>>108037985
Link to blog post:
https://notepad-plus-plus.org/news/hijacked-incident-info-update/

I will still keep using it. Even if its compromised by the government of China even the note says their targeting is selective and they won't care what I do with my notepad. Nor should I care if they do decide to take a peek.

MUCH different story if it was CIA compromised in which case I'd scrub it from my machine immediately.

File: poop.png (13 KB, 574x388)

13 KB PNG

>>108037985
GNU nano wins again

File: dyrt.jpg (28 KB, 540x264)

28 KB JPG

>>108038019
Yeah, I am sure the CIA cares what you do with your shitty notapaddo.

with their stance on isreal being apparent, I'm more inclined to say they're fearmonger or covering for mossad

So how to check if I'm compromised?

File: Install_GNU+Gentoo_Linux.png (663 KB, 1347x3287)

663 KB PNG

>>108038081
>check
You full stop, flatten the entire system, then rebuild it from scratch. Simple.

>>108038081
If you have to ask, you aren't important enough to be targeted

>>108038098
>you aren't important enough to be targeted
>in a country where they do mass data collection on everyone
Glow niggers swarming this thread.

I guess China wasn't happy about the "Free Hong Kong" virtue signaling lmao

>>108038086
How's that working out, Mykola?

>>108038159
Are we going to get checksums of clean versions or paragraphs I ain't reading?

>>108038191
I read the site, there's not even clean version numbers.
What you can do is go to https://github.com/notepad-plus-plus/notepad-plus-plus/releases
Diwnload the version that matches your install, ten compare binaries.

>>108038204
So the user has to do the heavy lifting while the chink dev cries about his anal fissures from big PRC cock

>>108038217
Yeah basically. CCP compromise by notepad++ is a fucking disaster for me and other sysadmins now i have to figure out how fucked we are and nuke everything, and there's not even clean versions

>>108037985
I forgot the last time I use this software, should I delete it or not? And what can they do with this backdoor?

File: lol.png (18 KB, 403x388)

18 KB PNG

Imagine updating software
>Stand up for Ukraine
they got what they deserved.

>>108038240
No nfo. basically because ofthe o info, if you've ever installed notepad++ you have to nuke your windows install and start fresh.Bullshit levels off the fucking scale

>>108037985
How do we feel about this cope /g/?

>State sponsored groups don’t want their malware getting out into the wild far and wide as the wider it spreads the more likely it ends up in AV definitions, and they don’t give a shit about infecting just anyone like a typical criminal hacking operation. This sounds like they were after only specific high value targets.

Basically this is unlikely to have spread far and wide because Microsoft and AV companies would've caught wind of it and included it in their definition updates (which Microsoft pushes out multiple times per month).

Friendly reminder that Kate (KDE's N++ equivalent) is available for Windows, not just *nix systems.
https://kate-editor.org/

>>108038253
It'd better be true because if not this is a fucking level 10 shitstorm. You know how many PCs in my org have notepad++?

>>108038248
Damn, I probably should start using linux then huh?

>>108038081
>how to check if I'm compromised?
You're using Windows
You don't have to check LOL

>>108038253
On the other hand
>If it’s. a state-sponsored attack, you can bet they made sure it wouldn’t be picked up by antivirus.
These are just copy pasted reddit comments desu but there you go

>>108037985
Didn't this faggot put a bunch of political messages supporting Taiwanese and HK independence in his software? LMAO, imagine downloading this shitware thinking you are fighting against the CCP only to end up hosting CCP malware

>>108038259
>in my org
anon, they were almost certainly targeting businesses. You SHOULD be at least a little worried unlike the consumers in the thread.

>>108038253
>Basically this is unlikely to have spread far and wide because Microsoft and AV companies would've caught wind of it and included it in their definition updates (which Microsoft pushes out multiple times per month).
Maybe the jeets at Microsoft did catch this and other malware and their response is bricking the PC. It does prevent the malware from running after all.

LOL you give these charlatans too much credit.

File: 1766642110741950.png (301 KB, 480x603)

301 KB PNG

>>108038264
Oh how the turn tables!

>>108038254
>587.5 MB download
I'd love to abandon this glowware written buy a guy whose blog is nothing but "cia good, everyone else bad" again and again, but jesus christ, half a gigabyte for a fucking text editor is insane, this reeks of bloat.

I installed it the other day because I there was a new update for Wine and I thought Wine was broken so I installed n++ as a test to see if Wine works and it did. Am I good or should I just purge it from my system? I use nvim anyway. I do have it as a default text editor on my W10 machine, installed through scoop. Is it still compromised if I used a package manager?

>>108038305
It's pulling in all the KDE shit. That's the problem with programs ported from KDE, GTK, etc. They need to bring in a ton of dependencies like a H1B needs to bring their extended family.

