GovInfoSecurity

Compromise of Notepad++ Equals Software Supply Chain Fallout

The widely used, open source text-editing software Notepad++ for Windows said attackers exploited a vulnerability to redirect ...

The Notepad++ website was hijacked by 'malicious actors' last year and security researchers ...

It's believed that, between June and November 10/December 2, 2025 (independent security experts and its hosting provider disagree on the exact timings), a shared hosting server was compromised, ...

How Chinese hackers used Notepad++ to spy on companies doing business in East Asia

Notepad++ users may have downloaded malware instead of a software update for half of 2025. Developer Don Ho confirmed on Monday that Chinese state-spo.
CSO Online

Notepad++ infrastructure hijacked by Chinese APT in sophisticated supply chain attack

The hosting provider's compromise allowed attackers to deliver malware through tainted software updates for six months.
The Hacker News

Notepad++ Hosting Breach Attributed to China-Linked Lotus Blossom Hacking Group

Rapid7 links China-linked Lotus Blossom to a 2025 Notepad++ hosting breach that delivered the Chrysalis backdoor via hijacked ...