惯性聚合 高效追踪和阅读你感兴趣的博客、新闻、科技资讯
阅读原文 在惯性聚合中打开

推荐订阅源

F
Fortinet All Blogs
让小产品的独立变现更简单 - ezindie.com
让小产品的独立变现更简单 - ezindie.com
有赞技术团队
有赞技术团队
www.infosecurity-magazine.com
www.infosecurity-magazine.com
大猫的无限游戏
大猫的无限游戏
爱范儿
爱范儿
Threat Intelligence Blog | Flashpoint
Threat Intelligence Blog | Flashpoint
T
Threatpost
V
Visual Studio Blog
Apple Machine Learning Research
Apple Machine Learning Research
博客园 - Franky
人人都是产品经理
人人都是产品经理
cs.AI updates on arXiv.org
cs.AI updates on arXiv.org
The Cloudflare Blog
N
News and Events Feed by Topic
L
Lohrmann on Cybersecurity
cs.CL updates on arXiv.org
cs.CL updates on arXiv.org
酷 壳 – CoolShell
酷 壳 – CoolShell
V
V2EX
AWS News Blog
AWS News Blog
S
SegmentFault 最新的问题
T
Tailwind CSS Blog
Hugging Face - Blog
Hugging Face - Blog
钛媒体:引领未来商业与生活新知
钛媒体:引领未来商业与生活新知
Spread Privacy
Spread Privacy
J
Java Code Geeks
博客园 - 聂微东
T
Tor Project blog
宝玉的分享
宝玉的分享
博客园 - 叶小钗
Webroot Blog
Webroot Blog
博客园 - 【当耐特】
freeCodeCamp Programming Tutorials: Python, JavaScript, Git & More
H
Heimdal Security Blog
Y
Y Combinator Blog
T
The Blog of Author Tim Ferriss
MongoDB | Blog
MongoDB | Blog
I
InfoQ
Security Latest
Security Latest
Martin Fowler
Martin Fowler
Hacker News: Ask HN
Hacker News: Ask HN
P
Privacy International News Feed
C
CERT Recently Published Vulnerability Notes
Latest news
Latest news
雷峰网
雷峰网
D
Darknet – Hacking Tools, Hacker News & Cyber Security
C
Cisco Blogs
H
Help Net Security
L
LINUX DO - 最新话题
L
LINUX DO - 热门话题

