Notepad++ hijacked by the Chinese!https://notepad-plus-plus.org/news/hijacked-incident-info-update/
>updoots are le bad
>>108037988>get the fauci ouchie edition>china le bad, save the yoghurts edition>rusia le bad, save the cukraine edition>but casually, for some reason, not a single mention of the one country committing an actual genocideNotepad++ has been hijacked by state sponsored actors for years.
>>108037985
>>108038037>the one country committing an actual genocideSudan?
>>108037988Why updates / manifests are not signed with developer key?
>>108038236usa
Damn, that'd suck if I still used Windows.
>>108038281He couldn't make his updater secure, he was too busy writing his blog because Putin or something.
>>108037988>independaent>acotorWhy is anyone still using software from this illiterate buffoon?
opposing software updooot, install and consoooom paradigms comes to be a proper side of "war".those blank statements may be used to trick retards, a form of GPL-tard engagement, if not proven otherwise. i never saw some "beggar for Ukraine" showed paychecks to confirm his/her support. why is this considered a normal behavior? if you support something, show real-deal reports, paychecks, not this info-fluff.
the dude who collects the money is not even in ukraine
you all seem offended by his political incorrectness
>>108038037>The incident began from June 2025.>Version v8.7.8: We are with Ukraine - 2025-03-08>Version v8.X.X: We are with Ukraine>Version v8.8.1: We are with Ukraine - 2025-05-05>Version v8.8.2: No political crap - 2025-06-30so, not only he's an obnoxious piece of shit shoveling politics into software, but he's also a scary cat that cucked out as soon as he got chinked
>>108041515cry about it HIVan
>>108038037>the one country committing an actual genocideSouth Africa?
>>108038037>closed with no comment
>>108037988was ninite safe? which download method was compromised?
>>108038037>not a single mention of the one country committing an actual genocideHe mentions China regularly.
>some people updating softwarelol retards
This means that my passwords stored in my browser have been stolen right ?
>>108043013ye
>>108043146Thanks. That is good to know.
>>108042142>which download method was compromised?The built-in updater.
>>108043699 (cont.)Which- mind you; you shouldn't have enabled to begin with when it was obvious that the original installer wasn't signed with a valid code-signing certificate.If they can't sign the original installer, what would make you think they can sign the updates?It's a MitM waiting to happen. You'd have to be a fucking lunatic to use its auto-updater.(Well-- or a normie.)
>>108038037>not a single mention of the one country committing an actual genocideI wish Israel wiped all mudsiimes off the face of earth, literally nothing of absolutely of any value would be lost whatsoever.
>>108043715wheres the proof that the author didnt just distributed infected binary himself and then composed an AI story because some user nooooticed a strange behavior?> many security experts said> bla bla bla
>>108037988Jokes on them, I never update that shit, I'm still using some version from 2022.
Okay but how do I even check if I'm infected with Xirus?
>>108043782the proof is:> GLORY TO UKRAINE! FREE TIBET!> ah, okay okay, youre cleanthat is the state of complete retardation
>>108037988I'm using version 8.5.4 from 2023, am I fine?
>>108038037>the one country committing an actual genocideYou mean Turkey?
>>108043817check the hash in powershell. can also look in your scheduled tasks to see if theres anything strange in there Get-FileHash "C:\Program Files\Notepad++\notepad++.exe" -Algorithm SHA256
Get-FileHash "C:\Program Files\Notepad++\notepad++.exe" -Algorithm SHA256
I'm updooting notepad++ through winget. Am I fine?
haven't updated it in years>go check the new versionsreally nigga?
>>108044960yea WinGet, Chocolatey, and manual zip installs all seem to be unaffected. think its only because of a hijacked WinGUP or GUP.exe in the updater folder of a normal install
>>108037988>Since JuneStarting hwat day?
