An anonymous reader writes: Aberrant treatment of transactions by Bitcoin miners has renewed concerns that Bitcoin as a protocol may need a stronger specification. OpenBSD savior and Bitcoin entrepreneur Mircea Popescu raised this issue back in 2013 that the current attitude of "the code is the spec" was introducing fragility and harming Bitcoin's vital decentralization. While a lot of fuss has been made about the maximum blocksize, perhaps formalizing the protocol and breaking the current mining cartel is a more urgent and serious problem. The debate going on resurrects many of Datskovskiy's early concerns about Bitcoin's fragility including mining as a necessary bug, but a bug nonetheless.

An anonymous reader writes: Edge, Microsoft's new browser, uses the WinRT PDF library to automatically embed and present PDF files while navigating the web. This is what Java does with applets, and Flash with SWF files -- it unintentionally allows a hacker to append malicious code to PDF files and trigger drive-by attacks, which exploit WinRT vulnerabilities to target Windows 10 users. All that an attacker needs to do is to find and create a database of WinRT vulnerabilities it could leverage to distribute his malware.

Tekla Perry writes: Last week, IBM reported to investors that its workforce at the end of 2015 was almost as big as its workforce at the end of 2014 (within less than 1 percent), in spite of a year in which 70,000 employees left the company, to be replaced with new hires and acquisitions. Today reports are coming in that massive layoffs across the United States are underway, likely one-third of the U.S. workforce, according to one soon-to-be-laid-off-IBMer. In addition, a recent change in IBM's severance policy may leave workers with less cash than anticipated. IBM maintains that things are just business as usual, but this appears to be the day IBM Watchers have long warned about.

An anonymous reader writes: Google will release a faster beta version of Angular 2 in about two weeks, with a smaller version targeted for April. "We're improving our ability to handle different languages," says Google's Brad Green, noting that 213 contributors are currently working on Angular. "Our plan is to have versions that will work with many server-side technologies, from Java to Python." Microsoft has already demonstrated how it's building Angular into ASP.NET and Google is also working with the Drupal team. But Green says they'll also continue supporting Angular 1 for at least another year, until a majority of users have transitioned to the new syntax. Google says there are currently 21.3 million developers using Angular 1, compared to just 300,000 using Angular 2. "We've got a ways go to," Green admitted.

itwbennett writes: A report released today by Digital Shadows finds that cybercrime organizations "face many of the same hiring problems as defending security organizations, but with their own particular twists," writes Maria Korolov. In particular, the groups are finding a shortage of qualified candidates for jobs such as malware writers, exploit developers, bot net operators, and mules. But, unlike legitimate organizations, "cybercriminals are limited in their ability to properly vet new hires, to widely advertise for needed talent, and to find people who are both trustworthy and are willing to break the law," writes Korolov. One thing the criminals have in common with defending organizations: entry-level skills are the easiest to find. This is one reason why many attackers use simple tools and attack methods.

dcblogs writes: Two former Disney IT workers spoke at a Donald Trump campaign rally on Sunday, telling about the shock of having to train their foreign replacements. Speaking at the large rally in Madison, Ala. was Dena Moore, a former Disney IT worker who trained her foreign replacement, and said tech workers are reluctant to talk about the problem. IT workers "are afraid, they're in shock," she told the cheering crowd. "They're not coming forward because we have been taught all our lives to make do and keep going on. But you know what? This little old grandma is going to stand up for what's right. "The fact is that Americans are losing their jobs to foreigners," said Moore. "I believe Mr. Trump is for Americans first."

An anonymous reader writes: Microsoft's HoloLens, touted as the world's 'first and only fully untethered holographic computer' is available today for pre-order and will ship on March 30. The HoloLens Development Edition is available for purchase to qualified developer applicants and will cost $3,000. While the augmented-reality headset is still far from a commercial release to consumers, Microsoft will release six applications that run on the holographic platform – a mix of development tools, games, and user programs. From today, developers can access documentation, guides and tutorials for HoloLens. Additional development tools will be made available when the first HoloLens ship at the end of March, including Visual Studio projects and a HoloLens emulator, which will allow testing of holographic apps on a PC without a physical HoloLens.

