alt Hacker NewsI'm out of the loop: How did they bypass Notepad++'s digital signatures? I just downloaded it to double-check, and the installer is signed with a valid code-signing certificate.
Replies
gruez • yesterday at 11:53 PM
The updater doesn't check the certificate of the updated installer, it just executes whatever.
https://notepad-plus-plus.org/news/8.8.2-available-in-1-week...