We are going to discuss what could happen if you fail to adequately protect your websites, apps, services, and APIs, and why entire companies have gone out of business and countries have gone offline due to improper security controls.
- Cross-Site Scripting (XSS): a type of computer security vulnerability typically found in web applications. XSS enables attackers to inject client-side scripts into web pages viewed by other users. A cross-site scripting vulnerability may be used by attackers to bypass access controls such as the same-origin policy.
- Samy Worm: An XSS worm that spread throughout MySpace in the mid-2000s caused by famous security researcher Samy Kamkar.
More about XSS - Cross-site Scripting (XSS)
Technical explanation of Samy Worm, or JS.Spacehero worm, from Samy Kamkar
Links to details and story from Samy Kamkar on Samy Worm
World’s Biggest Data Breaches visualization
Ashley Madison Hack, by Dan Goodin
The hacker who broke into Mark Zuckerberg's Facebook page will get a $12,000 reward from online donors, by Joshua Gardner and Hayley Peterson
KrebsOnSecurity on Equifax by Brian Krebs
Equifax data breach: What you need to know by Kaya Yurieff
You need to sign up for Treehouse in order to download course files.Sign up