Microsoft cybersecurity expert Chris Jackson recently published a post on the official Windows IT Pro blog, titled "The perils of using Internet Explorer as your default browser." Jackson urges users that it's time to stop using its old web browser, a product Microsoft officially discontinued in 2015. From a report: In his post, Jackson explains how Microsoft customers still ask him Internet Explorer related questions for their business. The fact of the matter is that while most average internet users have moved on to Google Chrome, Firefox, or Microsoft's Edge, some businesses are still working with older web apps or sites that were designed for Internet Explorer. Instead of updating its tech, many companies have chosen to just keep using the various enterprise compatibility modes of Microsoft's old web browser. But, Jackson says "enough is enough." It's time to event stop calling Internet Explorer a web browser.

This week HackerRank reported Java is now only the second most popular programming language, finally dropping behind JavaScript in the year 2018.

Now long-time Slashdot reader shanen asks about the rumors that Java is dead -- or is it?

Can you convince me that Java isn't as dead as it seems? It's just playing dead and will spring to life?
This week one Java news site argued that Java-based Minecraft has in fact "spawned a new generation of Java developers," citing an interview with Red Hat's JBoss Middleware CTO. (And he adds that "It's still the dominant programming language in the enterprise, so whether you're building enterprise clients, services or something in between, Java likely features in there somewhere.") Yet the original submission drew some interesting comments:

• "The licensing scheme for Java kills it..."

• "Java programs still are 'the alien on your desktop'. They suck in many ways. Users have learned to avoid them and install 'real programs' instead..."

But what do Slashdot's readers think? Leave your own answers in the comments.

How dead is Java?

Apple has now shut down Google's ability to distribute its internal iOS apps, following a similar shutdown that was issued to Facebook earlier this week. From a report: A person familiar with the situation tells The Verge that early versions of Google Maps, Hangouts, Gmail, and other pre-release beta apps have stopped working today, alongside employee-only apps like a Gbus app for transportation and Google's internal cafe app. UPDATE: Apple has restored Google's Enterprise Certificate so its internal apps will now function.

Facebook is not the only one abusing Apple's system for distributing employee-only apps to sidestep the App Store and collect extensive data on users. Google has been running an app called Screenwise Meter, which bears a strong resemblance to the app distributed by Facebook Research that has now been barred by Apple, TechCrunch reported Wednesday. From the report: In its app, Google invites users aged 18 and up (or 13 if part of a family group) to download the app by way of a special code and registration process using an Enterprise Certificate. That's the same type of policy violation that led Apple to shut down Facebook's similar Research VPN iOS app, which had the knock-on effect of also disabling usage of Facebook's legitimate employee-only apps -- which run on the same Facebook Enterprise Certificate -- and making Facebook look very iffy in the process. It needs to be pointed out that Google's app is relatively transparent about what it does and who runs it.

Facebook is at the center of another privacy scandal -- and this time it hasn't just angered users. It has also angered Apple. From a report: The short version: Apple says Facebook broke an agreement it made with Apple by publishing a "research" app for iPhone users that allowed the social giant to collect all kinds of personal data about those users, TechCrunch reported Tuesday. The app allowed Facebook to track users' app history, their private messages and their location data. Facebook's research effort reportedly targeted users as young as 13 years old.

As of last summer, apps that collect that kind of data are against Apple's privacy guidelines. That means Facebook couldn't make this research app available through the App Store, which would have required Apple approval. Instead, Facebook apparently took advantage of Apple's "Developer Enterprise Program," which lets approved Apple partners, like Facebook, test and distribute apps specifically for their own employees. In those cases, the employees can use third-party services to download beta versions of apps that aren't available to the general public. Update: The Verge reports: Apple has shut down Facebook's ability to distribute internal iOS apps, from early releases of the Facebook app to basic tools like a lunch menu. A person familiar with the situation tells The Verge that early versions of Facebook, Instagram, Messenger, and other pre-release "dogfood" (beta) apps have stopped working, as have other employee apps, like one for transportation. Facebook is treating this as a critical problem internally, we're told, as the affected apps simply don't launch on employees' phones anymore. Update 2: Apple says it shut down Facebook's app before the social company could voluntarily shut it down -- contrary to an earlier statement by Facebook, in which it said it was shutting down the app.

