schizoidman@lemmy.zip to

Technology@lemmy.worldEnglish · 6 个月前

Notepad++ updater installed malware

cross-posted to:
cybersecurity@sh.itjust.works

348

Notepad++ updater installed malware

schizoidman@lemmy.zip to

Technology@lemmy.worldEnglish · 6 个月前

cross-posted to:
cybersecurity@sh.itjust.works

The updater for the open-source editor Notepad++ has installed malware on PCs. An update to Notepad++ v8.8.9 corrects this.

https://archive.is/uCWNB

Chat

asbestos@lemmy.world
link
fedilink
English
arrow-up
18
arrow-down
1·
6 个月前
So the private key was left in the Github source code and nobody caught it? Or was it the public key? (which makes this statement way less impactful)
- Samskara@sh.itjust.works
  link
  fedilink
  English
  arrow-up
  14
  arrow-down
  1·
  6 个月前
  Private key probably. Only the public key is not enough to sign the package.

Technology@lemmy.world

technology@lemmy.world

You are not logged in. However you can subscribe from another Fediverse account, for example Lemmy or Mastodon. To do this, paste the following into the search field of your instance: !technology@lemmy.world

This is a most excellent place for technology news and articles.

Our Rules

Follow the lemmy.world rules.
Only tech related news or articles.
Be excellent to each other!
Mod approved content bots can post up to 10 articles per day.
Threads asking for personal tech support may be deleted.
Politics threads may be removed.
No memes allowed as posts, OK to post as comments.
Only approved bots from the list below, this includes using AI responses and summaries. To ask if your bot can be added please contact a mod.
Check for duplicates before posting, duplicates may be removed
Accounts 7 days and younger will have their posts automatically removed.

Approved Bots

Visibility: Public

This community can be federated to other instances and be posted/commented in by their users.

4.2K users / day
9.29K users / week
16.5K users / month
31.4K users / 6 months
9 local subscribers
85.1K subscribers
14.4K Posts
536K Comments
Modlog