Notepad++ has been compromised in a sophisticated nation-state cyberattack. Learn about the security breach, the ...

The program is a free text and code editor that's been downloaded millions of times. The compromise began in June and is ...

Notepad++ users faced a serious threat as Chinese state-sponsored hackers compromised update servers for half of 2025, distributing malware named Chrysalis. Targeting organizations with East Asian ...

State-sponsored threat actors compromised the popular code editor's hosting provider to redirect targeted users to malicious ...

Notepad++ has confirmed it was the victim of a highly targeted and sophisticated cyberattack, most likely conducted by a ...

State-backed attackers hijacked Notepad++ update traffic via a hosting provider breach, redirecting users to malicious downloads since June 2025.

The hosting provider's compromise allowed attackers to deliver malware through tainted software updates for six months.

It's believed that, between June and November 10/December 2, 2025 (independent security experts and its hosting provider disagree on the exact timings), a shared hosting server was compromised, ...

The developer did not specify when they became aware of the attack, but said that “all attacker access was definitively terminated” by December 2nd. The Notepad++ updater has been updated itself with ...

The attacks came from a third-party and not from the Notepad++ team.

Chinese state-sponsored hackers are suspected of compromising Notepad++ update infrastructure in a hosting-level breach and selectively infecting users with malware.

Today, in a post titled "Notepad++ Hijacked by State-Sponsored Hackers," Notepad++ confirmed the app had fallen victim to ...