Infrastructure delivering updates for Notepad++—a widely used text editor for Windows—was compromised for six months by ...

The developer of the popular open source text editor Notepad++ has confirmed that hackers hijacked the software to deliver malicious updates to users over the course of several months in 2025. In a ...

Security researchers believe that Chinese hackers are to blame for the attack in part because of the "selective" nature of the targets that were chosen for follow-on compromise via malicious software ...

PCWorld reports that Notepad++’s WinGUp update system was compromised between June and December 2025, delivering malware through corrupted executables to targeted users. While the popular text editor ...

Notepad++ reported that its built-in auto-update feature had been hijacked by Chinese state-sponsored hackers from June to September of 2025, and the credentials gathered by the bas actors enabled ...

Notepad++ has adopted a "double-lock" design for its update mechanism to address recently exploited security gaps that ...

Worried about the Notepad++ supply chain attack? Notepad++ 8.9.2 adds "Double-Lock" security to stop malware hijacking.

Miscreants will need to find another avenue for malware shenanigans Notepad++ has continued beefing up security with a release the project's author claims makes the "update process robust and ...

Last year, the creator of Notepad++ rolled out an update for the text and source code editor after security experts reported that bad actors were hijacking its update mechanism to redirect traffic to ...

The recently compromised update mechanism for the popular open source text editor Notepad ++ has been hardened so it’s now ...

Forbes contributors publish independent expert analyses and insights. Barry Collins is a tech journalist writing about PCs, Macs and games. The developer of the popular Windows app Notepad++ has ...