The popular Notepad alternative was hijacked by bad actors for several months in 2025, but the latest update appears to solve the issue.

Infrastructure delivering updates for Notepad++—a widely used text editor for Windows—was compromised for six months by ...

CISA has expanded its KEV catalog with new SolarWinds, Notepad++, and Apple flaws, including two exploited as zero-days.

Notepad++ has been compromised in a sophisticated nation-state cyberattack. Learn about the security breach, the ...

The attacks came from a third-party and not from the Notepad++ team.

Notepad++ targeted and used to deliver poisoned updates to a select group of victims.

Chinese state-sponsored threat actors were likely behind the hijacking of Notepad++ update traffic last year that lasted for almost half a year, the developer states in an official announcement today.

A likely China-sponsored threat actor hijacked Notepad++'s software update mechanism and quietly redirected targeted users of the popular source code editor to malicious downloads for nearly six ...

The developer of the popular text editor Notepad++ said hackers associated with the Chinese government hijacked its software update mechanism to deliver tainted software to users for months.

The developer did not specify when they became aware of the attack, but said that “all attacker access was definitively terminated” by December 2nd. The Notepad++ updater has been updated itself with ...

State-sponsored hackers' are being blamed for compromising the popular alternative to Windows Notepad over a period of six months last year.

The sophisticated hacking group known as StrongPity is circulating laced Notepad++ installers that infect targets with malware. This hacking group, also known as APT-C-41 and Promethium, was ...