>>108038323
You're only compromised if you downloaded it between june - december last year

>>108038324
Kek

File: .png (45 KB, 413x324)

45 KB PNG

>>108038305
shut up goy, linux software is Le Minimal and Lightweight, 500MB for a text editor is normal.

>>108038329
I installed it around that time on the family desktop that had Windows 11 using scoop, are package managers safe from this compromise?

>>108038333
I fucking hate how vague all the information is we have. I've read now that it was supposedly only specific targets in Asia but I no idea if this is true

>>108038092
>using long options
gross

Windows 11 CoPilot Notepad GODS. How are we feeling?

>>108038350
Haha i once downloaded an Apt32 virus (according to Cuckoo sandbox) which is more or less the same situation you’re describing, except for the Vietnamese. That’s the time I ever download some random repack of a visual novel on Soulseek.

>>108038368
*last time

Why is China so good with computers?

>>108037985
FAFO

File: me (2).jpg (56 KB, 960x578)

56 KB JPG

>>108037985
i only update it from winget, am i good, i noticed winget link is from github servers

Thank god I didn't use it as a pw manager for anything actually important and not just porn sites. :^)

>>108038368
>Apt32 virus
Oh you mean the one Google Play distributed?

>>108038388
Because it doesn't build backdoors into their own machines like western states do.

>>108037985
>CIA spyware gets hacked by chinks
kek, this happenes more and more.

File: 1751160654923.jpg (667 KB, 1080x2408)

667 KB JPG

>>108038426
This.
Its always the same: You have some NSA or CIA backdoor in your mulattoware and someone else finds it.
Mass surveillance makes you weak, because others can use your tools as well.

China wins because they don't deploy 6 million backdoors in their own hardware they use.

>>108038264
Unless he acted like a honeypot on purpose?

>>108037985
Is there a link to download the compromised build? I trust chinks more than I trust this glownigger.

>>108038421
Yes, at least according to Cuckoo sandbox. Not sure how it would work on Windows 11 but just to be safe I nuked the entire SSD.

>>108038469
Keep an eye open on infosec blogs and xitters. They love to brag about getting their hands on malware even though they don't do anything with it.

>>108038461
Glowniggers and their fanboys are this dumb.
Check out any NAFO space on twitter, if you don't believe me.
Or just look at all those people who shilled for him and shouted "YOU GO GIRL!" every single time Notepad++ did another CIA messaging.

Glowniggers are literal government employees under strict DEI requirements who have no danger to ever lose their jobs and get every fuck-up covered. Such an environment doesn't attract the most skillful people.

File: Capture.png (6 KB, 637x65)

6 KB PNG

dodged
auto update retards on suicide watch

>>108038452
I just assume 5 eyes are just so cucked by espionage at this stage that they're just a foreign actor. Chinese people should do the same with the CCCP and it's intelligence community. Same with Jews with Mossad, etc.

These organisations completely fuck each other over until they just harm EVERYBODY. You could say similar about corporate entities.
It's always been like this though. This isn't new at all. People just don't want to accept this is the reality, even though these agencies constantly warn the masses this is the reality in all of these countries. What else can they do? Break into people's houses, rub their nuts on your daughters face and say "fuck you"? What will it take for people to realise this is how things are?

>>108038542
So if you installed this years ago, but updated it.... say in november, you're cooked right?

>>108038247
Based

I've always thought it was a dumb program anyways. I want my Notepad bare bones otherwise I'd use a regular word processor. I don't like the Win 11 one either

Sublime Text sisters... we won...

>>108038570
potentially

>>108038092
copy pasting commands from 4chan is the ultimate redpill

File: notepad++_R42ms7ORoU.png (10 KB, 468x307)

10 KB PNG

>>108037985
>The exact technical mechanism remains under investigation, though the compromise occured at the hosting provider level rather than through vulnerabilities in Notepad++ code itself
regardless of what was compromised or which glowies were being targeted by chink state actors, this is why automatic updates are a fundamentally dogshit concept that should've never been normalized in the first place

>>108038714
I wonder how many auto updates MS and Google are compromised nowadays.

File: Crop.png (36 KB, 1044x102)

36 KB PNG

>>108037985

>>108037985
>CCP hackers managed to compromise
I posted the last time N++ was discussed that using activismware is asking for trouble, but I didn't consider this angle. Also time to take a good look at other programs which have done the same kind of virtue signalling, like LosslessCut etc.

Wow, all roaming using programs could be affected by this? Not just NP++?
Holy shit.
Windows is fucked.

File: 1.png (115 KB, 681x1078)

115 KB PNG

Wow dude whou would have thought that it would be a bad idea to use software that has update notes titled like this!!!!!!!!!! What a fricken shocker!!!!!!!!!!11111

>>108037985
I HATE THREAT ACOTORS

>>108037985
>N++
This is well known to be the best game ever invented.

