State-sponsored threat actors compromised the popular code editor's hosting provider to redirect targeted users to malicious ...

Microsoft first started adopting Anthropic’s Claude Sonnet 4 model inside its developer division in June last year, before ...

Rapid7 links China-linked Lotus Blossom to a 2025 Notepad++ hosting breach that delivered the Chrysalis backdoor via hijacked ...

Don Ho, the developer of Notepad++, says 'malicious actors' had targeted the update process for 'certain targeted users' beginning in June 2025 ...

The program is a free text and code editor that's been downloaded millions of times. The compromise began in June and is ...

State-backed attackers hijacked Notepad++ update traffic via a hosting provider breach, redirecting users to malicious ...

The developer did not specify when they became aware of the attack, but said that “all attacker access was definitively ...

Rapid7 dropped a write-up on the Notepad++ update-chain abuse and - finally - it comes with real IOCs - update.exe downloaded ...

Anyone can do it!

Notepad++ has shared additional details on the supply chain attack carried out by Chinese state-sponsored hackers via a ...

A months-long supply chain attack that affected the Notepad++ update process has been linked to a compromise of shared hosting infrastructure rather than a flaw in the software's code. This according ...

Notepad++'s updater usually pops up, but users can also prompt it by selecting the "?" dropdown in the taskbar. Christopher ...