Google may have discontinued the sale of Google Glass years ago, but die hard fans have not given up. From a report: Glassholes still exist, just not as boogeymen haunting the tech section of your newspaper. There's a small group of fans still talking and updating and buying and selling on Reddit. Somebody who picked up a pair for $150 and wants help using the device to display sheet music; somebody with questions about installing an older operating system onto Glass Enterprise; another person looking for foldable frames; somebody else trying to fix a broken device; people looking to buy, as well as a number of people asking if it's even worth it to spend any money on the now-defunct tech. (Spoiler: survey says it's not.) There is also, weirdly, somebody asking if Google nixed Google Glass "because 'someone' was made aware of the book 'The Circle' by Dave Eggers?"

Reading through the forum, it seems wrong to regard the dwindling frequenters of /r/googleglass as Glassholes. On the contrary, they seem to bust out their devices at incredibly appropriate moments. "I pretty much only use Glass for taking pictures/video while running/hiking or anywhere I don't have access to a phone or don't want to carry one," writes one Redditor. "It's a great way to capture highlights of a marathon, for instance, without having to stop and pull out a phone." "Text notifications. Phone calls whilst driving, pix and video while on the go," writes another.

An anonymous reader writes: The Japanese government approved a law amendment on Friday that will allow government workers to hack into people's Internet of Things devices as part of an unprecedented survey of insecure IoT devices. The survey will be carried out by employees of the National Institute of Information and Communications Technology (NICT) under the supervision of the Ministry of Internal Affairs and Communications.

NICT employees will be allowed to use default passwords and password dictionaries to attempt to log into Japanese consumers' IoT devices. The plan is to compile a list of insecure devices that use default and easy-to-guess passwords and pass it on to authorities and the relevant internet service providers, so they can take measures to alert consumers and secure the devices. The survey is scheduled to kick off next month, when authorities plan to test the password security of over 200 million IoT devices, beginning with routers and web cameras. Devices in people's homes and on enterprise networks will be tested alike

The Raspberry Pi Foundation is adding a new device to its suite of miniature computers for industrial and enterprise customers. From a report: The charity today unveiled the Pi Compute Module 3+ (CM3+), successor to the two-year-old Compute Module 3 (CM3). The Pi Compute Module 3+ comes in four variants, starting at $25. The Raspberry Pi Compute Module is derived from the CM3 board but offers better thermal behavior under load. That's possible because of the Broadcom's 64-bit BCM2837B0 application processor, which was also used in last year's Raspberry Pi 3B+, and 1GB of LPDDR2 RAM. The difference between the four variants resides in their storage limits. The CM3+ Lite does not offer a built-in eMMC Flash, whereas other variants include 8GB ($30), 16GB ($35), and 32GB ($40) of eMMC Flash. These eMMC flash chips are more reliable and robust than normal SD cards, the foundation claims.

Microsoft on Thursday said that it's acquiring Citus Data, a start-up that has commercialized open-source database software called PostgreSQL. Terms of the deal weren't disclosed. From a report: The deal could help Microsoft make its argument that it supports open-source technologies, particularly in the cloud, while continuing to make money from popular proprietary software like Windows and Office. In the cloud business, Microsoft wants to use openness as a way to pick up business amid competition from Google, market leader Amazon and others. Currently, Citus Data's website advertises a version of its database software that's hosted on Amazon Web Services. Microsoft's blog post announcing the acquisition mentions the competing Azure cloud 10 times.

An anonymous reader quotes ZDNet: MongoDB is an open-source document NoSQL database with a problem. While very popular, cloud companies, such as Amazon Web Services (AWS), IBM Cloud, Scalegrid, and ObjectRocket has profited from it by offering it as a service while MongoDB Inc. hasn't been able to monetize it to the same degree. MongoDB's answer? Relicense the program under its new Server Side Public License (SSPL).

Open-source powerhouse Red Hat's reaction? Drop MongoDB from Red Hat Enterprise Linux 8. Red Hat's Technical and Community Outreach Program Manager Tom Callaway explained, in a note stating MongoDB is being removed from Fedora Linux, that "It is the belief of Fedora that the SSPL is intentionally crafted to be aggressively discriminatory towards a specific class of users." Debian Linux had already dropped MongoDB from its distribution....

The business point behind MongoDB's license change is to force cloud companies to use one of MongoDB's commercial cloud offerings. This hasn't worked either. AWS just launched DocumentDB, a database, which "is designed to be compatible with your existing MongoDB applications and tools," wrote AWS evangelist Jeff Barr.

