Comment on Notepad++ Hijacked by State-Sponsored Hackers
purplemonkeymad@programming.dev 3 days agoWell those would have included the update checker. So if you installed from a package manager, then let it update when prompted for the new version, you could still have been at risk.
cley_faye@lemmy.world 2 days ago
I don’t know how most package managers on windows work, but usually, auto updates are disabled by default for software that comes from one. For example, Firefox installed using APT on various linux distro will not auto-update out of it.
I vaguely remember chocolatey packages not really doing that, causing mismatch between installed versions and its internal database, though, so maybe it wasn’t that good of a solution.