New submitter buck-yar writes: The open source unmanned aerial vehicle platform, Ardupilot, has announced its creation of a non-profit organization aimed to meet the needs of the diverse developer community. With 3DRobotics recently pulling their financial support for the Ardupilot project, the developers had to take a look at how the project would continue. Yesterday, Andrew Tridgell announced the developers will create a non-profit to oversee the project similar to other non-profits in the open source community as it continues to grow. The organization will oversee the management of the documentation, the auto-build and test servers and will help set priorities for future development. "Intel has well over 10 developers devoted to DroneCode projects including at least 2 working on Ardupilot full-time and a few others improving QGroundControl to work better with Ardupilot," developer Randy MacKay writes on an Ardupilot Arducopter APM Pixhawk News forum. While the non-profit ArduPilot project and consulting businesses will be separate entities, the dev team says they will help support each other.

mikejuk writes: Details of the next in the family of the successful Raspberry Pi family have become available as part of FCC testing documents. The Pi 3 finally includes WiFi and Bluetooth/LE. Comparing the board with the Pi 2 it is clear that most of the electronics has stayed the same. A Raspberry Pi with built in WiFi and Bluetooth puts it directly in competition with the new Linux based Arduinos, Intel's Edison and its derivatives, and with the ESP8266 — a very low cost (about $2) but not well known WiFi board. And of course, it will be in competition with its own stablemates. If the Pi 3 is only a few dollars more than the Pi 2 then it will be the obvious first choice. This would effectively make the Pi Zero, at $5 with no networking, king of the low end and the Pi 3 the choice at the other end of the spectrum. Let's hope they make more than one or two before the launch because the $5 Pi Zero is still out of stock most places three months after being announced and it is annoying a lot of potential users.

New submitter superwiz writes: A company for which I worked for recently had a project which required debugging a few abandoned OSS projects. 2 of the projects ended up not being used in the company products even though bugs were found and resolved in them. This puts me in a legal limbo. Since the company paid for my time to work out those bugs, they own the copyright. I can't release them. But since they shelved the projects in which the OSS code was to be used, they don't have to release the code to the public. It would be pretty simple to identify me as the person who made the changes even if I were to release the code anonymously because these changes were committed to my former employer's private repository. Should I just forget it? I don't like the idea of information loss, especially given how much benefit that company already derives from other OSS projects. But I also don't want to release the code which I don't own. Has anyone been in this situation before? How did you handle it (other than just 'forget about it')?

theodp writes: Less than 48 hours after the Chicago Public Schools hosted a three-hour "soiree" at Google's brand-new Chicago HQ, the CPS Board of Education voted unanimously to make computer science a graduation requirement for all high school students in the nation's third largest school district. Starting with next school year's freshman class, CPS students will be required to complete curriculum around computer science before graduating. "Requiring computer science as a core requirement will ensure that our graduates are proficient in the language of the 21st century so that they can compete for the jobs of the future," said Chicago Mayor Rahm Emanuel. CPS is working with tech bankrolled and led Code.org and other organizations to further develop a CS education curriculum to implement across all its high schools. Nationwide, President Obama has a $4B proposal on the table to bring CS education to all K-12 schools across the nation, which is also spurring action at the state level, Officials from Code.org, Microsoft and Google joined Arkansas Gov. Asa Hutchinson and Washington Gov. Jay Inslee at the National Governors Association winter meeting in Washington D.C. on Sunday to kick off a new partnership aimed at promoting CS. The new GovsForCS website notes that the Governors will be relying on Code.org for advice, explaining that the nonprofit "will provide the Partnership with resources related to best practices in policy and programs, and will facilitate collaboration among Governors and their staff, in person and virtually."

