We will invite Engineer Chen, a senior engineer at Far EasTone Telecom’s Information Security Office, to give a speech on the topic of “Cross-site Scripting (XSS) Security Unit”. This topic will break through experts to explain wake-up attacks and defenses, and introduce the concept of cross-site scripting attacks. Site attack is an attack method that injects malicious command code through web page vulnerabilities. Attackers take advantage of vulnerabilities in web development and cleverly inject malicious code, allowing users to load and execute the malicious code. These malicious codes often use JavaScript, but other languages ​​can also be used. After a successful attack, the attacker can gain higher permissions and access sensitive information such as web content, conversations, and cookies.

Implemented by Department of Computer Science
Date: 2023/05/30