SecurityWeek

CISA Warns of Exploited SolarWinds, Notepad++, Microsoft Vulnerabilities

CISA has expanded its KEV catalog with new SolarWinds, Notepad++, and Apple flaws, including two exploited as zero-days.

Notepad++ hit by suspected Chinese state-sponsored hackers

Notepad++ targeted and used to deliver poisoned updates to a select group of victims.
The Hacker News

Notepad++ Official Update Mechanism Hijacked to Deliver Malware to Select Users

State-backed attackers hijacked Notepad++ update traffic via a hosting provider breach, redirecting users to malicious downloads since June 2025.
NewsBytes

Notepad++ says Chinese hackers breached its update system

Suspected Chinese state-backed hackers reportedly hijacked Notepad++'s update system for months, targeting select users and ...

Notepad++ Update Service Hijacked in State-Sponsored Cyber Attack

In an alarming revelation, the popular text editor Notepad++ has confirmed that its update service was compromised in a targeted attack linked to state-sponsored cybercriminals. This incident sheds ...

Notepad++ Compromised in Sophisticated Nation-State Attack

Notepad++ has been compromised in a sophisticated nation-state cyberattack. Learn about the security breach, the ...

Notepad++ says it was hijacked by Chinese state-sponsored hackers

Last year, the creator of Notepad++ rolled out an update for the text and source code editor after security experts reported ...
SecurityWeek

Notepad++ Supply Chain Hack Conducted by China via Hosting Provider

Notepad++ has shared additional details on the supply chain attack carried out by Chinese state-sponsored hackers via a ...
Dark Reading

Chinese Hackers Hijack Notepad++ Updates for 6 Months

State-sponsored threat actors compromised the popular code editor's hosting provider to redirect targeted users to malicious ...

Windows Notepad is now complex enough to have a serious security flaw

You can infect your PC with malware without ever leaving Notepad, thanks to recent updates and additions. Hooray.