The Notepad++ mission is looking for the general public’s assist in taking down a copycat web site that carefully impersonates Notepad++ however is just not affiliated with the mission.
Though, on the time of writing, the lookalike web site takes guests to the official Notepad++ downloads web page, there’s some concern that it might pose safety threats—for instance, if it begins pushing malicious releases or spam sometime both intentionally or because of a hijack.
“Assist us to take down the parasite web site”
Notepad++, the free and open-source textual content and supply code editor mission has appealed to everybody to assist shut down a lookalike web site, notepad[.]plus that makes use of the mission’s branding, and even manages to rank excessive in search engine outcomes alongside the official web site, notepad-plus-plus.org.
“I’ve obtained quite a few complaints through electronic mail, social media, and boards concerning an internet site that poses a big risk to our group,” writes Don Ho, the unique developer of Notepad++.
The positioning in query notepad[.]plus, based on Ho, comes up prominently in search outcomes when customers search for “obtain Notepad++”, as confirmed by BleepingComputer:
(BleepingComputer)
“Some customers have mistakenly believed that [it] is the official Notepad++ web site. This confusion has led to frustration and potential safety dangers,” states the dev.
The web site in query does comprise a transparent disclaimer on the backside spelling out that it is “an unofficial fan web site” and “not affiliated” with the mission.
Notepad++ is a trademark of Don HO. Notepad[.]plus is just not affiliated, sponsored or endorsed by Don HO in any methods. That is an unofficial fan web site created for common info/academic function solely. Any context discovered on this web site is our private opinions and don’t purport to replicate the opinions or views of Don HO or its representatives. All different logos are the property of their respective house owners.
Fan web site presently redirects to official releases
It’s value noting the fan web site directs guests to the official Notepad++ releases downloads web page hosted on notepad-plus-plus.org.
Regardless of this, Ho alleges that “this web site harbors a hidden agenda” and is “is riddled with malicious commercials on each web page.”
Such adverts, based on Ho, might deceive unsuspecting Notepad++ customers into clicking on hyperlinks that generate income for admins of the unofficial web site.
“The true function” of, what Ho has referred to as a “parasite web site” is, based on him, “to divert visitors away from the official Notepad++ web site, notepad-plus-plus.org” which doubtlessly “compromises consumer security and undermines the integrity of our group.”
BleepingComputer checked each the most recent model of the notepad[.]plus web site and archived copies from the previous.
Whereas the positioning’s dwelling web page does comprise an space on the prime that seems to be purposed for internet hosting advert banners, we didn’t discover an energetic advert working in that house or every other promotional hyperlinks on the web site. We did discover a number of academic and how-to weblog posts on utilizing Notepad++.
The developer urges everybody to report the web site through Google Safebrowsing’s “report malicious software program” internet kind.
Such an method, nonetheless, might not be fruitful provided that presently no malicious software program releases are being pushed by the unofficial web site, or something that warrants it to be categorized as blatantly unsafe. Furthermore, the aforementioned disclaimer put in place by the web site could safeguard it towards such accusations.
The Notepad++ emblem and branding used by the web site, however, might nonetheless fall afoul of trademark guidelines.
Know-how reporter Catalin Cimpanu shared Notepad++’s weblog submit in a Mastodon thread.
Many group members started reporting the unofficial web site, though, one developer echoed that reporting the positioning for transport malicious software program could also be “faulty.”
“I genuinely do not perceive this. This submit is filled with very charged language… However I went to the positioning and I actually don’t see something improper with it,” writes Robby Zambito.
“The obtain buttons even redirect to this Notepad++ web site; they don’t seem to be distributing any software program themselves. They are saying this web site is “a risk to the group”… however it is the group. It sounds extra like a risk to their management over upkeep of the software program which simply would not look like an enormous deal to me.”
“Certain, they may achieve belief after which finally begin transport malware as an alternative. However so might the individuals who run the notepad-plus-plus web site,” states Zambito.
The commentary is particularly related at a time when large-scale open-source initiatives, such because the XZ utility, had a backdoor injected in it by a developer who gained the belief of official mission maintainers however went rogue. Related tales of “vetted” researchers contributing malicious code to official initiatives aren’t unprecedented.
Such circumstances of wrongdoing are finally caught, due to the quite a few sharp-eyed group members who consistently scrutinize the open supply ecosystem.
Given the recognition of Notepad++, its customers are additionally steadily focused with counterfeit trojanized variations by risk actors. As such, consuming open supply initiatives like Notepad++ from their official web sites and repositories stays a a lot safer method than in any other case.