Notepad++ needs your assist in “parasite website” shutdown

The Notepad++ challenge is searching for the general public’s assist in taking down a copycat web site that intently impersonates Notepad++ however shouldn’t be affiliated with the challenge.

Though, on the time of writing, the lookalike web site takes guests to the official Notepad++ downloads web page, there may be some concern that it might pose safety threats—for instance, if it begins pushing malicious releases or spam sometime both intentionally or on account of a hijack.

“Help us to take down the parasite website”

Notepad++, the free and open-source textual content and supply code editor challenge has appealed to everybody to assist shut down a lookalike web site, notepad[.]plus that makes use of the challenge’s branding, and even manages to rank excessive in search engine outcomes alongside the official web site, notepad-plus-plus.org.

“I’ve received numerous complaints via email, social media, and forums regarding a website that poses a significant threat to our community,” writes Don Ho, the unique developer of Notepad++.

The positioning in query notepad[.]plus, in accordance with Ho, comes up prominently in search outcomes when customers lookup “download Notepad++”, as confirmed by BleepingComputer:

Lookalike website appears prominently in search results
The lookalike web site seems prominently in search outcomes
(BleepingComputer)

“Some users have mistakenly believed that [it] is the official Notepad++ website. This confusion has led to frustration and potential security risks,” states the dev.

The web site in query does comprise a transparent disclaimer on the backside spelling out that it is “an unofficial fan website” and “not affiliated” with the challenge.

Notepad++ is a trademark of Don HO. Notepad[.]plus shouldn’t be affiliated, sponsored or endorsed by Don HO in any methods. That is an unofficial fan web site created for basic info/instructional goal solely. Any context discovered on this web site is our private opinions and don’t purport to replicate the opinions or views of Don HO or its representatives. All different logos are the property of their respective homeowners.

Fan website presently redirects to official releases

It’s value noting the fan website directs guests to the official Notepad++ releases downloads web page hosted on notepad-plus-plus.org.

Regardless of this, Ho alleges that “this site harbors a hidden agenda” and is “is riddled with malicious advertisements on every page.”

Such advertisements, in accordance with Ho, might deceive unsuspecting Notepad++ customers into clicking on hyperlinks that generate income for admins of the unofficial web site.

Notepad++ unoffiical fan site
Unofficial Notepad++ fan website (BleepingComputer)

“The true purpose” of, what Ho has referred to as a “parasite website” is, in accordance with him, “to divert traffic away from the legitimate Notepad++ website, notepad-plus-plus.org” which doubtlessly “compromises user safety and undermines the integrity of our community.”

BleepingComputer checked each the newest model of the notepad[.]plus web site and archived copies from the previous.

Whereas the positioning’s dwelling web page does comprise an space on the prime that seems to be purposed for internet hosting advert banners, we didn’t discover an lively advert working in that house or some other promotional hyperlinks on the web site. We did discover a number of instructional and how-to weblog posts on utilizing Notepad++.

The developer urges everybody to report the web site through Google Safebrowsing’s “report malicious software program” internet kind.

Such an method, nevertheless, might not be fruitful provided that presently no malicious software program releases are being pushed by the unofficial website, or something that warrants it to be categorised as blatantly unsafe. Furthermore, the aforementioned disclaimer put in place by the web site could safeguard it in opposition to such accusations.

The Notepad++ brand and branding used by the web site, however, might nonetheless fall afoul of trademark guidelines.

Expertise reporter Catalin Cimpanu shared Notepad++’s weblog submit in a Mastodon thread.

Many group members started reporting the unofficial web site, though, one developer echoed that reporting the positioning for transport malicious software program could also be “erroneous.”

Mastodon dev reply
A developer disagrees that lookalike website poses dangers (Mastodon)

“I genuinely don’t understand this. This post is full of very charged language… But I went to the site and I really don’t see anything wrong with it,” writes Robby Zambito.

“The download buttons even redirect to this  Notepad++ site; they’re not distributing any software themselves. They say this site is “a risk to the group”… but it is the community. It sounds more like a threat to their control over maintenance of the software which just doesn’t seem like a big deal to me.”

“Sure, they might gain trust and then eventually start shipping malware instead. But so could the people who run the notepad-plus-plus site,” states Zambito.

The statement is particularly related at a time when large-scale open-source initiatives, such because the XZ utility, had a backdoor injected in it by a developer who gained the belief of official challenge maintainers however went rogue. Comparable tales of “vetted” researchers contributing malicious code to official initiatives aren’t unprecedented.

Such circumstances of wrongdoing are finally caught, because of the quite a few sharp-eyed group members who always scrutinize the open supply ecosystem.

Given the recognition of Notepad++, its customers are additionally ceaselessly focused with counterfeit trojanized variations by risk actors. As such, consuming open supply initiatives like Notepad++ from their official web sites and repositories stays a a lot safer method than in any other case.

Recent articles

INTERPOL Pushes for

Dec 18, 2024Ravie LakshmananCyber Fraud / Social engineering INTERPOL is...

Patch Alert: Essential Apache Struts Flaw Discovered, Exploitation Makes an attempt Detected

Dec 18, 2024Ravie LakshmananCyber Assault / Vulnerability Risk actors are...

LEAVE A REPLY

Please enter your comment!
Please enter your name here