Cross Site Scripting

 Chapter 6 briefly discusses scripting and other forms of attacks.  With the recent events of Capital One and Equifax there are many security firms that are guessing at how a cybercriminal could gain access to this sensitive data.  We will take a look at one possible scenario that could have been an attack vector.
   
  Cross-site scripting is one type of attack that could have been used to gain access to the Equifax data.  For this weeks assignment, think of yourselves as a Security Analyst for a Cyber Security organization.  Create a PowerPoint slideshow explaining what the data breach means to Equifaxs customers, define the different types of Cross-site Scripting, how this type of attack can be used to gain access to the Equifaxs sensitive data (give specific examples), and how could it have been prevented.  Minimum required slide count is 10 (not including references).
     This Web Project may take some time to complete.  Start early.  Begin by researching the Equifax data breach and then research Cross-site Scripting.  Try to understand the code behind the attack.  I dont except everyone to learn coding in a week, but at least attempt to understand.  Submissions that simply define the terminology and have no meaningful content will not receive full credit.  If there any questions please send me an email earlier in the week to ensure you have plenty of time to complete your assignment.
    I suggest using a trusted source because certain websites you might use for research on the internet may be harmful.  When researching types of attacks you may want to use the trusted organizations (US-CERT, SANS, etc.) or the UHWO online library (http://www2.hawaii.edu/~uhwolib/research.html) for scholarly sources.
References should be included for internal and external resources. Standard use of APA format is required with website URL included.