Chris Wysopal

The transformative impact of GenAI for software development and its implications for cybersecurity

Up to 41% of AI-generated code contains security flaws. It's time to use AI to fix the problems that AI creates.

The transformative impact of GenAI for software development and its implications for cybersecurity
#1about 6 minutes

From vulnerability researcher to automated security founder

The speaker traces their journey from a hacker testifying before the US Senate to founding Veracode to automate application security testing.

#2about 2 minutes

Analyzing vulnerability introduction and security debt

Data shows that new vulnerabilities increase as software ages and most teams accumulate security debt by not fixing flaws within a year.

#3about 4 minutes

How generative AI is changing software development

Generative AI boosts productivity through code generation and other tasks, but its reliance on vulnerable open-source code for training data introduces significant risk.

#4about 5 minutes

Research shows GenAI tools frequently generate insecure code

Multiple academic studies reveal that 30-40% of AI-generated code contains vulnerabilities, and developers are often overconfident in its security.

#5about 1 minute

Generative AI accelerates the creation of vulnerable code

By increasing code velocity without improving security quality, generative AI leads to a higher rate of new vulnerabilities being introduced into codebases.

#6about 4 minutes

Using AI to automatically find and fix security flaws

The solution to AI-generated vulnerabilities is to use specialized AI models, trained on curated good and bad code, to automate security fixes.

#7about 2 minutes

Evaluating the risks of AI-powered security tools

When adopting AI tools for security, it is crucial to consider the trustworthiness of training data, licensing issues, IP leakage, and fix accuracy.

#8about 1 minute

Prompting for security and embracing automation

Developers should explicitly ask generative AI for secure code and integrate automated security testing and fixing tools to keep pace with development.

Related jobs
Jobs that call for the skills explored in this talk.

Matching moments

Increasing the value of talk recordings post-event
04:57 MIN

Increasing the value of talk recordings post-event

Cat Herding with Lions and Tigers - Christian Heilmann

The security risks of AI-generated code and slopsquatting
05:55 MIN

The security risks of AI-generated code and slopsquatting

Slopquatting, API Keys, Fun with Fonts, Recruiters vs AI and more - The Best of LIVE 2025 - Part 2

Why corporate AI adoption lags behind the hype
03:28 MIN

Why corporate AI adoption lags behind the hype

What 2025 Taught Us: A Year-End Special with Hung Lee

The future of recruiting beyond talent acquisition
03:15 MIN

The future of recruiting beyond talent acquisition

What 2025 Taught Us: A Year-End Special with Hung Lee

Automating formal processes risks losing informal human value
03:48 MIN

Automating formal processes risks losing informal human value

What 2025 Taught Us: A Year-End Special with Hung Lee

Moving beyond headcount to solve business problems
04:27 MIN

Moving beyond headcount to solve business problems

What 2025 Taught Us: A Year-End Special with Hung Lee

The emerging market for fixing AI-generated code
04:09 MIN

The emerging market for fixing AI-generated code

Devs vs. Marketers, COBOL and Copilot, Make Live Coding Easy and more - The Best of LIVE 2025 - Part 3

Why HR struggles with technology implementation and adoption
04:22 MIN

Why HR struggles with technology implementation and adoption

What 2025 Taught Us: A Year-End Special with Hung Lee

Featured Partners

Related Videos

See all videos
GenAI Security: Navigating the Unseen Iceberg24:33

GenAI Security: Navigating the Unseen Iceberg

Maish Saidel-Keesing

WWC24 - Chris Wysopal, Helmut Reisinger and Johannes Steger - Fighting Digital Threats in the Age of AI24:14

WWC24 - Chris Wysopal, Helmut Reisinger and Johannes Steger - Fighting Digital Threats in the Age of AI

Chris Wysopal, Helmut Reisinger & Johannes Steger

AI: Superhero or Supervillain? How and Why with Scott Hanselman25:17

AI: Superhero or Supervillain? How and Why with Scott Hanselman

Scott Hanselman

Can Machines Dream of Secure Code? Emerging AI Security Risks in LLM-driven Developer Tools35:37

Can Machines Dream of Secure Code? Emerging AI Security Risks in LLM-driven Developer Tools

Liran Tal

Panel: How AI is changing the world of work41:06

Panel: How AI is changing the world of work

Pascal Reddig, TJ Griffiths, Fabian Schmidt, Oliver Winzenried & Matthias Niehoff & Mirko Ross

Panel discussion: Developing in an AI world - are we all demoted to reviewers? WeAreDevelopers WebDev & AI Day March202547:35

Panel discussion: Developing in an AI world - are we all demoted to reviewers? WeAreDevelopers WebDev & AI Day March2025

Laurie Voss, Rey Bango, Hannah Foxwell, Rizel Scarlett & Thomas Steiner

From Monolith Tinkering to Modern Software Development41:06

From Monolith Tinkering to Modern Software Development

Lars Gentsch

The AI Security Survival Guide: Practical Advice for Stressed-Out Developers30:36

The AI Security Survival Guide: Practical Advice for Stressed-Out Developers

Mackenzie Jackson

Related Articles

View all articles
DC
Daniel Cranney
How to Use Generative AI to Accelerate Learning to Code
It’s undeniable that generative-AI and LLMs have transformed how developers work. Hours of hunting Stack Overflow can be avoided by asking your AI-code assistant, multi-file context can be fed to the AI from inside your IDE, and applications can be b...
How to Use Generative AI to Accelerate Learning to Code
CH
Chris Heilmann
Exploring AI: Opportunities and Risks for Developers
In today's rapidly evolving tech landscape, the integration of Artificial Intelligence (AI) in development presents both exciting opportunities and notable risks. This dynamic was the focus of a recent panel discussion featuring industry experts Kent...
Exploring AI: Opportunities and Risks for Developers

From learning to earning

Jobs that call for the skills explored in this talk.

Generative AI Engineer

Generative AI Engineer

Generative Ai Engineer83zero Limited
Glasgow, United Kingdom

£80-88K
GIT
Azure
NoSQL
React
+16