The Dark Side of AI: Developing unsecure applications in minutes!

AI is the ultimate accelerant for application development—its power unmatched—but without balance and control, it can quickly ignite new risks, turning potential into destruction. Explore the tangible impact of AI-generated code in this session by playing with fire – Using GPT-driven prompts, we’ll build a fully functional application, and in real time, we’ll uncover how common security flaws like SQL injection, cross-site scripting, and weak authentication can manifest in AI-generated code. Through hands-on exploration, we’ll walk through the potential impact of these vulnerabilities and how these risks could be avoided with secure coding practices, defined policies, developer guardrails, and thorough security audits and code reviews. By the end of the session, you'll have a deep understanding of how to: Recognize and assess the risks AI introduces in your code. Implement secure coding practices and enforce security policies. Integrate security audits, code reviews, and testing into your development workflow to ensure AI-generated code is safe for production. This session is vendor agnostic and designed to empower you to reap the benefits of AI without sacrificing security. Speaker Chris Lindsey, Field CTO, OX Security Chris Lindsey is a seasoned speaker who has appeared at conferences, webinars, and private events. Currently building an online community and creating a podcast series, Chris draws on expertise from more than 15 years of direct security experience and over 35 years of experience leading teams in programming and software, solutions, and security architecture. For three years, Chris built and led an entire application security program that includes the implementation of mature AppSec programs, including oversight of security processes and procedures, SAST, DAST, CSA/OSA, compliance, training, developer communication, code reviews, application inventory gathering, and risk analysis.