**⇄ Σ = Mᄃ² ⇆** @[email protected] · Apr 04, 2024, 21:54

**⇄ Σ = Mᄃ² ⇆** @[email protected] · Apr 04, 2024, 21:54

⇄ Σ = Mᄃ² ⇆ @[email protected]

Apr 04, 2024, 21:54

Hackers have successfully manipulated a default plugin within the Notepad++ package, potentially compromising the security of countless systems.

#CoSoSec

The plugin in question, “mimeTools.dll,” is a standard component of Notepad++ that provides encoding functionalities

https://asec.ahnlab.com/ko/63738/

ASEC has provided the following indicators of compromise (IoCs) for users to check their systems:

**⇄ Σ = Mᄃ² ⇆** @[email protected] · 2024-04-04T21:54:44Z

⇄ Σ = Mᄃ² ⇆ @[email protected]

MD5 hashes of the compromised package files and individual components.
The URLs of the C2 server involved in the attack.

The security community is actively working to address this threat, and users of Notepad++ are strongly advised to verify their installations’ integrity and update their software from the official Notepad++ website.

Apr 04, 2024, 21:54 · 1· 0· 0

**⇄ Σ = Mᄃ² ⇆** @[email protected] · Apr 04, 2024, 22:01

**⇄ Σ = Mᄃ² ⇆** @[email protected] · Apr 04, 2024, 22:01

Apr 04, 2024, 22:01

⇄ Σ = Mᄃ² ⇆ @[email protected]

Notepad++ users are strongly advised to verify their installations’ integrity and update their software from the official Notepad++ website.

Resources

Developers

What is CounterSocial?

counter.social

More…