The Model 3 will be entered into Pwn2Own this year, the first time a car has been included in the annual high-profile hacking contest. The prize for the winning security researchers: a Model 3. TechCrunch reports: Pwn2Own, which is in its 12th year and run by Trend Micro's Zero Day Initiative, is known as one of the industry's toughest hacking contests. ZDI has awarded more than $4 million over the lifetime of the program. Pwn2Own's spring vulnerability research competition, Pwn2Own Vancouver, will be held March 20 to 22 and will feature five categories, including web browsers, virtualization software, enterprise applications, server-side software and the new automotive category. The targets, chosen by ZDI, include software products from Apple, Google, Microsoft, Mozilla, Oracle and VMware. And, of course, Tesla . Pwn2Own is run in conjunction with the CanSec West conference. There will be "more than $900,000 worth of prizes available for attacks that subvert a variety of [the Model 3's] onboard systems," reports Ars Technica. "The biggest prize will be $250,000 for hacks that execute code on the car's getaway, autopilot, or VCSEC."

"A gateway is the central hub that interconnects the car's powertrain, chassis, and other components and processes the data they send. The autopilot is a driver assistant feature that helps control lane changing, parking, and other driving functions. Short for Vehicle Controller Secondary, VCSEC is responsible for security functions, including the alarm."

GitHub has always offered free accounts, but users were forced to make their code public. To get private repositories, you had to pay. Now, as TechCrunch reports, "Free GitHub users now get unlimited private projects with up to three collaborators." From the report: The amount of collaborators is really the only limitation here and there's no change to how the service handles public repositories, which can still have unlimited collaborators. This feels like a sign of goodwill on behalf of Microsoft, which closed its acquisition of GitHub last October, with former Xamarin CEO Nat Friedman taking over as GitHub's CEO.

Talking about teams, GitHub also today announced that it is changing the name of the GitHub Developer suite to 'GitHub Pro.' The company says it's doing so in order to "help developers better identify the tools they need." But what's maybe even more important is that GitHub Business Cloud and GitHub Enterprise (now called Enterprise Cloud and Enterprise Server) have become one and are now sold under the 'GitHub Enterprise' label and feature per-user pricing. In response, GitLab CEO Sid Sijbrandij said: "GitHub today announced the launch of free private repositories with up to three collaborators. GitLab has offered unlimited collaborators on private repositories since the beginning. We believe Microsoft is focusing more on generating revenue with Azure and less on charging for DevOps software. At GitLab, we believe in a multi-cloud future where organizations use multiple public cloud platforms."

For several decades, the areal density of hard disks increased by an average of nearly 40 percent each year. But in recent years, that rate has slowed to around 10 percent. Seagate and Western Digital, the leading manufacturers of hard drives, differ with each other on how to get around this. From a report: In back-to-back announcements in October 2017, Western Digital pledged to begin shipping drives based on what is known as microwave-assisted magnetic recording (MAMR) in 2019, and Seagate said it would have drives that incorporate heat-assisted magnetic recording (HAMR) on the market by 2020. If one company's solution proves superior, it will reshape a US $24 billion industry and set the course for a decade of advances in magnetic storage. Companies that wish to store huge amounts of data do have other options, but hard drives are still the go-to choice for enterprise storage needs that fall somewhere between faster, more expensive solid-state drives built on flash memory, and slower, cheaper magnetic tape.

Seagate now aims to debut a 20+ terabyte drive based on HAMR in 2020, and Western Digital promises MAMR drives that will hold roughly 16 TB later this year. Western Digital expects to quickly scale up to MAMR drives with 40 TB of capacity by 2025, while Seagate believes it can achieve similar capacities through HAMR, though it has not publicly stated a target date. Both companies are essentially starting from the same place, with hard drives that share a few key components. The disk, for example, is a thin platter that has been coated with some form of magnetic material made up of countless individual grains, each of which is magnetized in one particular direction. Ten or so grains in a cluster, all with magnetization pointing in the same direction, represent a bit.

Microsoft is working on a project codenamed "Bali," which is designed to give users control of data collected about them. The project is a Microsoft Research incubation effort and seems to be in private testing at this stage. From a report: I learned of the existence of Bali in a tweet from "Longhorn," which I saw via another Twitter user, "Walking Cat." Longhorn described Bali as "a project that can delete all your connection and account information (inverseprivacyproject)." I found a link to the Bali project page. That page allows those with a code to sign into the site and says those without a code can request one.

The "About" page for Bali describes it as a "new personal data bank which puts users in control of all data collected about them.... The bank will enable users to store all data (raw and inferred) generated by them. It will allow the user to visualize, manage, control, share and monetize the data."

