Security Flaws, Phishing Attacks & Code Quality: Vibe Coding’s Dark Side: The Disclosure Episode 3

https://is1-ssl.mzstatic.com/image/thumb/Podcasts211/v4/c9/a9/16/c9a9164e-d900-5027-7149-9aba9b1a8dba/mza_5797065989387187777.jpg/600x600bb.jpg

The Secure Disclosure

Mackenzie Jackson

12 episodes

5 days ago

Cyber, Sake, News, Research and more The Disclosure is a weekly cybersecurity podcast that brings the latest in news, research, and leaders into a 45-minute podcast. Hosted by Mackenzie Jackson, we bring new guests each week to share their research and expertise in the space.

Technology

RSS

All content for The Secure Disclosure is the property of Mackenzie Jackson and is served directly from their servers with no modification, redirects, or rehosting. The podcast is not affiliated with or endorsed by Podjoint in any way.

Technology

https://d3t3ozftmdmh3i.cloudfront.net/staging/podcast_uploaded_nologo/44244469/44244469-1755199569666-4c615cb139fa1.jpg

Security Flaws, Phishing Attacks & Code Quality: Vibe Coding’s Dark Side: The Disclosure Episode 3

The Secure Disclosure

36 minutes 22 seconds

2 months ago

Security Flaws, Phishing Attacks & Code Quality: Vibe Coding’s Dark Side: The Disclosure Episode 3

In this episode of Disclosure, Mackenzie Jackson takes listeners deep into the fast-evolving—and increasingly risky—world of AI-assisted coding. First, security researcher Wout Debaenst exposes a massive vulnerability in Base44’s AI coding platform that made private applications accessible to anyone with minimal effort, highlighting how “vibe coding” can create the next wave of supply chain attacks.Next, malware researcher Charlie Ericson returns to reveal a fresh PyPI phishing campaign eerily similar to last week’s npm compromise, underscoring the fragility of our open-source ecosystems.Finally, Mackenzie heads to the Cyber Sake Bar for a candid conversation with Khachatur Virabyan, co-founder of Trag, exploring how AI can change code quality. Along the way, they sip sake, swap war stories, and debate the future of software development in the age of AI.00:00 - Introduction1:19 - Base44 Breach & The Risks of AI Coding Platforms 09:24 - PyPI Phishing Campaign and Open Source Security Gaps 17:08 - AI-Assisted Code Quality with Trag 34:02 - Cybersecurity “Would You Rather” and Closing