Notepad++ Plugin Compromised to Inject Malicious Code

Summary:

By tampering with a widely used Notepad++ plugin, hackers have injected malicious code that compromises users’ systems. This attack targeted the “MIME Tools” plugin, a commonly utilized component within Notepad++. The attackers included the malicious MIMETools.dll file in the installation package of a particular version of Notepad++, disguising it as a legitimate package file to deceive users.

Threat Level – Amber | Attack Report

To receive real-time threat advisories, please follow HiveForce Labs on LinkedIn.