In San Francisco and Bangalore, street-vendor unions and nonprofits are helping informal food workers eke out a living -- but their future is still uncertain. From a report: Bangalore and the Bay Area have a lot in common. They are the tech centers of the world's second- and third-most-populous countries, respectively, and they both sometimes feel like they're bursting at the seams. Some economists argue that when tech companies move to cities with rigid housing markets, the value of real wages goes down as the cost of living jumps. [...] In both places, many street vendors are migrants -- Bangalore's come from other parts of India, while in the Bay Area many hail from Latin America. They and their livelihoods offer a warning about the fate of immigrant service labor in the tech economy: When space is at a premium, the high-profile, high-margin industries tend to take it up, while the low-paid, already precarious jobs that keep them humming are threatened.

Bangalore is full of food vendors like Sukumar N. T. According to Aditi Surie, a sociologist at the Indian Institute for Human Settlements who specializes in the gig economy, Bangalore has limited licensed areas for people to ply food, so "across income groups" in the city, "informal food vending is valuable to all." But near the International Tech Park Bangalore in Whitefield, you won't see street vendors. Plenty are stationed immediately outside the ITPB's gates, however, which has led to some tension. Earlier this year, The Times of India called the street vendors near the office park "a huge menace" because they impede ITPB employees' passage in and out of the complex. Whitefield "is really illogically planned," Vinay Sreenivasa told me from his dusty office. Sreenivasa is a member of both the Alternative Law Forum, a legal-advocacy organization, and Bengaluru Jilla Beedhi Vyaapari Sanghatanegala Okkuta, a street-vendor union. "They planned only for tech parks and hotels," he explained. "In a way, those [informal] livelihoods are created by the poor planning." That generally doesn't bother rank-and-file IT workers -- they need to eat, too -- but according to Sreenivasa, some managers and officials think that the informal businesses undermine the area's air of modern enterprise.

Back in California, some of the Bay Area's massive tech campuses have become mini cities, complete with their own closed food systems. This is an understandable move for companies in remote suburban enclaves, perhaps, but less so for urban headquarters, where abundant free or subsidized food can allow tech employees to avoid engaging with local restaurants or vendors. Some tech offices do hire small catering businesses. And companies such as Zendesk choose not to offer free food, to encourage their employees to frequent local businesses. But many technology headquarters isolate themselves from the local food culture, and the people whose livelihoods depend on it.

The U.S. has added 10,000 of these budget retail outlets since 2001. But some towns and cities are trying to push back. From a report: A recent research brief [PDF] by the Institute of Local Self Reliance (ILSR), a nonprofit supporting local economies, sheds light on the massive growth of this budget enterprise. Since 2001, outlets of Dollar General and Dollar Tree (which bought Family Dollar in 2015) have grown from 20,000 to 30,000 in number. Though these "small-box" retailers carry only a limited stock of prepared foods, they're now feeding more people than grocery chains like Whole Foods, which has around 400-plus outlets in the country. In fact, the number of dollar-store outlets nationwide exceeds that of Walmart and McDonalds put together -- and they're still growing at a breakneck pace. That, ILSR says, is bad news. "While dollar stores sometimes fill a need in cash-strapped communities, growing evidence suggests these stores are not merely a byproduct of economic distress," the authors of the brief write. "They're a cause of it."

Dollar stores have succeeded in part by capitalizing on a series of powerful economic and social forces -- white flight, the recent recession, the so-called "retail apocalypse" -- all of which have opened up gaping holes in food access. But while dollar store might not be causing these inequalities per se, they appear to be perpetuating them. The savings they claim to offer shoppers in the communities they move to makes them, in some ways, a little poorer. Using code made public by Jerry Shannon, a geographer at University of Georgia, CityLab made a map showing the spread of dollar stores since the recession.

Privately funded space startups are changing China's space industry, helping it become a space power on par with the United States. "2018 is shaping up to be the first year in which more rockets reach Earth orbit from China than from any other country," reports MIT Technology Review. "As of mid-December, China had made 35 successful launches, as against 30 for the U.S."

