Notepad++ 8.9.2 fixes update hijack exploited to deliver malware, patches RCE flaw, and hardens WinGUp security.

The Oscar-nominated cowriter of “It Was Just an Accident” has been released from an Iranian prison 17 days after his arrest.

AI-related changes to Notepad allowed attackers to execute arbitrary code on your computer. The vulnerability was related to ...

I don’t need tabs, sessions, or extra clutter in a tool I open for two seconds. Notepad++ stays fast, simple, and doesn't ...

Notepad++ users faced a serious threat as Chinese state-sponsored hackers compromised update servers for half of 2025, distributing malware named Chrysalis. Targeting organizations with East Asian ...

Notepad++, a popular text editor, has come forward about a sophisticated supply chain attack that took place on its update system for about six months, from June to December 2025. This is a serious ...

Infrastructure delivering updates for Notepad++—a widely used text editor for Windows—was compromised for six months by ...

A state-sponsored cyber criminal compromised Notepad++'s update service in 2025, according to the project's author. The admission comes after version 8.8.9 of the text editor was released on December ...

During the investigation, the unnamed hosting provider for notepad-plus-plus.org confirmed that its logs showed signs of a compromise. On Sept. 2, a server update booted the hackers out. However, they ...

The maintainer of Notepad++ has revealed that state-sponsored attackers hijacked the utility's update mechanism to redirect update traffic to malicious servers instead. "The attack involved [an] ...