Cyberside Chats: Live! Poisoned On Open: The New Worm Hacking Your AI
Vibe coding is everywhere now — and a new worm is built to exploit it. Whether it’s your IT staff spinning up a handy new tool or the software vendor you rely on, the moment someone opens AI-generated or downloaded code in an assistant like Cursor or Claude Code, it strikes — no install, no “run” required. In its nastiest move, this worm — known as Shai-Hulud — talks the AI itself into running the attacker’s payload. This isn’t theoretical: in June 2026 it breached Microsoft’s own code, compromising repositories across its Azure organizations, and GitHub scrambled to shut down 73 of them in under two minutes. One compromised machine can hand an attacker cloud keys, tokens, and a foothold into everything downstream — yours or a vendor’s.
Join Sherri Davidoff and Matt Durrin for why this new “execute on open” tactic breaks years of supply-chain defense assumptions, how it turns AI coding tools into the attacker, and the questions every security leader should be asking Monday morning — plus live Q&A.
Speakers
Founder
LMG Security
Sherri Davidoff is the Founder of LMG Security and the author of three books, including “Ransomware and Cyber Extortion” and “Data Breaches: Crisis and Opportunity.” As a recognized expert in cybersecurity, she has been called a “security badass” by the New York Times. Sherri is a regular instructor at the renowned Black Hat trainings and a faculty member at the Pacific Coast Banking School. She is also the co-author of Network Forensics: Tracking Hackers Through Cyberspace (Prentice Hall, 2012), and has been featured as the protagonist in the book, Breaking and Entering: The Extraordinary Story of a Hacker Called “Alien.” Sherri is a GIAC-certified forensic examiner (GCFA) and penetration tester (GPEN) and received her degree in Computer Science and Electrical Engineering from MIT.
Director of Training
LMG Security
Matt Durrin is the Director of Training at LMG Security. He is an instructor at the international Black Hat USA conference, where he has taught classes on ransomware and data breaches. Matt has conducted cybersecurity seminars, tabletop exercises, and classes for thousands of attendees in all sectors, including banking, retail, healthcare, government, and more. He is also the co-author of a book, Ransomware and Cyber Extortion: Response and Prevention. A seasoned cybersecurity and IT professional, Matt specializes in ransomware response and research, as well as the deployment of proactive cybersecurity solutions. Matt holds a bachelor’s degree in computer science from the University of Montana, and his malware research has been featured on NBC Nightly News.
