The Notepad++ venture is searching for the general public’s assist in taking down a copycat web site that carefully impersonates Notepad++ however is just not affiliated with the venture.
Though, on the time of writing, the lookalike web site takes guests to the official Notepad++ downloads web page, there’s some concern that it may pose safety threats—for instance, if it begins pushing malicious releases or spam sometime both intentionally or because of a hijack.
“Help us to take down the parasite website”
Notepad++, the free and open-source textual content and supply code editor venture has appealed to everybody to assist shut down a lookalike web site, notepad[.]plus that makes use of the venture’s branding, and even manages to rank excessive in search engine outcomes alongside the official web site, notepad-plus-plus.org.
“I’ve received numerous complaints via email, social media, and forums regarding a website that poses a significant threat to our community,” writes Don Ho, the unique developer of Notepad++.
The positioning in query notepad[.]plus, in response to Ho, comes up prominently in search outcomes when customers search for “download Notepad++”, as confirmed by BleepingComputer:
(BleepingComputer)
“Some users have mistakenly believed that [it] is the official Notepad++ website. This confusion has led to frustration and potential security risks,” states the dev.
The web site in query does comprise a transparent disclaimer on the backside spelling out that it is “an unofficial fan website” and “not affiliated” with the venture.
Notepad++ is a trademark of Don HO. Notepad[.]plus is just not affiliated, sponsored or endorsed by Don HO in any methods. That is an unofficial fan web site created for basic info/academic objective solely. Any context discovered on this web site is our private opinions and don’t purport to mirror the opinions or views of Don HO or its representatives. All different logos are the property of their respective homeowners.
Fan website presently redirects to official releases
It’s price noting the fan website directs guests to the official Notepad++ releases downloads web page hosted on notepad-plus-plus.org.
Regardless of this, Ho alleges that “this site harbors a hidden agenda” and is “is riddled with malicious advertisements on every page.”
Such adverts, in response to Ho, may deceive unsuspecting Notepad++ customers into clicking on hyperlinks that generate income for admins of the unofficial web site.
“The true purpose” of, what Ho has referred to as a “parasite website” is, in response to him, “to divert traffic away from the legitimate Notepad++ website, notepad-plus-plus.org” which doubtlessly “compromises user safety and undermines the integrity of our community.”
BleepingComputer checked each the most recent model of the notepad[.]plus web site and archived copies from the previous.
Whereas the location’s dwelling web page does comprise an space on the high that seems to be purposed for internet hosting advert banners, we didn’t discover an energetic advert working in that house or every other promotional hyperlinks on the web site. We did discover a number of academic and how-to weblog posts on utilizing Notepad++.
The developer urges everybody to report the web site through Google Safebrowsing’s “report malicious software program” net kind.
Such an method, nevertheless, is probably not fruitful on condition that presently no malicious software program releases are being pushed by the unofficial website, or something that warrants it to be labeled as blatantly unsafe. Furthermore, the aforementioned disclaimer put in place by the web site could safeguard it towards such accusations.
The Notepad++ brand and branding used by the web site, then again, may nonetheless fall afoul of trademark guidelines.
Expertise reporter Catalin Cimpanu shared Notepad++’s weblog put up in a Mastodon thread.
Many neighborhood members started reporting the unofficial web site, though, one developer echoed that reporting the location for transport malicious software program could also be “erroneous.”
“I genuinely don’t understand this. This post is full of very charged language… But I went to the site and I really don’t see anything wrong with it,” writes Robby Zambito.
“The download buttons even redirect to this Notepad++ site; they’re not distributing any software themselves. They say this site is “a risk to the neighborhood”… but it is the community. It sounds more like a threat to their control over maintenance of the software which just doesn’t seem like a big deal to me.”
“Sure, they might gain trust and then eventually start shipping malware instead. But so could the people who run the notepad-plus-plus site,” states Zambito.
The statement is particularly related at a time when large-scale open-source initiatives, such because the XZ utility, had a backdoor injected in it by a developer who gained the belief of official venture maintainers however went rogue. Comparable tales of “vetted” researchers contributing malicious code to official initiatives aren’t remarkable.
Such circumstances of wrongdoing are ultimately caught, due to the quite a few sharp-eyed neighborhood members who continually scrutinize the open supply ecosystem.
Given the recognition of Notepad++, its customers are additionally often focused with counterfeit trojanized variations by risk actors. As such, consuming open supply initiatives like Notepad++ from their official web sites and repositories stays a a lot safer method than in any other case.
