🐝 Hive Five #6 - “Do what is right, not what is easy nor what is popular.” ― Roy T. Bennett

Hi friends,

Greetings from the hive!

I've been keeping busy as usual. I was finally able to put in some hours on a cool project. However, one doesn't simply get to use JavaScript packages. I had to wade through dependency hell. After hours of debugging, trying all sorts of things, it turned out that there was a conflict between several packages. Crisis averted. The end result was worth it!

For this issue I decided to add sub categories for the Buzzworthy category, making it easier for you to skim through. Let me know what you think. You can hit me up on Twitter or just reply to this email.

Let's do this!

The Bee's Knees

• A warning to users of NurseryCam: This blog post is intended for a non-technical audience – specifically parents and nurseries using the NurseryCam system. NurseryCam is a camera system that is installed in nurseries, allowing parents to view their children remotely. There are tens of nurseries stating that they use this system.

• Orange Tsai's Presentation Slides - A collections of Orange Tsai's public presentation slides. 21 iconic talks, ranging from 2011 to 2021, latest being "A Journey Combining Web Hacking and Binary Exploitation in Real World!"

• The Profile - I've only just found out about this digest. Yes, I've been living under a rock. Polina quit my job as a writer and editor at Fortune magazine at the start of the pandemic to launch the profile. She studies the most successful and interesting people and companies.

• Beej's Guide to Network Programming: Again, I wasn't aware of this, mea culpa. This is a beginner's guide to socket programming with Internet sockets. It is meant to be a springboard that will launch you into the exciting world of TCP/IP programming.

• Dependency Confusion: How I Hacked Into Apple, Microsoft and Dozens of Other Companies: Alex Birsan details his novel supply chain attack, he started calling dependency confusion. He breached more than 35 organizations, across three programming languages, including e-commerce giant Shopify.

Buzzworthy

News:

• Verizon Media announcing: Elite Bug Bounty Program

• ProjectDiscovery is going full-time

• Day of Shecurity 2021

• ZAPCon 2021

Articles:

• I don't want to do front-end anymore

• How Instagram Celebrities Promote Dubai's Underground Animal Trade

• 25+ Yandex Search Operators Every SEO & Non-SEO Must Know: The Complete List

• How to Extract Text from a Face-Down Paper Using GIMP for OSINT Investigations

• How Spotify Optimized the Largest Dataflow Job Ever for Wrapped 2020

• Hacking Chess.com and Accessing 50 Million Customer Records

• Barcode Scanner app on Google Play infects 10 million users with one update

Resources:

• Awesome Attack Surface Monitoring

• Cure53

• jill wohlner - femme games suggestions

• Brendan Eich: JavaScript, Firefox, Mozilla, and Brave | Lex Fridman Podcast #160

• Watch Hands On A Hardbody

• GrrrDog/weird_proxies

• Do You Write Code With Your Mouse?

• Ask HN: Team fun event ideas during WFH?

Get $100 to try DigitalOcean - The go-to VPS for bug bounty hunters. I use it for all of my own recon and automation needs, plus it also doubles as a VPN. They have every cloud resource you need at an affordable price.

Subscribe to the Hive Five to read the rest.