Chris Heilmann & Daniel Cranney & Ramona Schwering
WeAreDevelopers LIVE - Chrome for Sale? Comet - the upcoming perplexity browser Stealing and leaking
#1about 3 minutes
The overlooked security risks of AI and LLMs
AI tools can introduce unintentional data exposure and security traps that developers often overlook.
#2about 8 minutes
Understanding the recent surge in software vulnerabilities
Over-trusting AI-generated code, like insecure regex patterns, contributes to a significant increase in actively exploited vulnerabilities.
#3about 5 minutes
The hidden security dangers of vibe coding
While democratizing access to code, vibe coding creates major risks through exposed API keys and a lack of understanding of underlying security principles.
#4about 7 minutes
Enhancing personal security with physical hardware keys
Physical security keys like YubiKey offer a robust hardware-based authentication method to protect critical accounts beyond traditional passwords and passkeys.
#5about 5 minutes
The growing threat of DDoS attacks and cloud monitoring
DDoS attacks are increasing dramatically, highlighting the need for services like Cloudflare and tools like Cloud Snitch to monitor and protect cloud infrastructure.
#6about 4 minutes
Navigating employee surveillance and company hardware policies
Using company hardware for personal projects can lead to intellectual property disputes, and employee surveillance tools raise significant trust and privacy issues.
#7about 3 minutes
Exploring specific web vulnerabilities and filtering issues
An examination of less common attack vectors like WebSocket hijacking and the unintended consequences of overzealous input filtering in web editors.
#8about 7 minutes
The potential sale of Chrome and its web implications
Google may be forced to sell Chrome due to monopoly concerns, raising questions about the future of the open web and user privacy under new ownership.
#9about 4 minutes
Customizing ChatGPT's verbose communication style
Users can employ specific prompts to counteract ChatGPT's overly positive and verbose "house style" for more direct and efficient interactions.
#10about 6 minutes
The authenticity problem with AI-generated content
The rise of AI-generated podcasts and social media voiceovers raises concerns about the loss of authenticity and human connection in digital media.
#11about 2 minutes
The irony of using a pirated font in anti-piracy ads
The iconic "You wouldn't steal a car" anti-piracy campaign from the DVD era was ironically created using a pirated font.
#12about 2 minutes
Final advice on security and responsible AI usage
Key takeaways include never blindly trusting LLM outputs and recognizing that implementing robust security is a necessity, not a choice.
Related jobs
Jobs that call for the skills explored in this talk.
Wilken GmbH
Ulm, Germany
Senior
Kubernetes
AI Frameworks
+3
ROSEN Technology and Research Center GmbH
Osnabrück, Germany
Senior
TypeScript
React
+3
Matching moments
04:57 MIN
Increasing the value of talk recordings post-event
Cat Herding with Lions and Tigers - Christian Heilmann
01:32 MIN
Organizing a developer conference for 15,000 attendees
Cat Herding with Lions and Tigers - Christian Heilmann
02:44 MIN
Rapid-fire thoughts on the future of work
What 2025 Taught Us: A Year-End Special with Hung Lee
03:28 MIN
Why corporate AI adoption lags behind the hype
What 2025 Taught Us: A Year-End Special with Hung Lee
04:22 MIN
Why HR struggles with technology implementation and adoption
What 2025 Taught Us: A Year-End Special with Hung Lee
03:45 MIN
Preventing exposed API keys in AI-assisted development
Slopquatting, API Keys, Fun with Fonts, Recruiters vs AI and more - The Best of LIVE 2025 - Part 2
06:44 MIN
Using Chrome's built-in AI for on-device features
Devs vs. Marketers, COBOL and Copilot, Make Live Coding Easy and more - The Best of LIVE 2025 - Part 3
05:55 MIN
The security risks of AI-generated code and slopsquatting
Slopquatting, API Keys, Fun with Fonts, Recruiters vs AI and more - The Best of LIVE 2025 - Part 2
Featured Partners
Related Videos
1:01:25WeAreDevelopers Live: Browser Extensions, Honey Scam, Jailbreaking LLMs and more
Chris Heilmann & Daniel Cranney
53:46WeAreDevelopers LIVE – AI vs the Web & AI in Browsers
Chris Heilmann, Daniel Cranney & Raymond Camden
47:53WeAreDevelopers LIVE: What's happening to React?, All-in-one editors, Fireships and Firebases & more
Chris Heilmann & Daniel Cranney & Tejas Kumar
1:01:03WeAreDevelopers LIVE - Is AI replacing developers?, Stopping bots, AI on device & more
Chris Heilmann & Daniel Cranney & Sebastian Gingter
1:01:44WeAreDevelopers LIVE: Scammer Payback with Python, Grok Goes Unhinged, The Future of Chromium and mo
Dan Cranney, Chris Heilmann & Brian Rountree
53:24WeAreDevelopers LIVE - Performance and AI?, Social Media decline, Developer Events and more
Chris Heilmann, Daniel Cranney & Harry Roberts
1:04:22WeAreDevelopers LIVE - Did AI or JS break the web?, Finding gems in the days of AI and One thing developers really need to know
Chris Heilmann, Daniel Cranney & Peter Cooper
47:35Panel discussion: Developing in an AI world - are we all demoted to reviewers? WeAreDevelopers WebDev & AI Day March2025
Laurie Voss, Rey Bango, Hannah Foxwell, Rizel Scarlett & Thomas Steiner
Related Articles
View all articles
From learning to earning
Jobs that call for the skills explored in this talk.
Durlston Partners
Charing Cross, United Kingdom
£110-135K
Senior
REST
React
Vue.js
TypeScript
Live Wire
Python
Unreal Engine