Omnissa

Discover which solution is best for you: VDI, DaaS, or RDSH From on-prem to cloud: how Horizon licensing adapts to you Inside the Forrester TEI findings: Workspace ONE UEM delivered 170% ROI As security continues to evolve, has your mobile strategy? Introducing automated enrollment for Horizon Cloud desktops with Workspace ONE UEM Omnissa and GEMA partner to empower organizations with a modern digital sovereignty solution Attention Omnissa Intelligence users: Show off your dashboard! How P&O Cruises and Cunard manage devices & IT support at sea Omnissa Solution Exchange: Discover additional ways to maximize your Omnissa investments Horizon Cloud on vSphere: Hybrid DaaS made easy 10 challenges that hold back Horizon success Omnissa named a Leader in the 2025 Gartner® Magic Quadrant™ for Desktop as a Service Omnissa scores highest in 4 out of 4 Use Cases in 2026 Gartner® Critical Capabilities for Endpoint Management Tools Enabling the Modern Workforce with Omnissa Workspace ONE and Samsung Knox Suite Point of view: The autonomous workspace will reshape the role of enterprise IT Introducing Workspace ONE UEM 2602: A feature packed release with updates across the board Why security fundamentals matter more than ever Android XR Management with Workspace ONE What's new with DEX for Horizon: expanding partner ecosystems and integrations Customer adoption grows for Omnissa Horizon deployments on Nutanix AHV Optimize secure, seamless workspaces with IGEL and Omnissa Omnissa Secure Access Suite delivers secure browser functionality with the Omnissa platform ICYMI: Highlights from our “App Management Reimagined” event Omnissa Pass: Native MFA for stronger, simpler security Modern education—any device, everywhere learning with smarter IT DEX is a value strategy: How Omnissa helps turn IT from cost center to value engine From fragmentation to fruition: Why a platform approach wins Mod Stack architecture: Rebuilding for flexibility, scalability, and resilience New Omnissa 2026 study finds shadow AI, security gaps, and device instability expose need for end-to-end IT observability Omnissa accelerates global market momentum with strategic board expansion and executive leadership appointment Enhanced VDI can help maximize productivity without breaking the bank Device Timeline: Precision troubleshooting for the modern IT team Omnissa Horizon on Nutanix AHV: One year of momentum Omnissa is named a Leader for the third consecutive year in the 2025 Gartner Magic Quadrant for Desktop as a Service Lessons from the Stryker incident: From access to impact Celebrating innovation in digital work: Announcing the 2026 Omnissa Customer Achievement Awards All About Mobile in 2: Mobile risk explained Three IT challenges that Omnissa Secure Access Suite aims to address Omnissa Sovereign Solution: The modern path to sovereign digital workspaces An Expectation—Secure by Design and Omnissa All about mobile in 2: Four million+ social engineering attacks Flying blind in the AI era: Why observability is key to scaling digital work Omnissa partners with Red Hat to offer more flexibility to Horizon 8 customers Omnissa App Volumes delivers industry-first on-demand Windows app delivery, drastically reducing costs of traditional app management Omnissa collaborates with Google Workspace Omnissa delivers secure, browser-based access to enterprise applications with Google Chrome Enterprise Premium Omnissa Workspace ONE brings centralized eSIM management to the enterprise Omnissa strengthens its digital work platform with new AI capabilities designed with trust and transparency at the core Omnissa unveils Workspace ONE Vulnerability Defense to transform security management across all endpoints and applications Omnissa strengthens its platform with IT consolidation and open ecosystem flexibility to give customers more choice and a better experience Horizon 2512 arrives with new capabilities for Amazon WorkSpaces Core Extending Horizon Cloud flexibility to OpenStack-based private clouds Omnissa leads the future of digital employee experience Deliver secure, simple modern digital workspaces with Horizon and IGEL Compress complexity and simplify healthcare IT for better care Introducing the next generation of Windows management with Workspace ONE UEM App lifecycle management with App Volumes: Now available for traditional PCs Optimize your retail operations at every touchpoint The next wave of the autonomous workspace is here: Omni now GA Announcing Self-Managed Pools on Horizon Cloud: More flexibility, broader use cases Unlock Horizon management savings with a special UEM and DEX offer Explore what's new in App Volumes 2506 and Dynamic Environment Manager 2506 Meet our AI-powered Data Explorer in Omnissa Intelligence Bridging the app gap and supporting Apple adoption with Horizon Omnissa announces Day 0 support for version 26 of Apple OS Horizon 8 2512: Delivering a more intuitive experience, broader platform support, and deeper hybrid cloud integration It's mission-critical that federal IT shift from reaction to readiness 4 trends that will reshape the autonomous workspace in 2026 Omnissa ranks highest across all four Use Cases in the Gartner® Critical Capabilities for Endpoint Management Tools report Omnissa announces winners of its inaugural Customer Achievement Awards Driving the future of endpoint management: Omnissa named a Leader in four 2025-2026 IDC MarketScape assessments for UEM Omnissa Value Center: Maximize your tech investment ROI From panic to presents: Holiday retail enablement made smooth by Omnissa Introducing the new Horizon Client for a consistent employee experience across platforms Omnissa recognized as a Leader across four IDC MarketScapes for Unified Endpoint Management Choice and simplicity delivered: Horizon 8 support for Nutanix AHV reaches general availability Workspace ONE supports Platform SSO with Entra ID via Secure Enclave Why IT teams resist change—and how to overcome it The top 5 takeaways from Omnissa ONE 2025 Las Vegas Greater deployment flexibility with Horizon Cloud and Platform9 5 things you didn’t know you could do in Omnissa Connect The platform imperative: From chaos to consolidation Close the endpoint vulnerability gap to reduce risk and improve compliance Workspace ONE Access supports Platform SSO for Apple macOS Simplify IT ops with Quickflows in Freestyle Orchestrator The modern enterprise thrives with Omnissa, Okta, and Google Omnissa and WWT launch new webinar series “Walk This Way” Horizon 8 on Nutanix AHV: A powerful new frontier in VDI Follow-up: Horizon 8 Term licenses now deployable in the public cloud Omnissa Listed in 2025 Gartner® Critical Capabilities for DEX Management Tools Workspace ONE includes new Apple features in latest release Security and management innovations Omnissa launches DEX Playbooks to boost help desk efficiency Workspace ONE integrates with Apple GitHub to automate DDM Celebrating excellence: Announcing the 2025 Omnissa Customer Achievement Award program Omnissa accelerates go-to-market momentum with key leadership appointments Horizon 8 2506: Featuring improved control and productivity Omnissa celebrates first year of independence highlighting growth, innovation and industry recognition Charting our own path: Reflections on our first year of independence Trust is priority one for Omnissa cloud services
When “update” becomes the attack: what the Notepad++ incident teaches IT
Jeff Ulatoski · 2026-03-20 · via Omnissa

March 5, 2026

  • Jeff Ulatoski

    Director of Product Management, Omnissa

    Jeff Ulatoski leads the product team at Omnissa driving the Apps Everywhere vision and strategy. He directs the development of the App Volumes, Dynamic Environment Manager, and ThinApp products, with a focus on delivering Apps on Demand to meet the evolving needs of modern enterprises. With over 25 years of experience in IT and software development, Jeff has extensive expertise in large-scale enterprise software deployments, business process analysis, and end-user computing systems. His leadership ensures that Omnissa’s solutions are innovative, scalable, and aligned with the future of app virtualization and management.

