Product Security : 2025 Year in Review & what's ahead in 2026 - Chiradeep Vittal (CTO @ AppAxon) скачать в хорошем качестве

Product Security : 2025 Year in Review & what's ahead in 2026 - Chiradeep Vittal (CTO @ AppAxon)

2025 was the year AI changed product security forever. In this special year-in-review episode of ProdSec Decoded, Chiradeep Vittal (CTO, AppAxon) unpacks the AI Trifecta - AI-powered development, AI-powered attacks, and AI-powered defense. From vibe coding and autonomous attacks to agentic SOCs, regulation, and bold predictions for 2026, this episode breaks down what every product security leader needs to know to stay ahead in the AI era. Guest Profile:   / chiradeepvittal   Host Profile:   / proychowdhury   Segment 1: Introductions & AI-Trifecta Explained 00:00 – Introduction & Context 01:00 – Why 2025 Was a Turning Point - Chiradeep reflects on why 2025 was the year AI, security, and software development truly collided. 01:40 – The “AI Trifecta” Explained (AI-powered development, AI-powered attacks, AI-powered defense) Segment 2 : AI-powered Development 03:30 – Vibe Coding Goes Mainstream 06:00 – Why “Working Code” Isn’t Safe Code (Silent vulnerabilities in AI-generated apps) 07:45 – Real-World Failures from AI-Generated Code 09:50 – AI Coding at Enterprise Scale 11:00 – The Future of Securing AI-Generated Code Segment 3: AI-powered Attacks 14:00 – Attackers Enter the AI Era 16:00 – Autonomous AI Attacks in the Wild 19:00 – AI Systems as Targets 21:30 – The Rising Cost of AI Breaches Segment 4: AI-powered Defense 22:00 – Security Industry Response: Agentic SOCs 24:30 – Regulation Enters the Picture (EU AI Act vs. US Executive Order) 27:00 – Why Reactive Security Is No Longer Enough Segment 5: The Proactive Approach 28:00 – What Proactive Product Security Looks Like 30:00 – New Threat Modeling Frameworks for AI 31:00 – AI-Driven Red Teaming Segment 6: Predictions for 2026 33:00 – 2026 Predictions: AI-Powered Development 36:00 – 2026 Predictions: AI-Powered Attacks 38:00 – 2026 Predictions: Proactive AI Defense 41:00 – The Biggest Open Question for 2026 Segment 7: Conclusion 43:00 – Final Takeaways 44:15 – Closing Remarks & Wrap-up Show Notes: Andrej Karpathy coins the term Vibe Coding: https://x.com/karpathy/status/1886192... Agentic SOC - https://cloud.google.com/solutions/se... GTG-1002 Incident - Anthropic - https://assets.anthropic.com/m/ec212e... MITRE ATTACK Framework - https://attack.mitre.org/ DataBricks AI Red Team Experiment - https://www.databricks.com/blog/passi... Lovable Information Disclosure Vulnerability - https://www.sentinelone.com/vulnerabi... Microsoft 365 CoPilot Vulnerability (EchoLeak) https://www.hackthebox.com/blog/cve-2... OWASP Top 10 for LLM https://owasp.org/www-project-top-10-... EU AI Act - https://artificialintelligenceact.eu/ President Trump's EO on AI Governance - https://www.whitehouse.gov/presidenti... MAESTRO Threat Modeling Framework - https://cloudsecurityalliance.org/blo... IBM Cost of Data Breach Report 2025 - https://www.ibm.com/reports/data-breach