When affected users checked for updates inside Notepad++, their requests to getDownloadUrl.php were silently redirected. Instead of receiving legitimate update information, they were sent altered XML ...

Last year, the creator of Notepad++ rolled out an update for the text and source code editor after security experts reported that bad actors were hijacking its update mechanism to redirect traffic to ...

Notepad++, a popular text and source code editor, has revealed that its update system was hijacked in a targeted cyberattack. The breach, which is believed to have been carried out by state-sponsored ...

If you use Notepad++, it's time to update. Hackers compromised the free text and coding editor to distribute a malicious update via the auto-update function. Notepad++ developer Don Ho detected the ...

You’re likely familiar with a man-in-the-middle attack where an attacker sits between a user and a legitimate service, disrupting or spying on their communications. Notepad++ seems to have fallen ...

Notepad++, a popular text editor, has come forward about a sophisticated supply chain attack that took place on its update system for about six months, from June to December 2025. This is a serious ...

That lizard sure looks shocked. When you purchase through links on our site, we may earn an affiliate commission. Here’s how it works.

Notepad++ reported that its built-in auto-update feature had been hijacked by Chinese state-sponsored hackers from June to September of 2025, and the credentials gathered by the bas actors enabled ...