>>108038815
comic case of fato

"automatic update" is the biggest security vulnerability known to man

>>108037985
But Windows users told me linux was less secure than windows because of centralized software repos and downloading software through the software's website was better?

>>108037985
i havent updated Notepad++ in years, guess im safe

>>108038570
Depends on whether you were one of those targeted or not, but potentially yes.

I almost cared until I remembered I only use my pc for vidya anime and porn. If the chinks really want the $300 in my checking account they can have it

>>108037985
Is my We are with Ukraine version safe?
What about Stand with Hong Kong version???

>>108037985
>my installation says it was last modified around 2021 at the latest
think i'm safe

File: images(1).jpg (38 KB, 455x439)

38 KB JPG

TOP KEK

Who the fuck uses np++ in 2026? I understand 20 years ago but holy shit, get a grip on your life. There's a shitton of better software, even the notepad in W11 has better usage

>>108038543
Currently, this is a western-only phenomenon.
Can be explained by the fact that their own governments are ruled by foreigners who hate them.

I yet have to see a report of Chinks getting hacked because foreigners discovered Chink backdoors.
And this despite the fact that all Westoid governments tell us that Chinese 5G hardware has backdoors... yet they can't find them.... all that money, the largest three-letter-agency infrastructure in the world, and they simply can't find those supposed Chinese backdoors to abuse them.
Meanwhile they themselves get hacked every other day.

>mossad spreads malware through your updates
>blames other countries
every time

File: file.png (1.25 MB, 1200x540)

1.25 MB PNG

>>108038019
>actuarry is good thing wen complomise by china, china numba wan
I'll just leave this here.

>>108038714
Without automatic updates your own glowfags can't deploy backdoors on your machine on will... or patch them and deploy new backdoors, in case one of their old backdoors getting found.
Nowadays "cyber security" is all about the question:
>how can we give our own glowfags unlimited access, while not having others abuse our very own spy infrastructure

Think about stuff like Bitlocker and TPMs, that literally hand out full-disk encryption keys by default, to any OS that is signed by Microsoft. And then additionally that key gets stored in the Microsoft OneDrive cloud as well. Just to REALLY make sure that glowfags have access.

File: 1766487889953287.webm (1.17 MB, 576x1024)

1.17 MB WEBM

>>108038247
>t.

File: 1738867548035675.jpg (423 KB, 2243x1000)

423 KB JPG

>>108037985
notep-ack

im super paranoid about reinstalling it even if they claim its now safe, fuck

>>108038248
u can't hack or anythin I have nortron

>>108039019
I am not in China.
What is Xi Jinping going to do to me? Sell me cheap products?

Meanwhile the CIA, FBI, NSA, etc. has access to me, can harm me, and they hate me.
If a chink takes over software that is well known as CIA spyware, that chink has a natural interest to remove the CIA shit and to deploy his own.
Which is a benefit to me.

>>108038815
>>108038247
I'm surprised they haven't released the "Fuck ICE" update yet.

>>108039057
>I'm surprised this program that only posts cia propaganda didn't release a version criticizing the us government
Huh?

>>108039057
It is CIA spyware, why should the CIA be against the ICE?

>>108039039
>What is Xi Jinping going to do to me? Sell me cheap products?
Yes, the only thing that can happen when they sell your information to criminals is that you buy things online, you malformed bug monstrosity.

NEVER UPDOOT

>>108039039
welcome to the botnet brother

>>108039077
Meanwhile lintards will update AUR 16 times a day.

File: file.png (17 KB, 407x390)

17 KB PNG

imagine ever updooting your fucking notepad replacement

>>108039074
Sold data is useless data, because now everybody got it.

poor little ziolibtrashware :(

>>108037985
reminder if you run a linux kernel made in the last decade you've been pre pwned and botneted and you are just on standby

>>108039090
Saar old Notepad++ insecure please update to We Stand With Israel edition for good looking you bloody basterd

File: xi-won.jpg (86 KB, 696x500)

86 KB JPG

>>108039074
>live in a Westoid country
>hate your own government and your government hates you
>get "hacked" by the CPC
>the CPC makes sure to remove CIA spyware and replace it with their own
>they notice that you are a dissident
...
>somehow they should fuck over the very people whos existence benefits them???

Think about it for a bit, retard. It would be against their interest to harm me.

>>108039115
why

>>108039125
>Think about it for a bit
Can't do, he's uncontrollably seething in several threads at once and he has to reply to every single post he doesn't like, no time to think, only zogpost.