    Read More From the Author

Most IT teams treat “keep apps up to date” as basic hygiene. The Notepad++ updater incident is a reminder that the updater itself can become the delivery vehicle for vulnerabilities—especially when endpoints pull updates directly from the internet outside your control plane. 

This isn’t just about one tool. It’s about Windows—and the machinery we’ve built around it over the years: packaging, testing, approvals, change windows, help desks, and incident response. When that machinery is slow, “control” turns into “damage control.” 

The takeaway isn’t, “patch faster.” It’s, own the distribution path—and make rollback easy. 

What happened (in plain terms)

Public reporting and vendor research describe a targeted campaign where some victims were selectively redirected from legitimate Notepad++ update traffic to attacker-controlled infrastructure and served tampered update content. 

National Institute of Standards and Technology (NIST) tracks the core issue as CVE-2025-15556: Notepad++ versions prior to 8.8.9, when using the WinGUp updater, did not adequately validate signatures in a way that could allow an attacker who can intercept/redirect update traffic to deliver an attacker-controlled installer. 

Why you should care (even if you don’t run Notepad++)

This pattern shows up everywhere: 

  • In-app updaters bypass governance: they skip your packaging standards, rings, change windows, and approvals.
  • “Version compliant” ≠ “delivered through a trusted path.”
  • Blast radius is shaped by how easily an app can update itself across your estate. 

Do we allow apps to self-update from the internet, or do we treat apps like governed enterprise artifacts? 

A safer model: Governed distribution + reversible change

If you want fewer “surprise updates,” you need two properties: 

  1. Governed distribution: updates come from your pipeline (not the app’s updater at runtime).
  2. Reversible change: you can revert quickly to a known-good version without uninstall/reinstall gymnastics. 

That’s the model modern IT wants—but many Windows estates struggle to achieve it because the surrounding process is slow: testing cycles, approvals, and the sheer number of hands in the chain. 

How this looks with App Volumes

Here’s a practical way to think about governed rollout with App Volumes. 

1) Updates don’t come from the app’s updater 

Apps are delivered as managed packages. Updates happen when IT publishes a new package—not when an endpoint reaches out to the internet at runtime. 

Two implications: 

  • You cut off a major class of risk: endpoints aren’t trusting upstream update paths on-demand.
  • If apps are delivered on demand (instead of being permanently present everywhere), your blast radius naturally shrinks to where apps are actually used—not where they happen to be installed. 

2) Package stages make lifecycle intent explicit 

Instead of treating releases as one big event, stages represent intent and state: 

  • New: captured, not yet validated
  • Tested: validated in a controlled environment
  • Published: approved for production use
  • Retired: kept for rollback/history, not active 

3) A “Current” marker communicates what’s live 

Stages tell you where a package is in its lifecycle. A marker tells you what users should get. 

A “Current” marker becomes a simple abstraction: 

  • Current = the version users should get by default
  • Roll forward = move Current to the newer Published package
  • Roll back = move Current back to the prior known-good package 

This matters in incidents because the fastest safe response is rarely “repackage everything.” It’s flip the estate back to known-good for a specific app while you investigate. 

DEM last-mile guardrails: Block risky execution paths

Even with governed packaging, you still want a safety net at execution time—especially for higher-risk populations (admins, privileged workstations, dev desktops). 

Dynamic Environment Manager (DEM) can add practical guardrails, for example: 

  • Block execution from temp-like locations where updater droppers often land
  • Allow by publisher / allow by hash for critical apps so only known-good binaries can run
  • Apply conditionally to reduce disruption 

Guardrails won’t fix a bad update by themselves—but they can reduce the success rate of update-path abuse. For higher assurance, you’d pair this with OS-level application control like WDAC or AppLocker. 

What I’d tell IT teams to do this week

  1. Inventory: where is the app used, who can install/update it, and is auto-update enabled?
  2. Block in-app updaters where feasible: standardize on managed delivery.
  3. Prove rollback: demonstrate you can revert an app version quickly across a pilot group.
  4. Add execution guardrails: focus on updater-like behaviors and risky paths.
  5. Institutionalize the model: apps are governed artifacts with a reversible change path—not ad-hoc internet downloads. 

One takeaway: Your real control isn’t “patch faster.” It’s own the distribution path—and have rollback. 

Where Apps Essentials fits

This is the scenario for Apps Essentials (App Volumes + DEM + ThinApp): apps as governed artifacts (not internet updaters), stage changes safely, and keep rollback fast—especially across Windows estates with a lot of legacy process around updates. 

Learn more:

Back to insights