zlacker
[return to "Notepad++ hijacked by state-sponsored actors"]
◧
1. getcru+f3
[view]
[source]
2026-02-02 02:32:35
>>myster+(OP)
So they say at the provider level update traffic was redirected . Does this also mean their update endpoints didn’t do encryption?
◧◩
2. gruez+68
[view]
[source]
2026-02-02 03:20:44
>>getcru+f3
It's also possible the update manifest contained an url that the updater blindly trusted, and by modifying that file you could change what got downloaded.
[go to top]