File: 1768023121803836.webm (2.04 MB, 426x238)

2.04 MB WEBM

>>108039125
>live in China
>fall into a pothole and die

>>108039164
https://en.wikipedia.org/wiki/Jewish_Museum_and_Tolerance_Center

File: 1748664247898232.webm (2.62 MB, 1280x720)

2.62 MB WEBM

>>108039165

File: fa612be4940bae15b019b36f9(...).png (241 KB, 500x307)

241 KB PNG

>>108037985
ShareX will be next, disable the UPDOOT garbage right now

>>108039090
https://notepad-plus-plus.org/downloads/v7.3.3/
>CIA Hack fixed
https://wikileaks.org/ciav7p1/cms/page_26968090.html

File: 1744521108683183.png (167 KB, 1262x876)

167 KB PNG

Not my problem

>>108037985
So black lives matter, ukraine support, WEF ideology were all China pilled? kek

>>108039175
At least the mannequin is okay.

File: 1743442197918176.gif (466 KB, 498x498)

466 KB GIF

>>108037985
>Stand up for Ukr-ACK

ok sure it's backdoored by the chinx, but did you know that israel capitalismed my palantir? i bet you didn't because you don't watch redpilled tiktoks like me

>>108039227
abandonware used by normie autists

>>108037985
> targeting obseved during the campaign
> obseved
jewkraine liberals over at notepad++ doing amazing things.

>>108039125
> uses CPC like a real man instead of CCP.
Fucking based post comrade.

>>108039260
What?

>>108039278
OP image has a typo

>>108039259
>help im being oppressed by capitalisms!
meanwhile, the average phoneposter:
>>108039274

File: Screenshot_20250327-074950.png (1.6 MB, 863x1265)

1.6 MB PNG

>>108039285
Yes. I posted on a Huawei. How could you tell?

>>108037985
>updater
wintoddlers are so fucking retarded relying on a dozen different proprietary update systems

File: chinese-beauty.jpg (105 KB, 819x1024)

105 KB JPG

>>108037985
>Free Uyghur
>Free Uyghur
>Free Uyghur
>Stand with Hong Kong
>Stand with Hong Kong
>Stand with Hong Kong
>(Boycott Beijing 2022)
>(Boycott Beijing 2022)
>(Stand up for Ukraine)
>Support Taiwan's return to the UN
>Support Taiwan's Independence
>Support Taiwan's Sovereignty
>We are with Ukraine
>We are with Ukraine
>We are with Ukraine
>We are with Ukraine

>NOOOO WHY DID I GET HACKED NOOOOOO

File: chinese-or-jewish-world-order.jpg (164 KB, 1024x1024)

164 KB JPG

CIA adjacent and American Big Tech projects get hacked almost daily.
Meanwhile Chinese software rarely gets hacked.

Might Makes Right
FAFO

I support the winners, not the losers, because i don't want to lose with them. That's why i support the CPC.
If mulattos want to have my support, they first have to produce something that doesn't get me hacked every other day.

>>108039339
>Chinese software rarely gets hacked
north korean software never gets hacked

File: Tier One.png (27 KB, 704x221)

27 KB PNG

It still seems like China is a tier two cyber power. The NSA's exploits rarely (if ever) gets discovered.

>>108039339
bro thinks he's on the team

File: apu-watching-ants.jpg (56 KB, 600x500)

56 KB JPG

>>108039360
>the only reason why the Chinese never get hacked, but we do, is because we secretly hack them and don't expose it!
don't choke on that government cock you suck on

>>108037985
Fuck Around And Find Out

>>108037985
Considering the dev is a glownigger enthusiat >>108038815 and considering the vulnerability is at the provider level, it is extremely likely that it was actually a feature implemented by glowniggers that was used against them.
It is funny and ironic: in the end, the greatest achievement of those pointless messages may be that the whole thing "glow in the dark", which is a signal to the hackers of the Axis of Resistance that there are vulnerabilities there.

Source: your local schizo nooticer (me).

>>108039377
it absolutely has to do with how differently the two orgs (MSS vs NSA) operates. MSS uses large scale and persistence, employing lots of contract hackers and they're sloppy sometimes whereas the NSA are mostly in-house military hackers doing targeted hacking.

>>108037985
And what exactly makes him think that it only started in June 2025?
Since those malware updates were targeted on individuals, it is impossible to check. You can't just look into the deployed binaries, because your binaries might have been alright. And even if you were a targeted individual, how do you know that you were the first one?

The whole glowfag wording makes it even worse
>involved infrastructure-level compromise
So a leaked ssh key / password? Or what? It must be something idiotic, otherwise he would say what was going on, rather than hide behind buzzwords.
>exact technical mechanism remains under investigation
How so? Then how do you know when it started, if you don't know how it started?
>compromise occurred at the hosting provider level
Again: How? If you know that they had update-server access, you can find out how they accessed it within an hour or so. Definitely less time than it took to write that post.
>multiple independaent (typo) security researchers
>in collaboration with external experts
Why is this needed and who are they?
If you want me to believe their words "likely Chinese state-sponsored group" based on their credentials, you have to tell me who they are.

I think this proves that Notepad++ is actually a CIA project.
A random idiot, who is just a fanboy of the US state department, wouldn't react this way.

>>108039429
The NSA is sitting in Big Tech companies and on the backbone to screen all internet traffic. And they share the first task with the FBI and the second task with other five eye countries, to dodge legal hurdles.
>in-house military hackers doing targeted hacking
That's the CIA, and they are pretty bad at their job. Idk why anyone would believe that just because you put the word "military" in there, it would be suddenly competent. Especially considering all the proven incompetency of them.

Don't just make up stuff that sounds good in your head.

>>108038362
Long options are bad because...?

>>108037985
>The CCP is selectively targeting its own citizens who are trying to protest against the government by hacking my servers cause i said bad things about them!!!11!1
Skitzo nonsense. First off, there is no fucking point they have a million much better options to spy on their own citizens with (and you). Probs glowies instead (or his own shit and got caught), cause no-one in chinkland uses that so it was just completely ineffective and are trying now to save face.

>>108039409
Hosting provider is just someone else's computer and you just trust it with not fucking your shit up

>>108039475
>malware updates were targeted on individuals
it was targeted on Notepad++ host, how could you even target a random download on an individual

>>108039605
>how could you even target a random download on an individual
filter by ip and serve cleanfiles to everyone else to avoid detection?

>>108039619
imagine knowing when someone wants to UPDOOD and just replace a dynamic IP config just at that time

>>108039522
because you have to type more when it is possible to type less to accomplish the exact same result? fucking dumbass
GNUfags would love PowerShell and Fuck-MyAssAndCallMeABitch

>>108039647
are you actually that stupid?
you surveil the target and get as much information as possible, if it's a chink and he is on the radar already he needs to communicate with normalfags somehow to spread the propaganda, you get him there
everything can be automated easily, it's not that complicated
they don't ssh into the server to update the config manually, they set it the monitoring system once and then just wait

>>108039339
third path down the middle that says "kill them all"

Which version was it?

>4.5.9 FREE PALESTINE
>4.5.10
>5.0.1 FUCK DONALD TRUMP
>5.0.2
>5.1.0
>5.2.1 TRANS RIGHTS ARE HUMAN RIGHTS

need to make sure it's not on my machine

File: 1766061002714797.jpg (533 KB, 1920x1080)

533 KB JPG

WHERE ARE THE IOCS
WHERE ARE THE IOCS

File: Screenshot.png (837 KB, 2025x2475)

837 KB PNG

>yeah btw we exposed our userbase to mystery malware. no biggie. dont forget to donate to ukraine
Priorities.

>>108039945
>main dev is french
now it makes sense

>>108039945
so before mid december last year they not verifying updates with signatures?
it's really that bad huh

>>108039227
this

>>108039255
I can buy and sell 100 of you hobbyist fucksticks lmao
in fact I have

so i was right to delete it after they went muh ukraine schizo

>>108037985
>>108037991
there are so many typos in this blogpost it's disgusting. Muh open sores shitware strikes again.

>>108039878
Can you post a link for the "Free Palestine" version? For some reason I don't remember seeing it. Haha, I wonder why is it that this totally organic activist completely forgot about that and only about that haha. Merely a coincidence, I guess, no need to worry about it.

>>108038264
Maybe that is why it was hacked. The chinese really don't lile stuff like that.

>>108037985
>using app update feature


weak. Just download the new version of the sotware (which should be portable anyways)

File: file.png (30 KB, 429x408)

30 KB PNG

>>108037985
>Updating

>>108039992
>learning new tools is hobbyist behaviour
sunk cost lol
sublime hasn't been relevant since 2015

File: 1750338486187713.png (19 KB, 402x382)

19 KB PNG

>>108037985
So I'm safe, but just barely.

>>108040026
updooting actually brings some neat new features, and in case of npp, zero bloat which is actually fucking impressive

>>108040045
you are a hobbyist
you don't own a company
you don't have employees
you don't generate worth
you are a hobbyist

>>108038040
Well they sure as fuck seem to care about everything else people are doing. Why are you so retarded?

>>108037985
> checks last downloaded installer
> 2018
were we supposed to update this software bros?

File: noooticing.png (1.53 MB, 992x1056)

1.53 MB PNG

>>108039322

is there a proof of it being hacked? theres only a stories and empty statements.

--
GPL retardation got them there.

DONATE TO UKRAINE - anyone checked where those money go? what fund?

SUPPORT TAIWAN - what if its all about the plot to compromise those who install and updooot that program?

--
time to UPDOOOT and ACTIVATE yer brain GPL-tards, if youre for the good, otherwise you just serve the evil

>>108040068
correct, i have half a million inheritance
i am also living off the taxpayer
go work your important job, faggot
i don't even use a text editor

File: Bildschirmfoto_20260202_145428.png (242 KB, 1099x1077)

242 KB PNG

>>108039647
It was (((3 orgs))) who got specifically targeted.
The targets are known. For over two months already.