New submitter androlinuz writes: Microsoft has signed an agreement to acquire Xamarin, a leading platform provider for mobile app development. In conjunction with Visual Studio, Xamarin provides a rich mobile development offering that enables developers to build mobile apps using C# and deliver fully native mobile app experiences to all major devices, including iOS, Android, and Windows. Xamarin's approach enables developers to take advantage of the productivity and power of .NET to build mobile apps, and to use C# to write to the full set of native APIs and mobile capabilities provided by each device platform.

destinyland writes: Last week GitHub announced the ability to create templates for Issues and Pull Requests, in an apparent response to an open letter signed by 600+ project maintainers. "This is the first of many improvements to Issues and Pull Requests that we're working on based on feedback from the community," "wrote Ben Bleikamp, Product Manager at GitHub. The original letter, hosted in a "Dear-Github" repository, noted that "If GitHub were open source itself, we would be implementing these things ourselves as a community..." But this week GitHub continued releasing new improvements, offering a new feature with to upload files directly into repositories without leaving their browser.

An anonymous reader writes: The milestone release FFmpeg 3.0 "Einstein" has been unleashed. For those who need a reminder, FFmpeg comprises several libraries and command-line tools (the main command-line tool being "ffmpeg") that encode, decode, transcode, and stream audio/visual data, etc. FFmpeg supports a multitude of codecs, filters, and container formats too numerous to mention here. FFmpeg is used by MPlayer, VLC, HandBrake, Chrome, and many other projects. Changes from 2.x to 3.0 include: a much better native AAC encoder, better hardware acceleration, and some API/ABI breakage. See this, this, this, this, and the changelog for much better descriptions of the improvements.

New submitter mmoorebz writes: The Linux Foundation is announcing new areas of focus for its Open Mainframe Project. The Open Mainframe Project is a collaborative effort launched six months ago as a focal point for the deployment and use of the Linux OS on the mainframe.

An anonymous reader writes: Wesley Allison Clark, a revered computer engineer whose work from the 1950s through 1970s underpinned the revolutions in personal computing, computer graphics, and the internet, died Monday. He was 88. Among other things, Clark was one of the two people (Charles Molnar being the other) who created LINC, the first mini-computer.

An anonymous reader writes: Back 'in the day' you could easily find books on NT, Windows 2000, or Slackware that went into painstaking detail about every functional aspect of the operating system (think Slackware Unleashed). They covered the interplay between BIOS, boot sector, crash dumps, every command-line option, etc. Past about Win 2000 I fell way behind focusing on finishing my EE degree. Now when faced with a complex issue, I just end up at Google, but would prefer a good comprehensive book on recent Win8/Win10 architectures. Any suggestions? Are these books all but limited to course-prep now?

itwbennett writes: Researcher Chris Vickery discovered that the Arlington, Virginia based child monitoring service uKnowKids.com had a misconfigured MongoDB installation that left sensitive details on over 1,700 children exposed for months. UKnowKids helps parents monitor their child's activities online, by watching their mobile communications, social media activities, and their location. And so the database stored 6.8 million private text messages, 1.8 million images (many depicting children), Facebook, Twitter, and Instagram account details, in addition to the children's full names, email addresses, GPS coordinates, date of birth.

An anonymous reader writes with this story at the BBC about the famously bad video game based on Steven Spielberg's ET, a game "considered to be one of the worst of all time," and on which some have blamed the collapse of then-powerhouse Atari. The game's sole programmer, Howard Scott Warshaw, explains how it was that what must have sounded at the time like a sure thing turned into a disaster.

An anonymous reader writes: Cyanogen has announced a new integrated mobile platform designed to change the way users, developers, OEMs and MNOs build and interact with mobile devices. Their new platform MOD provides developers with APIs they can use to implement intelligent, contextually aware and lightweight experiences natively into the mobile operating system. It also allows users to extend the functionality of their devices.