Cross-site scripting (XSS), cross-site request forgeries (CSRF), and SQL injection are among the most common attacks made on web applications today, and they're so easy to prevent. In this talk, Ben Ramsey gives an overview of these attacks and what you can do to ensure your web application is protected.