An anonymous reader writes: A new malware framework called ModPOS is reported to pose a threat to U.S. retailers, and has some of the highest-quality coding work ever put into a ill-intentioned software of this nature. Security researchers iSight say of the ModPOS platform that it is 'much more complex than average malware'. The researchers believe that the binary output they have been studying for three years was written in a high-level language such as C, and that the software took 'a significant amount of time and resources to create and debug'.

dmleonard618 writes: Google is gearing up to release Android Studio 2.0 with three key features. The company has released the preview version of the release, and says it focuses on speed of delivery and testing. The new features include Instant Run, which lets developers see the impact of their code changes; Android Emulator, a rebuilt user interface; and an early preview of a new GPU Profiler that allows developers to record and replay graphics-intensive apps frame by frame.

An anonymous reader writes: Stack Overflow remains one of the most widely-used resources in the developer community. Around 400,000 questions are posted there every month. The Priceonomics blog is using statistical analysis to ask, "What does the nature of these questions tell us about the state of programming?" They see tremendous growth in questions about Android Studio, as well as more generic growth in work relating to data analysis and cloud services. Topics on a significant decline include Silverlight, Joomla, Clojure, and Flash (not to mention emacs, for some reason). The article also takes a brief look at the site's megausers, who receive a lot of credit for keeping the signal-to-noise ratio as high as it is, while also taking flack for how the Stack Overflow culture has progressed. "Others are worried about how Stack Overflow has impacted programming fundamentals. Some critics believe that rather than truly struggling with a problem, developers can now just ask Stack Overflow users to solve it for them. The questioner may receive and use an answer with code they do not truly understand; they just know it fixes their problem. This can lead to issues in the long run when adjustments are needed."

theodp writes: Computerworld reports that the comments are in on the Department of Homeland Security's new proposed rule to extend OPT for international STEM students from 29 months to at least 36 months. The majority of the comments received by DHS support extending the program, CW notes, which is probably not surprising. Rather than choosing to "avoid the appearance of improper influence" by declining to respond to a "We the People" petition protesting a pending U.S. Federal judge's ruling that threatens to eliminate OPT STEM extensions altogether in February, the White House informed the 100k petition signers that they had the President's support, and pointed to the comment site for the proposed DHS OPT STEM rule workaround. Like the "We the People" petitioners, it's unclear whether the DHS commenters might represent corporate, university, and/or student interests, although a word cloud of the top 100 names of commenters (which accounted for 17,000+ comments) hints that international students are well-represented. By the way, in rejecting the 'emergency changes' that were enacted by DHS in 2008 to extend OPT for STEM students without public comment, Judge Ellen Huvelle said, "the 17-month duration of the STEM extension appears to have been adopted directly from the unanimous suggestions by Microsoft and similar industry groups."

FriendlySolipsist writes: Blizzard Entertainment has been fighting World of Warcraft bots for years. TorrentFreak reports that Bossland, a German company that operates "buddy" bots, alleges Blizzard sued one of its freelancers and forced a settlement. As part of that settlement, the freelancer allegedly turned over Bossland's source code to Blizzard. In Bossland's view, their code was "stolen" by Blizzard because it was not the freelancer's to disclose. This is a dangerous precedent for freelance developers in the face of legal threats: damned if you do, damned if you don't.

theodp writes: Over at the Stanford Computational Journalism Lab, Dan Nguyen's Exploring the Wall Street Journal's Pulitzer-Winning Medicare Investigation with SQL is a pretty epic post on how one can use SQL to learn about Medicare data and controversial practices in Medicare billing, giving the reader a better appreciation for what was involved in the WSJ's Medicare Unmasked data investigation. So, how long until a journalist wins a Pulitzer for SQL reporting? And for all you amateur and professional Data Scientists, what data would you want to SELECT if you were a Pulitzer-seeking reporter?

unteer writes: I work at a enterprise software company that builds an ERP system for a niche industry (i.e. not Salesforce or SAP size). Our product has been continuously developed for 10 years, and incorporates code that is even older. Our userbase is constantly expanding, and many of these users expect modern conveniences like intuitive UI and documented processes. However, convincing the development teams that undertaking projects to clean up the UI or build more self-explanatory features are often met with, "It's too big an undertaking," or, "it's not worth it." Help me out: What is your advice for how to quantify and qualify improving the user experience of an aging, fairly large,but also fairly niche, ERP product?

dmleonard618 writes: A new GitHub project is allowing software teams to construct software like Legos. DockerCraft is a Minecraft mod that lets administrators handle and deploy servers within Minecraft. What makes this project really interesting is that it lets you navigate through server stacks in a 3D space. "In today's world, we wanted to focus more on building. Minecraft has emerged as the sandbox game of the decade, so we chose to use that as our visual interface to Docker," Docker wrote in a blog.

