The Notepad++ mission is searching for the general public’s assist in taking down a copycat web site that carefully impersonates Notepad++ however is just not affiliated with the mission.
Though, on the time of writing, the lookalike web site takes guests to the official Notepad++ downloads web page, there’s some concern that it may pose safety threats—for instance, if it begins pushing malicious releases or spam sometime both intentionally or because of a hijack.
“Assist us to take down the parasite web site”
Notepad++, the free and open-source textual content and supply code editor mission has appealed to everybody to assist shut down a lookalike web site, notepad[.]plus that makes use of the mission’s branding, and even manages to rank excessive in search engine outcomes alongside the official web site, notepad-plus-plus.org.
“I’ve obtained quite a few complaints through electronic mail, social media, and boards concerning an internet site that poses a big menace to our neighborhood,” writes Don Ho, the unique developer of Notepad++.
The location in query notepad[.]plus, in response to Ho, comes up prominently in search outcomes when customers lookup “obtain Notepad++”, as confirmed by BleepingComputer:
(BleepingComputer)
“Some customers have mistakenly believed that [it] is the official Notepad++ web site. This confusion has led to frustration and potential safety dangers,” states the dev.
The web site in query does comprise a transparent disclaimer on the backside spelling out that it is “an unofficial fan web site” and “not affiliated” with the mission.
Notepad++ is a trademark of Don HO. Notepad[.]plus is just not affiliated, sponsored or endorsed by Don HO in any methods. That is an unofficial fan web site created for basic data/instructional goal solely. Any context discovered on this web site is our private opinions and don’t purport to replicate the opinions or views of Don HO or its representatives. All different logos are the property of their respective homeowners.
Fan web site presently redirects to official releases
It’s value noting the fan web site directs guests to the official Notepad++ releases downloads web page hosted on notepad-plus-plus.org.
Regardless of this, Ho alleges that “this web site harbors a hidden agenda” and is “is riddled with malicious commercials on each web page.”
Such adverts, in response to Ho, may deceive unsuspecting Notepad++ customers into clicking on hyperlinks that generate income for admins of the unofficial web site.
“The true goal” of, what Ho has known as a “parasite web site” is, in response to him, “to divert site visitors away from the legit Notepad++ web site, notepad-plus-plus.org” which doubtlessly “compromises consumer security and undermines the integrity of our neighborhood.”
BleepingComputer checked each the newest model of the notepad[.]plus web site and archived copies from the previous.
Whereas the location’s dwelling web page does comprise an space on the prime that seems to be purposed for internet hosting advert banners, we didn’t discover an energetic advert operating in that area or another promotional hyperlinks on the web site. We did discover a number of instructional and how-to weblog posts on utilizing Notepad++.
The developer urges everybody to report the web site through Google Safebrowsing’s “report malicious software” net type.
Such an strategy, nonetheless, will not be fruitful provided that presently no malicious software program releases are being pushed by the unofficial web site, or something that warrants it to be categorized as blatantly unsafe. Furthermore, the aforementioned disclaimer put in place by the web site could safeguard it towards such accusations.
The Notepad++ brand and branding used by the web site, alternatively, may nonetheless fall afoul of trademark guidelines.
Technology reporter Catalin Cimpanu shared Notepad++’s weblog publish in a Mastodon thread.
Many neighborhood members started reporting the unofficial web site, though, one developer echoed that reporting the location for transport malicious software program could also be “faulty.”
“I genuinely do not perceive this. This publish is filled with very charged language… However I went to the location and I actually don’t see something mistaken with it,” writes Robby Zambito.
“The obtain buttons even redirect to this Notepad++ web site; they don’t seem to be distributing any software program themselves. They are saying this web site is “a menace to the neighborhood”… but it surely is the neighborhood. It sounds extra like a menace to their management over upkeep of the software program which simply would not look like a giant deal to me.”
“Positive, they could acquire belief after which ultimately begin transport malware as an alternative. However so may the individuals who run the notepad-plus-plus web site,” states Zambito.
The statement is very related at a time when large-scale open-source tasks, such because the XZ utility, had a backdoor injected in it by a developer who gained the belief of official mission maintainers however went rogue. Comparable tales of “vetted” researchers contributing malicious code to official tasks aren’t extraordinary.
Such instances of wrongdoing are ultimately caught, because of the quite a few sharp-eyed neighborhood members who continually scrutinize the open supply ecosystem.
Given the recognition of Notepad++, its customers are additionally often focused with counterfeit trojanized versions by menace actors. As such, consuming open supply tasks like Notepad++ from their official web sites and repositories stays a a lot safer strategy than in any other case.
