Breach lingered for months before stronger signature checks shut the door A state-sponsored cyber criminal compromised Notepad++'s update service in 2025, according to the project's author.… The ...

State-sponsored threat actors compromised the popular code editor's hosting provider to redirect targeted users to malicious ...

The hosting provider's compromise allowed attackers to deliver malware through tainted software updates for six months.

Notepad++ targeted and used to deliver poisoned updates to a select group of victims.

A software update mechanism for the popular text editor Notepad++ was hijacked by suspected Chinese state-sponsored hackers, allowing them to silently redirect some users to malicious update servers, ...

I went off the official path and still landed on a Windows install I’d recommend.

Notepad++ update servers were compromised for 6 months in 2025. Learn how the Chrysalis backdoor targeted users and why you must manually update to version 8.9.1 now.

The group targets telecoms, critical infrastructure - all the usual high-value orgs Security researchers have attributed the ...

A months-long supply chain attack that affected the Notepad++ update process has been linked to a compromise of shared hosting infrastructure rather than a flaw in the software's code. This according ...

A secondary taskbar called the Command Palette Dock would provide quick access to PowerToys features and tools.

Notepad++ says its update system was reportedly hijacked for months in a targeted cyber campaign linked to suspected Chinese ...