The fact that they don't tell you who those (((organisations))) are, tells you who they are.
If they would be play-pretend muh human rights organisations, they would shout loudly and declare themselves as victims.
So:
It is glowfags and they probably simply filtered for NSA and Pentagon IP ranges.

This happening could be much more serious than they tell you it is. Maybe on the level of the Microsoft Azure hack.

>>108040080
nice attempt to change subject, zogbot

>>108040045
>YOU HAVE TO HECCIN UPDATE TO THE LATEST VERSION!!!!!

no lmao

>>108040081
LMAO that cope

>have a nice open source project that people like
>get political
>government actos hack you and your users
was it so hard to just shut your loud mouth about global politics instead of fucking your entire userbase like this, to have the software development project be focused on developing the project instead of using it as a tool to attack governments and their policy to the point they want to destroy you. Was any of this actually necessary or was it all just for fun at the expense of others.

>>108038247
Based. Fuck russoids.

>>108040099
>LMAO that cope
we are all wasting time on /g/
it's more likely than you'd think
and stop samefagging

>>108040110
the difference is you waste time in the rest of your life and do nothing at all
i actually create
and i do it using software you don't want me to be allowed to use :)
stay mad poor little raging faggot

>>108040140
it's not that i don't want you to be allowed to use sublime
it's that you're a baby duck
anything you create is in spite of your irrational behaviour

>>108040105
Notepad++ is shitware that has had tons of security issues before any political shit

>>108040166
>hobbyist seething in rage because he invested his entire personality in the "software he uses" without ever creating a single thing
lmao
i can't imagine being such a mess as you
keep replying let me know how explosive fuming your rage is, just because you have nothing else in your life to show lol

File: china-no-inflation.jpg (163 KB, 1200x1200)

163 KB JPG

>>108037985
oh nooo, yet another Westoid software project getting hacked.
This is so sad.
Why can't Westoids build secure software?

>>108040105
What makes you think criminals only target your products if you're political? Like if he didn't make a couple of 3-word statements about X or Y the vulnerability in the update provider would go away and hackers would totally stay away as a gentleman's agreement? Are you retarded?

>>108040201
>if you reply to me, then i win
that doesn't work here i'm afraid

if you say lol or lmao again, then i win

So, the NP++ had his digicert code-signing certificate expire on 2025-05-15 during version 8.8.1, and the retard dev couldn't negotiate with different (or any of the other signing companies) to get a new cert under the Notepad++ name, so he published version 8.8.2 as an unsigned binary.
Then he realized that unsigned binaries get instantly blocked and deleted as malware by most modern windows installs, so in July 2025 with version 8.8.3 he starts self-signing the binaries and he INSTRUCTS PEOPLE TO INSTALL HIS CERT AS A ROOT-LEVEL CERTIFICATE AUTHORITY ON THEIR SYSTEM.
... Five months later in mid December (v8.9) he finally switched back to signing with GlobalSign.
Now suddenly, six months later we discover a "hack" that allowed malicious code to be installed on peoples machines, starting between May 2025 and December?
Yea, I'm sure this has NOTHING AT ALL to do with the whole code signing certificate shit from last year. Nothing.

File: Screenshot_20260202_14284(...).jpg (269 KB, 1280x755)

269 KB JPG

>>108037991
Oh, the guy is completely illiterate. No wonder his software sucks so many balls

>>108040229
>it's probably just a coincidence that China hacked them after they posted anti-Chinese remarks
I never thought about it like that. I'm sure the service outages from Russia were probably unrelated too. Like there's no reason the government would be angry at them during war time while their slandering them. You might be right.

bad with computers here, am I safe if I downloaded/installed it in january of this year

>>108040255
Yeah you're totally right, the bad security is totally fine and the problem is the political stance, I mean it's alright to have insecure servers as long as you only hold correct political opinions that agree with the chinks and the vodka golems. Your vulnerable servers will definitely not get exploited, its just a politics problem bro :)

>>108040305
You're incorrect, the combination is bad. Having poor security is separate from having bad public relations, but as exemplified, having is bad for the project. You shouldn't bad mouth people with paid hackers if you have shit security.
Not sure why you're conflating the 2. I have a guess but, you already know.

>>108040240
>instructs people to install his cert as a root-level certificate authority
Holy fuck it's true kek.
https://notepad-plus-plus.org/news/v883-self-signed-certificate/
No wonder these people all got hacked.

>>108037985
i was using windows defender. it would have picked up on notepad++ doing anything bad. i'm safe, right?

File: 1751574067617284.png (672 KB, 1120x798)

672 KB PNG

>>108037985
Wow, genius move making your project the target of nations known to liberally engage in cyber attacks, because you couldn't help but sperg out and include provocative political messages in your release notes. I'm sure all of your compromised users really appreciate your bravery in standing up to Xi/Putler with a generic "I STAND WITH X" message that accomplished literally nothing (other than getting all of your users hacked, of course).

