Chris Heilmann & Daniel Cranney & Ramona Schwering

WeAreDevelopers LIVE - Chrome for Sale? Comet - the upcoming perplexity browser Stealing and leaking

Never trust the LLM. Treat AI-generated code like a junior developer's pull request to prevent introducing massive security vulnerabilities.

WeAreDevelopers LIVE - Chrome for Sale? Comet - the upcoming perplexity browser Stealing and leaking
#1about 3 minutes

The overlooked security risks of AI and LLMs

AI tools can introduce unintentional data exposure and security traps that developers often overlook.

#2about 8 minutes

Understanding the recent surge in software vulnerabilities

Over-trusting AI-generated code, like insecure regex patterns, contributes to a significant increase in actively exploited vulnerabilities.

#3about 5 minutes

The hidden security dangers of vibe coding

While democratizing access to code, vibe coding creates major risks through exposed API keys and a lack of understanding of underlying security principles.

#4about 7 minutes

Enhancing personal security with physical hardware keys

Physical security keys like YubiKey offer a robust hardware-based authentication method to protect critical accounts beyond traditional passwords and passkeys.

#5about 5 minutes

The growing threat of DDoS attacks and cloud monitoring

DDoS attacks are increasing dramatically, highlighting the need for services like Cloudflare and tools like Cloud Snitch to monitor and protect cloud infrastructure.

#6about 4 minutes

Navigating employee surveillance and company hardware policies

Using company hardware for personal projects can lead to intellectual property disputes, and employee surveillance tools raise significant trust and privacy issues.

#7about 3 minutes

Exploring specific web vulnerabilities and filtering issues

An examination of less common attack vectors like WebSocket hijacking and the unintended consequences of overzealous input filtering in web editors.

#8about 7 minutes

The potential sale of Chrome and its web implications

Google may be forced to sell Chrome due to monopoly concerns, raising questions about the future of the open web and user privacy under new ownership.

#9about 4 minutes

Customizing ChatGPT's verbose communication style

Users can employ specific prompts to counteract ChatGPT's overly positive and verbose "house style" for more direct and efficient interactions.

#10about 6 minutes

The authenticity problem with AI-generated content

The rise of AI-generated podcasts and social media voiceovers raises concerns about the loss of authenticity and human connection in digital media.

#11about 2 minutes

The irony of using a pirated font in anti-piracy ads

The iconic "You wouldn't steal a car" anti-piracy campaign from the DVD era was ironically created using a pirated font.

#12about 2 minutes

Final advice on security and responsible AI usage

Key takeaways include never blindly trusting LLM outputs and recognizing that implementing robust security is a necessity, not a choice.

Related jobs
Jobs that call for the skills explored in this talk.

Matching moments

Understanding AI security risks for developers
03:35 MIN

Understanding AI security risks for developers

The AI Security Survival Guide: Practical Advice for Stressed-Out Developers

Discussing modern web development news and trends
12:31 MIN

Discussing modern web development news and trends

WeAreDevelopers LIVE - GraalVM in action, Static Analysis insights and more

Navigating security risks when creating developer content
05:12 MIN

Navigating security risks when creating developer content

WeAreDevelopers LIVE - Should We Respect LLMs? Is Rust Taking Over? Developers as Content Creators and more

Analyzing recent NPM attacks and browser market shifts
12:26 MIN

Analyzing recent NPM attacks and browser market shifts

WeAreDevelopers LIVE - "Fun and games - and all that comes with it", Back to BASIC & more

Recent news on security, AI governance, and data privacy
08:41 MIN

Recent news on security, AI governance, and data privacy

WeAreDevelopers LIVE - Dapr / Pixels and Generative Art / Open Source and Communities / and more

Key takeaways on IDE and developer tool security
02:28 MIN

Key takeaways on IDE and developer tool security

You click, you lose: a practical look at VSCode's security

Presenting live web scraping demos at a developer conference
01:57 MIN

Presenting live web scraping demos at a developer conference

Tech with Tim at WeAreDevelopers World Congress 2024

Q&A on Replay.io architecture, adoption, and CI/CD
13:02 MIN

Q&A on Replay.io architecture, adoption, and CI/CD

Fighting test flakiness with time machines

Featured Partners

Related Videos

See all videos
WeAreDevelopers Live: Browser Extensions, Honey Scam, Jailbreaking LLMs and more
1:01:25

