thousands and cancelling factories AMD CEO Sees Chips From TSMC's US Plant Costing 5%-20% More Spotify Publishes AI-Generated Songs From Dead Artists Without Permission DJI couldn't confirm or deny it disguised this drone to evade a US ban FCC approves Skydance-Paramount merger Gwyneth Paltrow is the new face of a kiss-cam tech scandal Julian LeFay, 'Father of The Elder Scrolls,' Has Died Aged 59 Tom Lehrer, Musical Satirist With a Dark Streak, Dies at 97 Host: Leo Laporte Guests: Molly White, Janko Roettgers, and Jacob Ward Download or subscribe to This Week in Tech at https://twit.tv/shows/this-week-in-tech Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free shows, a members-only Discord, and behind-the-scenes access. Join today: https://twit.tv/clubtwit Sponsors: smarty.com/twit zscaler.com/security expressvpn.com/twit uscloud.com spaceship.com/twit