The National Institute of Standards and Technology Feb. 2 published details on a critical vulnerability that impacted Notepad++, a free, open-source text and source code program widely used by several ...

Some Notepad++ users were redirected to malicious servers last year. Now, its developer says they were targeted by Chinese ...

It's believed that, between June and November 10/December 2, 2025 (independent security experts and its hosting provider ...

The hosting provider's compromise allowed attackers to deliver malware through tainted software updates for six months.

Rapid7 links China-linked Lotus Blossom to a 2025 Notepad++ hosting breach that delivered the Chrysalis backdoor via hijacked updates, fixed in v8.8.9 ...

The program is a free text and code editor that's been downloaded millions of times. The compromise began in June and is ...

Notepad++ is a favorite of programmers and other power users, but its auto-update function was compromised for months in 2025 ...

Attackers had specifically delivered malware to systems using the Notepad++ updater. Investigations point to state actors.

State-backed attackers hijacked Notepad++ update traffic via a hosting provider breach, redirecting users to malicious downloads since June 2025.

Twitch streamer "Lacari" opened Notepad while live, not realizing that the new version saves your previous session. Oh boy.

Notepad and Paint for Windows 11 are getting yet more updates, but Microsoft should really be focusing on other in-box applications right now.

Notepad++, one of the most widely used text editors on Windows, has rolled out version 8.8.9 to patch a serious security flaw that allowed attackers to hijack its update process and push malicious ...