Cybersecurity @sh.itjust.works floofloof @lemmy.ca 2d ago Notepad++ updater installed malware www.heise.de Notepad++ updater installed malware 1 crossposts Technology @lemmy.world schizoidman @lemmy.zip 2d ago Notepad++ updater installed malware www.heise.de /en/news/Notepad-updater-installed-malware-11109726.html
Headline seems intentionally vague. The updater was vulnerable to a download man-in-the-middle attack, because it used a weak certificate.
Which requires a malicious network operator or some other kind of DNS poisoning. Not exactly a radical exploit
Headline seems intentionally vague. The updater was vulnerable to a download man-in-the-middle attack, because it used a weak certificate.
Which requires a malicious network operator or some other kind of DNS poisoning. Not exactly a radical exploit