Nerval's Lobster writes: Are tech professionals really willing to live on energy drinks, and sleep on office couches, in order to get the job done? For many, the answer is "no." In response to a new Dice survey (Dice link, obviously), only 5 percent of employees at technology companies said that work-life balance wasn't a top priority for them. Contrast that with nearly 45 percent of respondents who said they wanted more of a work-life balance, even if their current position made that difficult. More than 27 percent of those surveyed also characterized work-life balance in the tech industry as a "myth." It seems that, despite all those companies talking publicly about wanting to give employees a better work-life balance (complete with on-site gyms and unlimited vacation time and... stuff...), it's not really working out for a lot of people. (And that's something that people have been calling out for some time.)

jones_supa writes: The Julia programming language has received a $600k donation from Moore Foundation. The foundation wants to get the language into a production version. This has a goal to create more efficient and powerful scientific computing tools to assist in data-driven research. The money will be granted over the next two years so the Julia Language team can move their core open computing language and libraries into the first production version. The Julia Language project aims to create a dynamic programming language that is general purpose but designed to excel at numerical computing and data science. It is especially good at running MATLAB and R style programs.

A few weeks ago you had the chance to ask Alan Donovan and Brian Kernighan about programming and their upcoming book, The Go Programming Language (available as an eBook Friday the 20th). Below you'll find their answers to your questions.

An anonymous reader writes: Microsoft today unleashed a torrent of news at its Connect(); 2015 developer event in New York City. The company open-sourced code editing software Visual Studio Code, launched a free Visual Studio Dev Essentials program, pushed out .NET Core 5 and ASP.NET 5 release candidates, unveiled Visual Studio cloud subscriptions, debuted the Visual Studio Marketplace, and a lot more. The source for Visual Studio Code is available at GitHub under the MIT license. They've also released an extension (preview) for Visual Studio that facilitates code debugging on Linux.

Nerval's Lobster writes: While this month's lists of the top programming languages uniformly put Java in the top spot, that's not the only detail of interest to developers. Which language has gained the most users over the past five years? And which are tottering on the edge of obsolescence? According to PYPL, which pulls its raw data for analysis from Google Trends, Python has grown the most over the past five years—up 5 percent since roughly 2010. Over the same period, PHP also declined by 5 percent. Since PYPL looks at how often language tutorials are searched on Google, its data is a good indicator of how many developers are (or aren't) learning a language, presumably because they see it as valuable to their careers. Just because PYPL shows PHP losing market-share over the long term doesn't mean that language is in danger of imminent collapse; over the past year or so, the PHP community has concentrated on making the language more pleasant to use, whether by improving features such as package management, or boosting overall performance. Plus, PHP is still used on hundreds of millions of websites, according to data from Netcraft. Indeed, if there's any language on these analysts' lists that risks doom, it's Objective-C, the primary language used for programming iOS and Mac OS X apps, and its growing obsolescence is by design.

An anonymous reader writes: The Astoria project at Microsoft has failed because a breakthrough was needed to overcome the complexity of the software development challenge. Microsoft tried to automate mapping the Android UI into the Windows 10 UI and to map Google services within the app such as maps, payments and notifications into Microsoft equivalents. Automated conversion of a UI from one platform to another has never been successfully demonstrated. When I first saw Microsoft's Android bridge at Build 15, I thought it was achievable. But project Astoria, as it is called, is much too complex. Drawing on my architectural knowledge of the underlying Microsoft/Lumia hardware that is very similar to Android phones.I concluded that in the context of partitioning the device or running a VM Microsoft would succeed. But Microsoft tried something much more ambitious. Rather than "failed," The Next Web reports that for now the project may have only been delayed.

theodp writes: A year after it paid $2.5 billion to buy Minecraft, Microsoft has announced a partnership with Code.org that makes a Minecraft-themed introduction to programming a signature tutorial of this year's Hour of Code, which hopes to reach 200 million schoolchildren next month in what the Microsoft-funded nonprofit is billing as the largest learning event in history. "A core part of our mission to empower every person on the planet is equipping youth with computational thinking and problem-solving skills to succeed in an increasingly digital world," said Microsoft CEO Satya Nadella in a press release, which also notes that "Microsoft is gifting Windows Store credit to every educator who organizes an Hour of Code event worldwide." Of the Minecraft tutorial, Code.org CEO Hadi Partovi gushed, "Compared to what you would otherwise be doing for school, this is, like, the best thing ever."

