zlacker

[return to "Notepad++ hijacked by state-sponsored actors"]
1. Saris+8G1[view] [source] 2026-02-02 16:37:30
>>myster+(OP)
I guess my habit of running a firewall and not allowing programs to access the internet unless they actually need it is helpful for stuff like this.

Absolutely no reason a text editor needs internet access.

I only update stuff through winget, which fetches the installer from github in a lot of cases, and changing a package requires a PR to the winget repo AFAIK. Not foolproof of course though.

◧◩
2. just_t+o92[view] [source] 2026-02-02 19:02:36
>>Saris+8G1
Which firewall software do you use? I should probably start using firewalls in my computers as well...
◧◩◪
3. batat+CU4[view] [source] 2026-02-03 12:57:44
>>just_t+o92
It doesn't matter really because nowadays all of them are just a front-ends to Windows Firewall.

Also legitimate software (i.e. firewall/AV) cannot use "oldschool" tricks like system service descriptor table hooks to obtain godlike privileges these days, while malware sometimes can do this by exploiting vulnerabilities, so in such cases it may be an unequal fight.

[go to top]