Explore the evolving landscape of web application security in this 34-minute conference talk focusing on Magecart, a sophisticated form of cross-site scripting (XSS) attack. Delve into the evolution of web applications and injection techniques, examining the increasing complexity of threats in the digital realm. Analyze real-world case studies, including the Sixth June incident and attacks on Braintree and PayPal. Learn about the Inter Skimmer technique and discover effective strategies for preventing Magecart attacks, equipping yourself with essential knowledge to protect web applications from this emerging threat.