State-backed attackers hijacked Notepad++ update traffic via a hosting provider breach, redirecting users to malicious downloads since June 2025.

Chinese state-sponsored threat actors were likely behind the hijacking of Notepad++ update traffic last year that lasted for almost half a year, the developer states in an official announcement today.

Chinese state-sponsored hackers are suspected of compromising Notepad++ update infrastructure in a hosting-level breach and selectively infecting users with malware.

The developer of the popular text editor Notepad++ said hackers associated with the Chinese government hijacked its software ...

State-sponsored hackers' are being blamed for compromising the popular alternative to Windows Notepad over a period of six months last year.

Infrastructure delivering updates for Notepad++—a widely used text editor for Windows—was compromised for six months by ...

State-sponsored threat actors compromised the popular code editor's hosting provider to redirect targeted users to malicious ...

Notepad++'s updater usually pops up, but users can also prompt it by selecting the "?" dropdown in the taskbar. Christopher ...

Notepad++ update servers were compromised for 6 months in 2025. Learn how the Chrysalis backdoor targeted users and why you must manually update to version 8.9.1 now.

Notepad++, one of Windows' most widely used text editors, has confirmed a major security breach after its update ...

Notepad++ says its update system was reportedly hijacked for months in a targeted cyber campaign linked to suspected Chinese ...

The popular Notepad alternative was hijacked by bad actors for several months in 2025, but the latest update appears to solve ...