An anonymous reader writes: In an article titled "Scrum is dead: breaking down the new open development method," Ahmad Nassri writes: "Among the most 'oversold as a cure' methodologies introduced to business development teams today is Scrum, which is one of several agile approaches to software development and introduced as a way to streamline the process. Scrum has become something of an intractable method, complete with its own holy text, the Manifesto for Agile Software Development , and daily devotions (a.k.a., Scrum meetings). Although Scrum may have made more sense when it was being developed in the early '90s, much has changed over the years. Startups and businesses have work forces spread over many countries and time zones, making sharing offices more difficult for employees. As our workforce world evolves, our software development methods should evolve, too." What do you think? Is Scrum still a viable approach to software development, or is it time to make way for a different process?

snydeq writes: From unstructured data mining to visual microphones, academic labs are bringing future breakthrough possibilities to light, writes InfoWorld's Peter Wayner in his overview of nine university projects that could have lasting impact on IT. 'Open source programmers can usually build better code faster, often because they have bosses who pay them to build something that will pay off next quarter, not next century. Yet good computer science departments still manage to punch above — sometimes well above — their weight. While a good part of the research is devoted to arcane topics like the philosophical limits of computation, some of it can be tremendously useful for the world at large. What follows are nine projects currently under development at university labs that [could] have a broad impact on the world of computing.'

An anonymous reader writes: I've been working in tech as a software developer for about 15 years. As I've gotten older I'm starting to see the appeal of living in a city that's not crazily blown out and expensive like most established tech markets (think San Francisco, Austin, Seattle, Los Angeles, etc.). Are there are any good tech job markets that are normal, affordable, livable, American cities, or am I forever doomed to be subjected to the rat race found in these overheated and overcrowded markets? Lots of cities have at least some vibrant tech scene; Omaha, NE, Raleigh, NC, and Ann Arbor, MI are three that spring to mind, but everyone's tastes and tolerances will vary. What do you find in your neck of the woods? (Even if it's one of those "crazily blown out" examples.)

theodp writes: Teaching U.S. K-12 kids their programming fundamentals in past Hours of Code were an IF-fy Bill Gates and a LOOP-y Mark Zuckerberg. Interestingly, the new signature tutorial — Star Wars: Building a Galaxy with Code — created by Lucasfilm and Code.org ("in a locked room with no windows") for this December's Hour of Code, eschews both IF statements and loops. The new learn-to-code tutorial instead elects to show students "events" after they've gone through the usual move-up-down-left-right drills. With the NY Times and National Center for Women & Information Technology recently warning against putting Star Wars in the CS classroom ("Attracting more female high school students to computer science classes might be as easy as tossing out the Star Wars posters," claimed an Aug. 29th NCWIT Facebook post), the theme of the new tutorial seems an odd choice for Code.org, whose stated mission includes "increasing [CS] participation by women." But if Star Wars is, as some suggest, more aimed at boys, perhaps Code.org has something up its sleeve for girls (a la last year's Disney Princesses) with another as yet unannounced signature tutorial that it teased would be "just as HUGE" as the Star Wars one. Any guesses on what that might be?

Nerval's Lobster writes: A new study from Course Report suggests that boot camps are introducing more women to the tech-employment pipeline. Data for the study came from 769 graduates from 43 qualifying coding schools (a.k.a. boot camps). Some 66 percent of those graduates reported landing a full-time job that hinged on skills learned at the boot camp. Although the typical "bootcamper" is 31 years old, with 7.6 years of work experience, relatively few had a job as a programmer before participating in a boot camp. Perhaps the most interesting data-point from Course Report, though, is that 36 percent of "bootcampers" are women, compared to 14.1 percent coming into the tech industry via undergraduate programs. Bringing more women and underrepresented groups into the tech industry is a stated goal of many companies. Over the past few years, these companies' diversity reports have bemoaned how engineering and leadership teams skew overwhelmingly white and male. Proposed strategies for the issue include adjusting how companies recruit new workers; boot camps could also quickly deepen the pool of potential employees with the right skills.