Why Are We STILL Getting Hacked Like This?
Most modern hacks aren’t happening because of genius attackers… They’re happening because of simple decisions developers keep making. In this episode of Shop Talk, Dave and Glen break down: Why third-party scripts are still one of the biggest risks on the web How modern dev stacks are increasing complexity (and attack surface) Whether AI is helping developers… or making things worse What actually separates a good developer in 2026 And as always — we’re answering real questions from viewers. If you’ve ever wondered: “Why does this keep happening?” …this episode is for you. Question of the Week: Why are we still linking to code we don’t control? 📺 Shop Talk is where we dig into your questions, ideas, and opinions about software, systems, and the industry. Leave your questions in the comments for the next episode. 00:00 - Start 00:18 - Hey I’m Dave 00:40 - It ticks me off every time I see a website linking to third party script files on a server they do not control. 02:43 - Dependencies, control, and attack surface 04:50 - Will we get to a point of eliminating the ability to run scripts? 06:02 - What does that say about control over these systems? 09:29 - Are we trusting systems too much? 10:44 - If you must use third-party scripts, what’s the right way to do it safely? 12:27 - Tooling, abstraction, and complexity 13:17 - Because XMLHttpRequest is too hard for people? 13:58 - What are we actually paying for now — complexity or value? 15:00 - Why does this guy have a VW shirt? 16:52 - Understanding vs generation 17:16 - Using AI to generate code… does that mean fewer developers actually understand what they’re building? 18:04 - If AI is just aggregating existing knowledge… is it actually creating anything new? 18:57 - AI is a large percent smoke & mirrors… 20:52 - Is it possible Claude is leaking itself on purpose? 21:28 - Ownership, testing, and risk 22:10 - If developers even accidentally read leaked code… can that affect their ability to work legally in the future? 22:39 - How do you test the restore? 23:55 - What matters for developers now 26:25 - Windows 11 is malware that installs itself despite user wishes… 27:11 - I’m rather enjoying using AI to pump out code and never having to hear another developer tell me how they are the best… 27:40 - Human side of technology 30:25 - Did wanting better hardware back then actually make you a better programmer? 30:57 - There used to be an app called The Simpsonizer… I guess AI can do that now… 32:53 - Are we losing something creative now that AI can do everything instantly? 36:20 - The Friendly Coder…
When Did We Stop Optimizing Software? | Shop Talk #85
Claude is your insider threat now - Dan Tentler - Security Fest 2026
How Does a Password Cracker Know It’s Right? The Part Everyone Misses - ShopTalk!
Shop Talk #73 — When Is It Actually Fixed? Debugging Systems Like an Engineer
Why Is Windows Built Like This? | Shop Talk #81
Zig 2026: No-AI Policy, $670K Foundation, Left GitHub & Why Zig Isn’t 1.0 - Andrew Kelley Explains
Everything Is a File? | Shop Talk #84
Your Phone Is Not Listening to You - Truth Is Much Worse
AI Won’t Fix This (And Might Make It Worse) | Shop Talk #78
Debugging the “Almost Working” Problem
Keynote: After the AI Hype – What’s Real, and What’s Next - Richard Campbell - 2026
They're Poisoning the Agents!
"There's a Secret Backdoor in Netgear" Routers, ft. Wendell of Level1 Techs
How to Hide in Plain Sight: Next-Level Digital Privacy | Ivan Banov at BSidesCache 2025
Why your NEW computer is SLOWER than your OLD computer! By a Retired Microsoft Engineer.
What Happens After You Solve the Hardware Problem?
Will AI Fix This? (Why Software Keeps Getting Worse) | Shop Talk EP 77
AI Bubble: ‘This could be OpenAI’s death spiral’ | Ed Zitron
Turing Award Winner: Disagreeing with Google, Postgres, Future Problems | Mike Stonebraker
