Chris Heilmann & Daniel Cranney & Ramona Schwering
WeAreDevelopers LIVE - Chrome for Sale? Comet - the upcoming perplexity browser Stealing and leaking
#1about 3 minutes
The overlooked security risks of AI and LLMs
AI tools can introduce unintentional data exposure and security traps that developers often overlook.
#2about 8 minutes
Understanding the recent surge in software vulnerabilities
Over-trusting AI-generated code, like insecure regex patterns, contributes to a significant increase in actively exploited vulnerabilities.
#3about 5 minutes
The hidden security dangers of vibe coding
While democratizing access to code, vibe coding creates major risks through exposed API keys and a lack of understanding of underlying security principles.
#4about 7 minutes
Enhancing personal security with physical hardware keys
Physical security keys like YubiKey offer a robust hardware-based authentication method to protect critical accounts beyond traditional passwords and passkeys.
#5about 5 minutes
The growing threat of DDoS attacks and cloud monitoring
DDoS attacks are increasing dramatically, highlighting the need for services like Cloudflare and tools like Cloud Snitch to monitor and protect cloud infrastructure.
#6about 4 minutes
Navigating employee surveillance and company hardware policies
Using company hardware for personal projects can lead to intellectual property disputes, and employee surveillance tools raise significant trust and privacy issues.
#7about 3 minutes
Exploring specific web vulnerabilities and filtering issues
An examination of less common attack vectors like WebSocket hijacking and the unintended consequences of overzealous input filtering in web editors.
#8about 7 minutes
The potential sale of Chrome and its web implications
Google may be forced to sell Chrome due to monopoly concerns, raising questions about the future of the open web and user privacy under new ownership.
#9about 4 minutes
Customizing ChatGPT's verbose communication style
Users can employ specific prompts to counteract ChatGPT's overly positive and verbose "house style" for more direct and efficient interactions.
#10about 6 minutes
The authenticity problem with AI-generated content
The rise of AI-generated podcasts and social media voiceovers raises concerns about the loss of authenticity and human connection in digital media.
#11about 2 minutes
The irony of using a pirated font in anti-piracy ads
The iconic "You wouldn't steal a car" anti-piracy campaign from the DVD era was ironically created using a pirated font.
#12about 2 minutes
Final advice on security and responsible AI usage
Key takeaways include never blindly trusting LLM outputs and recognizing that implementing robust security is a necessity, not a choice.
Related jobs
Jobs that call for the skills explored in this talk.
Wilken GmbH
Ulm, Germany
Senior
Kubernetes
AI Frameworks
+3
ROSEN Technology and Research Center GmbH
Osnabrück, Germany
Senior
TypeScript
React
+3
Matching moments
01:06 MIN
Malware campaigns, cloud latency, and government IT theft
Fake or News: Self-Driving Cars on Subscription, Crypto Attacks Rising and Working While You Sleep - Théodore Lefèvre
01:15 MIN
Crypto crime, EU regulation, and working while you sleep
Fake or News: Self-Driving Cars on Subscription, Crypto Attacks Rising and Working While You Sleep - Théodore Lefèvre
03:45 MIN
Preventing exposed API keys in AI-assisted development
Slopquatting, API Keys, Fun with Fonts, Recruiters vs AI and more - The Best of LIVE 2025 - Part 2
06:33 MIN
The security challenges of building AI browser agents
AI in the Open and in Browsers - Tarek Ziadé
03:16 MIN
Improving the developer feedback loop with specialized tools
Developer Time Is Valuable - Use the Right Tools - Kilian Valkhof
06:44 MIN
Using Chrome's built-in AI for on-device features
Devs vs. Marketers, COBOL and Copilot, Make Live Coding Easy and more - The Best of LIVE 2025 - Part 3
03:07 MIN
Final advice for developers adapting to AI
WeAreDevelopers LIVE – AI, Freelancing, Keeping Up with Tech and More
04:30 MIN
Understanding browser APIs that rely on company services
Developer Time Is Valuable - Use the Right Tools - Kilian Valkhof
Featured Partners
Related Videos
53:46WeAreDevelopers LIVE – AI vs the Web & AI in Browsers
Chris Heilmann, Daniel Cranney & Raymond Camden
1:01:25WeAreDevelopers Live: Browser Extensions, Honey Scam, Jailbreaking LLMs and more
Chris Heilmann & Daniel Cranney
47:53WeAreDevelopers LIVE: What's happening to React?, All-in-one editors, Fireships and Firebases & more
Chris Heilmann & Daniel Cranney & Tejas Kumar
1:01:03WeAreDevelopers LIVE - Is AI replacing developers?, Stopping bots, AI on device & more
Chris Heilmann & Daniel Cranney & Sebastian Gingter
1:01:44WeAreDevelopers LIVE: Scammer Payback with Python, Grok Goes Unhinged, The Future of Chromium and mo
Dan Cranney, Chris Heilmann & Brian Rountree
53:24WeAreDevelopers LIVE - Performance and AI?, Social Media decline, Developer Events and more
Chris Heilmann, Daniel Cranney & Harry Roberts
1:04:22WeAreDevelopers LIVE - Did AI or JS break the web?, Finding gems in the days of AI and One thing developers really need to know
Chris Heilmann, Daniel Cranney & Peter Cooper
47:35Panel discussion: Developing in an AI world - are we all demoted to reviewers? WeAreDevelopers WebDev & AI Day March2025
Laurie Voss, Rey Bango, Hannah Foxwell, Rizel Scarlett & Thomas Steiner
Related Articles
View all articles
From learning to earning
Jobs that call for the skills explored in this talk.
Code Healers LLC
Hinesville, United States of America
Remote
€30-40K
Intermediate
Senior
.NET
React
JavaScript
+2
Code Healers LLC
Hinesville, United States of America
Remote
€20-30K
Junior
Intermediate
React
JavaScript
TypeScript
+1
Visonum GmbH
Remote
Junior
Intermediate
React
Redux
TypeScript
Snyk's Incubation Accelerator
Charing Cross, United Kingdom
Go
Python
Node.js
Microservices
Agile Methodologies
+1
Live Wire
Python
Unreal Engine
Snyk
Charing Cross, United Kingdom
Senior
Azure
Docker
TypeScript
Kubernetes
Google Cloud Platform
+1