Worried about the Notepad++ supply chain attack? Notepad++ 8.9.2 adds "Double-Lock" security to stop malware hijacking.

The program is a free text and code editor that's been downloaded millions of times. The compromise began in June and is likely to have involved a Chinese state-sponsored group.

The popular Notepad alternative was hijacked by bad actors for several months in 2025, but the latest update appears to solve the issue.

The developer of the popular text editor Notepad++ said hackers associated with the Chinese government hijacked its software update mechanism to deliver tainted software to users for months.

Notepad++ has been compromised in a sophisticated nation-state cyberattack. Learn about the security breach, the ...

CISA has expanded its KEV catalog with new SolarWinds, Notepad++, and Apple flaws, including two exploited as zero-days.

Security researchers believe that Chinese hackers are to blame for the attack in part because of the "selective" nature of ...

Last year, the creator of Notepad++ rolled out an update for the text and source code editor after security experts reported ...

Notepad++ update servers were compromised for 6 months in 2025. Learn how the Chrysalis backdoor targeted users and why you must manually update to version 8.9.1 now.

Notepad++ targeted and used to deliver poisoned updates to a select group of victims.