My AI agent mesmerized, but got me compromised

Slide download coming soon.



Video coming soon.

AI coding agents have significantly changed the world of code development. Smarter, faster, and more skilled, they gain greater autonomy and trust. Isn’t that too good to be true, and we might be dealing with a double-edged sword here? Can attackers use the same capabilities of the AI agents to attack their own users? And most importantly: what’s the worst that could happen if you fully trust some random AI Agent? In this talk I demonstrate how remote attackers exploit vulnerabilities in popular AI coding agents to capture sensitive data and compromise the computers of their users. Additionally, I conclude with recommendations for users and developers on how to mitigate such attacks.

About the Speaker