This is why you should never use a project run by hyperpolitical troons. Inevitably, one way or another, it's going to seep into the project and cause problems.

>>108040327
If you ever had any version starting from 8.8.2 and up to 8.9 installed on your machine, assume its completely compromised.
Those versions of Notepad++ could have installed literally anything on your system.

>>108040320
I am not conflating anything, I am pointing out the fact that the actual problem here is bad security while you are a seething retard, frothing at the mouth because the dev has done a wrongthink which is entirely irrelevant and disconnected from the bad security.

>>108040340
I know what you're pointing out, reiterating it doesn't make it relevant to what I wrote or correct.
>while you are a seething retard, frothing at the mouth
Aren't you the one getting flustered? It reads like that. You're not pretending to be angry just for attention now are you.

>>108040337
why was my windows not defended?

>>108040366
Because presumably notepad++ was running without doing anything malicious for like two decades, so they've built up a really good reputation in Windows Defender.

>>108040353
>Aren't you the one getting flustered?
Are you projecting now? I responded to a post which whines & cries about politics exclusively right here: >>108040105
The post says absolutely nothing about security, it's absolutely nothing but crying about politics. This is where this reply chain started, a post having a screech about the dev's wrongthink. I then pointed out that the problem is - again - bad security and not whatever the fuck politics, because having vulnerabilities is a problem regardless of who the fuck exactly was the one to exploit them first.

>>108040421
I guess it's a language barrier. In any case the impression I'm getting it that you're frustrated about something and trying to tell me about it but I don't understand where you're coming from.

>>108040434
Yes, I think it's a language barrier in the sense that you lack reading comprehension and strongly project whatever is going on in your head onto everything you read.

What I am frustrated about is that politically-motivated idiots like you are ready to sweep the real issue, which is bad software security in a system which pushes executable code out to users automatically, under the rug while at the same time using it as an opportunity to pretend that the problem was some political stance when in fact that is completely irrelevant and disconnected from the reality of a technical fuckup on the developer's and server host's side.

>>108037985
>TLDR: If you installed or updated Notepad++ between June and December of last year, your system is potentially compromised by changs.
how about you read your own fucking screencap
>traffic from certain targeted users was selectively redirected to attacker-controlled malicious update manifests
if you're not a "target" (seeing as it's state level they're prob going after government or military, not your shitpost machine) you didn't even get the malicious update. 99% of people are fine

THE FUCK YOU MEAN "FINGERS CROSSED"?

File: 1752288232811280.jpg (59 KB, 1020x680)

59 KB JPG

>>108039339
retard

>>108037985
What are the alternatives? I code in HTML/CSS and javascript, websites with 70+ files opened. This little editor would be painful to replace.

>>108040570
emacs

>>108040335
>This is why you should never use a project run by hyperpolitical troons.
Trannies know security. This is just an old school sperg who's been programming a text editor his whole adult life.

>>108040563
kek, look at Netanyahu, the little bitch bowing to the mighty Chink.
Reminder that Xi Jinping never touched the little jew wall. In fact, Xi Jinping was never in Israel in the first place.
Meanwhile Netanyahu gets ordered around like a dog and comes to Beijing to beg... unsuccessfully.

>>108040544
>politically-motivated idiots like you
Anon, I thought you were joking. This remark makes me think you're serious.
If you are being serious, you interpreted the post backwards.
>ready to sweep the real issue, which is bad software security
You're wrong, as I pointed out already. Having bad security is a problem, making enemies with hackers is also a problem, you're conflating the 2 together, but they are 2 separate topics.
You want to tell me about security for some reason, but it has nothing to do with me.
Not reading the rest because I still think this is probably insincere goading.

File: 1741243275574456.jpg (147 KB, 1080x1745)

147 KB JPG

>unsuccessfully

go back, chink redditor

>>108040563
Isn't a state visit from 2017, where Netanyahu traveled to China to beg Xi Jinping for help, declared his uttermost support of the one-China policy, backstabbed Taiwan and then still went home empty handed... the exact opposite of what you want to imply here?

Doesn't this very happening prove that China isn't a little bitch slave like mulattos are?

File: western-tanker-hit.webm (544 KB, 640x352)

544 KB WEBM

>>108040652
>sources say
>Januray 26, 2024
Here, have a webm proving your sources wrong, you little cuckold.

>>108040570
VSCode was originally created with the express purpose of doing webdev.
Use VSCodium if you want the open-source version.

