If you are using Notepad++ Text Editor, you MUST read this.

crazed 9.6

Transparent Wall Technician
Oct 31, 2014
14,069
108
63
A secure version of Notepad++ for downloading, can be found at the bottom of this article.


Not just the notepad editor but many programs and devices are on the list of things to hack for CIA special 'hacking' division.

Vault 7: CIA Hacking Tools Revealed

Code:
https://wikileaks.org/ciav7p1/

Tuesday 7 March 2017, WikiLeaks begins its new series of leaks. Code-named "Vault 7" by WikiLeaks, it is the largest ever publication of confidential documents on the agency.
Code:
 U.S. Central Intelligence Agency

The first full part of the series, "Year Zero", comprises 8,761 documents and files from an isolated, high-security network situated inside the CIA's Center for Cyber Intelligence in Langley, Virgina. It follows an introductory disclosure last month of CIA targeting French political parties and candidates in the lead up to the 2012 presidential election.

Recently, the CIA lost control of the majority of its hacking arsenal including malware, viruses, trojans, weaponized "zero day" exploits, malware remote control systems and associated documentation. This extraordinary collection, which amounts to more than several hundred million lines of code, gives its possessor the entire hacking capacity of the CIA. The archive appears to have been circulated among former U.S. government hackers and contractors in an unauthorized manner, one of whom has provided WikiLeaks with portions of the archive.

"Year Zero" introduces the scope and direction of the CIA's global covert hacking program, its malware arsenal and dozens of "zero day" weaponized exploits against a wide range of U.S. and European company products, include Apple's iPhone, Google's Android and Microsoft's Windows and even Samsung TVs, which are turned into covert microphones.


Notepad++ is on the list.
Code:
https://wikileaks.org/ciav7p1/cms/page_26968090.html
Code:
https://notepad-plus-plus.org/news/notepad-7.3.3-fix-cia-hacking-issue.html

The issue of a hijacked DLL concerns scilexer.dll (needed by Notepad++) on a compromised PC, which is replaced by a modified scilexer.dll built by the CIA. When Notepad++ is launched, the modified scilexer.dll is loaded instead of the original one.

It doesn't mean that CIA is interested in your coding skill or in your sex message content typed in Notepad++, but rather it prevents raising any red flags while the DLL does data collection in the background.

It's not a vulnerability/security issue in Notepad++, but for remedying this issue, from this release (v7.3.3) forward, notepad++.exe checks the certificate validation in scilexer.dll before loading it. If the certificate is missing or invalid, then it just won't be loaded, and Notepad++ will fail to launch.
Checking the certificate of DLL makes it harder to hack.
Note that once users’ PCs are compromised, the hackers can do anything on the PCs.
This solution only prevents from Notepad++ loading a CIA homemade DLL. It doesn't prevent your original notepad++.exe from being replaced by modified notepad++.exe while the CIA is controlling your PC.

Just like knowing the lock is useless for people who are willing to go into my house, I still shut the door and lock it every morning when I leave home. We are in a f**king corrupted world, unfortunately.
Otherwise, included in this Notepad++ download there are a lot of enhancements and bug-fixes which improve your Notepad++ experience.

Code:
https://notepad-plus-plus.org/download/v7.3.3.html
 
Last edited: