Infrastructure delivering updates for Notepad++—a widely used text editor for Windows—was compromised for six months by suspected China-state hackers who used their control to deliver backdoored ...

The program is a free text and code editor that's been downloaded millions of times. The compromise began in June and is ...

State-sponsored threat actors compromised the popular code editor's hosting provider to redirect targeted users to malicious ...

In an alarming revelation, the popular text editor Notepad++ has confirmed that its update service was compromised in a targeted attack linked to state-sponsored cybercriminals. This incident sheds ...

Notepad++ has shared additional details on the supply chain attack carried out by Chinese state-sponsored hackers via a ...

Attackers had specifically delivered malware to systems using the Notepad++ updater. Investigations point to state actors.

State-sponsored hackers' are being blamed for compromising the popular alternative to Windows Notepad over a period of six months last year.

Notepad++ targeted and used to deliver poisoned updates to a select group of victims.

Notepad++ released version 8.8.9 in December, which checks digital signatures and certificates before installing any updates.

The attacks came from a third-party and not from the Notepad++ team.

Chinese state-sponsored threat actors were likely behind the hijacking of Notepad++ update traffic last year that lasted for almost half a year, the developer states in an official announcement today.

Notepad++ update servers were compromised for 6 months in 2025. Learn how the Chrysalis backdoor targeted users and why you must manually update to version 8.9.1 now.