A short overview of Rails' software security troubles in January and February of 2013, and a few tips on how to defend yourself against attackers. Presented at Vienna.rb on 2013-03-07