WeAreDevelopers Live: Browser Extensions, Honey Scam, Jailbreaking LLMs and more

Chris Heilmann & Daniel Cranney

WeAreDevelopers LIVE: What's happening to React?, All-in-one editors, Fireships and Firebases & more
47:53

WeAreDevelopers LIVE: What's happening to React?, All-in-one editors, Fireships and Firebases & more

Chris Heilmann & Daniel Cranney & Tejas Kumar

WeAreDevelopers LIVE - Is AI replacing developers?, Stopping bots, AI on device & more
1:01:03

WeAreDevelopers LIVE - Is AI replacing developers?, Stopping bots, AI on device & more

Chris Heilmann & Daniel Cranney & Sebastian Gingter

WeAreDevelopers LIVE: Scammer Payback with Python, Grok Goes Unhinged, The Future of Chromium and mo
1:01:44

WeAreDevelopers LIVE: Scammer Payback with Python, Grok Goes Unhinged, The Future of Chromium and mo

Dan Cranney, Chris Heilmann & Brian Rountree

WeAreDevelopers LIVE - Performance and AI?, Social Media decline, Developer Events and more
53:24

WeAreDevelopers LIVE - Performance and AI?, Social Media decline, Developer Events and more

Chris Heilmann, Daniel Cranney & Harry Roberts

Panel discussion: Developing in an AI world - are we all demoted to reviewers? WeAreDevelopers WebDev & AI Day March2025
47:35

Panel discussion: Developing in an AI world - are we all demoted to reviewers? WeAreDevelopers WebDev & AI Day March2025

Laurie Voss, Rey Bango, Hannah Foxwell, Rizel Scarlett & Thomas Steiner

WeAreDevelopers LIVE - Did AI or JS break the web?, Finding gems in the days of AI and One thing developers really need to know
1:04:22

WeAreDevelopers LIVE - Did AI or JS break the web?, Finding gems in the days of AI and One thing developers really need to know

Chris Heilmann, Daniel Cranney & Peter Cooper

WeAreDevelopers LIVE - the weekly developer show with Chris Heilmann and Daniel Cranney
59:27

WeAreDevelopers LIVE - the weekly developer show with Chris Heilmann and Daniel Cranney

Chris Heilmann, Daniel Cranney & Julia Kordick

Related Articles

View all articles
Chris Heilmann
Dev Digest 116 - WWWAI?
This time, learn how to un-AI Google's search results, what's new on the web, avoid a new security hole and go back to BASICS with us. News and ArticlesWhat a week. Google, Microsoft, OpenAI and many others had their big flagship events announcing th...
Dev Digest 116 - WWWAI?
Chris Heilmann
WeAreDevelopers LIVE days are changing - get ready to take part
Starting with this week's Web Dev Day edition of WeAreDevelopers LIVE Days, we changed the the way we run these online conferences. The main differences are:Shorter talks (half an hour tops)More interaction in Q&AA tips and tricks "Did you know" sect...
WeAreDevelopers LIVE days are changing - get ready to take part
Chris Heilmann
Exploring AI: Opportunities and Risks for Developers
In today's rapidly evolving tech landscape, the integration of Artificial Intelligence (AI) in development presents both exciting opportunities and notable risks. This dynamic was the focus of a recent panel discussion featuring industry experts Kent...
Exploring AI: Opportunities and Risks for Developers
Chris Heilmann
WeAreDevelopers Dev Digest Issue 116 - The new search wars…
Welcome to edition 116 of the WeAreDevelopers Dev Digest. This time we talk about how the fight for AI and search dominance heats up with Google releasing a lot at their I/O event and OpenAI doing the same a day earlier…News and ArticlesA ton of thin...
WeAreDevelopers Dev Digest Issue 116 - The new search wars…

From learning to earning

Jobs that call for the skills explored in this talk.