"As American and Russian space programs struggle with uncertain budgets, China is expanding its efforts on every front: communications and reconnaissance satellites; a navigation and positioning constellation to rival America's GPS; a human spaceflight program; and ambitious space-science and robotic exploration projects. All of these are enabled by a menagerie of new rockets with advanced capabilities." Here's an excerpt from the report summarizing some of China's space ambitions: In 2014, the Chinese government decided to allow private investment in space-related industry. Landspace began with a few dozen people. It now has over 200 employees at a manufacturing base in Huzhou in eastern China and at assembly and testing facilities in X'ian, a central Chinese city. The company plans to work incrementally, beginning with nano-satellites -- devices weighing between 1 and 10 kilograms (2 to 22 pounds) -- then moving to larger cargoes and, eventually, into human spaceflight. In September 2018, iSpace launched three nanosatellites on a brief suborbital flight, becoming the first Chinese space startup to successfully get beyond Earth's atmosphere. Another company, LinkSpace, plans to launch a vertical takeoff, vertical landing rocket in 2020. Landspace, OneSpace, iSpace, LinkSpace, and ExPace (which fashions itself as a startup though it's a subsidiary of a state-owned enterprise) are the leaders of a bevy of lesser-known Chinese launch startups.

These launch companies are operating hand in hand with a number of new, privately funded Chinese companies that are focused on doing things in space, rather than on getting there. Spacety and Commsat, among others, are planning large constellations of small imagery and communication satellites. Such constellations -- whether Chinese or American -- are transforming aspects of the way space is used. By making low-resolution satellite imagery much cheaper to gather (among other novel applications for small satellites), they are catalyzing an era of more nimble commercial, scientific, and military experimentation.

An anonymous reader quotes a report from Reuters: Hackers working on behalf of China's Ministry of State Security breached the networks of Hewlett Packard Enterprise and IBM, then used the access to hack into their clients' computers, according to five sources familiar with the attacks. The attacks were part of a Chinese campaign known as Cloudhopper, which the United States and Britain on Thursday said infected technology service providers in order to steal secrets from their clients. While cybersecurity firms and government agencies have issued multiple warnings about the Cloudhopper threat since 2017, they have not disclosed the identity of technology companies whose networks were compromised. IBM said it had no evidence that sensitive corporate data had been compromised. HPE said it could not comment on the Cloudhopper campaign.

Cloudhopper targeted managed service providers (MSPs) to access client networks and steal corporate secrets from companies around the globe, according to a U.S. federal indictment of two Chinese nationals unsealed on Thursday. Prosecutors did not identify any of the MSPs that were breached. Cloudhopper, which has been targeting technology services providers for several years, infiltrated the networks of HPE and IBM multiple times in breaches that lasted for weeks and months. Reuters was unable to confirm the names of other breached technology firms or identify any affected clients. Both IBM and HPE provided statements but declined to comment on the specific claims made by the sources. "The security of HPE customer data is our top priority," HPE said. "We are unable to comment on the specific details described in the indictment, but HPE's managed services provider business moved to DXC Technology in connection with HPE's divestiture of its Enterprise Services business in 2017."

"IBM has taken extensive counter measures worldwide as part of its continuous efforts to protect itself and its clients against constantly evolving threats," the company said in an emailed statement. "We take responsible stewardship of client data very seriously and have no evidence that sensitive IBM or client data has been compromised."

Microsoft has officially unveiled "Windows Sandbox," a feature that was expected to be unveiled next year. Windows Sandbox, the company says, creates "an isolated, temporary desktop environment" where users can run potentially suspicious software. From a report: Windows Sandbox is an isolated desktop environment which functions much like a virtual machine; any software installed to it is completely sandboxed from the host operating system. Aimed at businesses, enterprises and security-conscious home users, Windows Sandbox will be part of Windows 10 Pro and Windows 10 Enterprise. It is not clear exactly when the feature will debut, but it could make an appearance in Windows 10 19H1 next year.

The company touts the following features of Windows Sandbox in a detailed blog post introducing the new feature:
Part of Windows -- everything required for this feature ships with Windows 10 Pro and Enterprise. No need to download a VHD!
Pristine -- every time Windows Sandbox runs, it's as clean as a brand-new installation of Windows.
Disposable -- nothing persists on the device; everything is discarded after you close the application.
Secure -- uses hardware-based virtualization for kernel isolation, which relies on the Microsoft's hypervisor to run a separate kernel which isolates Windows Sandbox from the host.
Efficient -- uses integrated kernel scheduler, smart memory management, and virtual GPU.

Mark Wilson writes: Earlier in the year open-source software startup Whitewater Foundry brought WLinux to the Windows Subsystem for Linux (WSL). Not content with creating the first native Linux distribution for WSL, the company has now gone a step further, targeting enterprise users with WLinux Enterprise. Whitewater Foundry says that WLinux Enterprise is the first product to support the industry-standard Red Hat Enterprise Linux on Windows Subsystem for Linux.