>>108043802>>108044912Lmao this is why Windows is shit. People never updating their software. Why don't you continue to play MW2 multiplayer lol.Ironically, in a week Microsoft will update the Windows Defender malware database with these new files and we'll actually get a good picture of how many people are infected.
>>108038037serious question, why do turdies shill for this failed state so much?
>>108037988>leftist frenchfuck gets cuckedI should feel bad about this?
>>108043731You’re not slick Jew. Stop trying to pivot the narrative and treating the rest of the world as le goyim
>>108045267Because shit works pajeet.
>>108037988>literally never updated my notepad++feels good mantime to mig to vim
>>108045786Use the minimal portable version. It doesn't even have an installer. At this point I wouldn't trust the updater at all. Also get 8.2 if you're anew user. For some reason he's been bloating it over the years. 8.6.9 and newer is more than double the size for absolutely no reason.
>>108037988>hijacked by the Chinese!
There’s no evidence it was hacked. They can’t say what the “malicious” code is or where it came from. Everything is given in vague terms
>>108045917>denial
>>108045267>Why don't you continue to play MW2 multiplayer lol.>>>/vm/2144355
>>108037988i heckin luv updates! i update every software the second it's out btw
Nobody I know seems to care
>>108037988all of us that used winget to update are safewinget downloads the latest installer from github and it installs on top of your already existing installationseems like the people that use the update function in notepad++ are the ones affected
>>108037988updooters lose again
>>1080412782bh, fuck China after this doubly.Now I do hate them.
>>108042161But not Israel?
>>108044960I might just build from src 2bh. I don't trust the installers now.
>>108041278wow oh nosome milquetoast opinion held by everyone outside the mainland chinks, how could this be?
>>108041278Good catch. Most ppl think they hacked it for intelligence value lmao
>>108048381No, only China gets sovereignty. Anyone else claiming is a threat to Chines sovereignty.Oh wait, that's Palestine and Israel.
>>108037988awesome I don't auto-update anything for this reason.>>108038034yes. the update mechanisms in most software are the least checked parts of their code.
>>108041515keeeeeek this is what happened. he got pwned and pissed himself at the possibility of future pwnings once he dipped his toe in the sociopolitical water. Glad this shit made me swap to sublime.
>>108045972You can’t claim something happened while offering no evidence that it happened
I'm on notepad3
>>108037988Still using 8.7
so what are you supposed to do if you updated in this window but aren't located in asia who was supposedly the target
>>108048879>https://notepad-plus-plus.org/news/hijacked-incident-info-update/you donate to Ukraine!
So what was actually in the compromised executables that some people unknowingly downloaded? Did no one ever analyze them yet, or why am I not seeing an information on this?
I don't think I ever consciously disabled updates, but for some reason it never prompted me to update either.
>>108049165its analysed here:https://www.rapid7.com/blog/post/tr-chrysalis-backdoor-dive-into-lotus-blossoms-toolkit/
What's a good alternative to baizuopad? The announcements on the website and the developers BlueSky rants concern me now that I have learned of them.
>>108038236Israel. There, I said that, now pray for me.
>>108049286Sending thoughts and prayers.
didnt this happen several years ago as well?
>>108049510good memorytho that was about external malicious websites that got SEOed above their own result
>>108049173If you run the installer and choose custom installation, you can choose to skip install on the auto-updater component altogether. Iirc it's also skipped if you choose minimal installation. That's probably what you did.
So what's stopping linux distros repositories from getting hacked the same way?Does the signing key autism actually pays off?
>>108049152donate to Ukraine.. who represent Ukraine in there? >>108040906where can i look at reciets and reports of those crowdfunded money? which military equipment was bought and which military units recieved it?
>>108052574DonKong HoMon and ChingChong DingDong collect money for Taiwan liberation front..
i downloaded 8.8.5 am i fugged? been having random screen flashes sometimes
>>108052288>Does the signing key autism actually pays off?pretty much
>>108037988Anybody who doesn't hit the official website to manually download the update is a fucking retard.
