CISA has expanded its KEV catalog with new SolarWinds, Notepad++, and Apple flaws, including two exploited as zero-days.

Last year, the creator of Notepad++ rolled out an update for the text and source code editor after security experts reported ...

By AJ Vicens Feb 2 (Reuters) - A Chinese-linked cyberespionage group with a long history hijacked the update process for the ...

The popular Notepad alternative was hijacked by bad actors for several months in 2025, but the latest update appears to solve the issue.

Suspected Chinese state-backed hackers reportedly hijacked Notepad++'s update system for months, targeting select users and ...

Notepad++ has been compromised in a sophisticated nation-state cyberattack. Learn about the security breach, the ...

Rapid7 dropped a write-up on the Notepad++ update-chain abuse and - finally - it comes with real IOCs - update.exe downloaded from 95.179.213[.]0 after notepad++.exe -> GUP.exe - ...

Security researchers believe that Chinese hackers are to blame for the attack in part because of the "selective" nature of ...

The hosting provider's compromise allowed attackers to deliver malware through tainted software updates for six months.

The program is a free text and code editor that's been downloaded millions of times. The compromise began in June and is ...

A months-long supply chain attack that affected the Notepad++ update process has been linked to a compromise of shared hosting infrastructure rather than a flaw in the software's code. This according ...