The hackers use fake CAPTCHA pages—which are designed to mimic standard security checks—to trick users into installing malicious software (“Stealthy StealC Information Stealer”) via keyboard commands.
Users could be tricked into running arbitrary code, but the issue was patched last week.
The Register on MSN
Notepad++ declares hardened update process 'effectively unexploitable'
Miscreants will need to find another avenue for malware shenanigans Notepad++ has continued beefing up security with a ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results