Notepad++ targeted and used to deliver poisoned updates to a select group of victims.

The cybersecurity community is still grappling with a sobering realization: one of the most ubiquitous tools in the developer’s toolkit, Notepad++, was hiding a critical vulnerability for over six ...

Security researchers believe that Chinese hackers are to blame for the attack in part because of the "selective" nature of ...

Notepad++ improves security mechanisms and closes a new vulnerability that allows attackers to execute malicious code.

CISA has expanded its KEV catalog with new SolarWinds, Notepad++, and Apple flaws, including two exploited as zero-days.

Notepad++ 8.9.2 fixes update hijack exploited to deliver malware, patches RCE flaw, and hardens WinGUp security.

Worried about the Notepad++ supply chain attack? Notepad++ 8.9.2 adds "Double-Lock" security to stop malware hijacking.

Notepad++ released a security patch to reinforce its update process with a “double-lock” design after a sophisticated ...

By AJ Vicens Feb 2 (Reuters) - A Chinese-linked cyberespionage group with a long history hijacked the update process for the popular code editing platform Notepad++ to deliver a custom backdoor and ...

Notepad++ reported that its built-in auto-update feature had been hijacked by Chinese state-sponsored hackers from June to September of 2025, and the credentials gathered by the bas actors enabled ...

The popular Notepad++ code editing software was compromised by a Chinese-linked cyberespionage group, which hijacked its software update system to deliver malware to select users, the program's ...