Infrastructure delivering updates for Notepad++—a widely used text editor for Windows—was compromised for six months by ...

State-sponsored threat actors compromised the popular code editor's hosting provider to redirect targeted users to malicious ...

State-sponsored hackers' are being blamed for compromising the popular alternative to Windows Notepad over a period of six months last year.

Notepad++ has been compromised in a sophisticated nation-state cyberattack. Learn about the security breach, the ...

The program is a free text and code editor that's been downloaded millions of times. The compromise began in June and is ...

State-backed attackers hijacked Notepad++ update traffic via a hosting provider breach, redirecting users to malicious downloads since June 2025.

The developer did not specify when they became aware of the attack, but said that “all attacker access was definitively terminated” by December 2nd. The Notepad++ updater has been updated itself with ...

Notepad++ released version 8.8.9 in December, which checks digital signatures and certificates before installing any updates.

Notepad++ updates were hijacked in a state-sponsored attack, with China-linked hackers redirecting downloads to malicious servers.

Attackers had specifically delivered malware to systems using the Notepad++ updater. Investigations point to state actors.

The popular Notepad alternative was hijacked by bad actors for several months in 2025, but the latest update appears to solve ...

Notepad++ update servers were compromised for 6 months in 2025. Learn how the Chrysalis backdoor targeted users and why you must manually update to version 8.9.1 now.