AFFECTED VERSION LIST FINALLY RELEASED
>8.12.2 - In Memory of Saint Alex Pretti
>8.12.1 - In Memory of Saint Renee Good
>8.12 - ICE is Trump's gestapo
>8.11 - Greenland is rightful Danish clay
>8.10 - Maduro did nothing wrong
>8.9 - Release the Epstein files
>8.8 - Xi is Trump is Putin is Elon is Hitler
>8.7.3 - Trump is Hitler
>8.7.2 - Xi is Hitler
>8.7.1 - Putin is Hitler
>8.7 - Elon is Hitler
>8.6 - Free Palestine
>8.5 - Zelensky is such a chad
>8.4 - Total Uighyr Freedom
>8.3 - Hong Kong is rightful British clay
>8.2 - Taiwan Superpower 2020
>8.1 - In Memory of Saint George Floyd
>8.0 - Two More Weeks to Flatten the Curve

>>108040610
>Trannies know security.
Correction: trannies love pointless security theater, not real security.

>>108037985
Good thing I haven't updated since January 2023.

>>108040610
>Trannies know security.
Correct. https://stopice.net/

>>108040784
This.
Trannies are horrid when its about security. They hang out on discord, do that CoC bullshit, which is a door for malicious actors to sneak in. Then they deploy updates for shit and giggles, tell you to not use "legacy software" because only the freshest CI build is secure (lmao) and build in all forms of telemetry and automatic updates, which again can be used for malicious stuff.

File: 1753089602906750.jpg (36 KB, 406x470)

36 KB JPG

>>108040783
Notepad++ users should honestly rope for exposing themselves to such faggotry.

>>108040783
lmao

>>108039409
why not just move to iraq?

>>108040084
>>108038081
If you have a version of notepad++ installed that is vulnerable you can calculate the checksum of all the files in the install directory, uninstall notepad++, then reinstall the same old version from the official downloader. Run the checksum again and see what files are different.

Specifically it looks like GUP.exe was modified based on the security research blogpost. There were also two update.exe files dropped in %appdata%. Used task manager or system informer and search for all processes with update in the name/file path.

There are only 3 know victims, so we unfortunately do not have the checksums or copies of the infected files.
It seems to be isolated for now, normies were not targeted. The researcher said only east asian (taiwan) orgs had reported being targeted.

Just checked and I have notepad++ on my work laptop (which I don't use)
Should I send a mail to the IT telling them if it's safe to keep it installed? I work in the accounting department so they could fuck big things if they decide to, and have access to our local banks

>>108041146
At this point the backend server has been secured so if you run auto update you'll be fine. Ideally update to a newer version so the signing check actually works when doing an update.

Which version of notepad++ do you have installed?

>>108041090
What about the portable versions, are they affected too? From the looks of it, they don't even auto-update by default.

FUCK i got the 8.8.9 through the auto updater from weeks ago

what do i do?
runnin AV scan on appdata folder already

>>108041193
No, anything officially downloaded from the notepad++ site manually is fine.

>>108041204
Throw away your computer.

>>108041251
brother......

>>108041259
That's the only way to be sure.

>>108041271
fuck that

>>108041177
Haven't checked and I left the office already
I've never used it before in the 6 months I've been there, and haven't seen any message to update it like I do on my own pc, perhaps it's managed by the IT already

uninstalled 8.8.9
running eset online scanner on the c:/program files folder and appdata

File: 1770050721102.jpg (132 KB, 1103x1465)

132 KB JPG

Why did anybody use this piece of shit?

eset found nothing

>>108040783
he actually stopped with the stupid release names after he got chinked >>108041515

>>108037985
>FUCKIIING CHUD YOU HAVE TO UPDOOO-AAAAAACKKK

LMAO UPDOOT TRANNIES LOST
BABY DUCKCHAD WON

trannyware

>>108041348
Because it's one of the most feature-rich text editors for Windows and most people who get shit done couldn't care less about political opinions of the developer.

File: 1498723595763.png (127 KB, 339x273)

127 KB PNG

Relax you schizos they were going after high level state organizations. No one cares about your anime machine.

>>108041841
>

>>108041841
That's only because they don't know how many animes I have.

>>108041146
>Should I send a mail to the IT telling them if it's safe to keep it installed?
>if they decide to, and have access to our local banks
Holy fucking cuck.
MR SHEKELSTEIN GET DOWN

File: 1564153447545 (1).jpg (38 KB, 450x390)

38 KB JPG

First of all if you don't work for government agencies you didn't even get the infected build. They hijacked the update distribution and sent modified builds to selected high value targets. If you're just some random fag on the internet you got a regular clean version of the installer.

File: 1744421739240225.png (6 KB, 387x110)

6 KB PNG

Am I safu?

>>108041925
Yes.

>>108041888
I don't want to lose my job because it's comfy and I only work 3 days a week

Yeah uhhh at work be install notepad++ automatically on all pcs

>NOTEPAD... PLUS PLUS? ANON ARE YOU INSTALLING CHINESE VIRUSES ON THE COMPUTER AGAIN?
apologize to your mother, now

File: 0hvRXyXeca.png (23 KB, 735x570)

23 KB PNG

for me is notepad3

does affect us that installed it through choco?
i also update it like every 4 months

>>108038247
kys dipshit