Chinese hackers exploit Notepad++ updater to target select users for months: Report

Notepad++ says its update system was reportedly hijacked for months in a targeted cyber campaign linked to suspected Chinese ...

Notepad++ update feature hijacked by Chinese state hackers for months

Chinese state-sponsored threat actors were likely behind the hijacking of Notepad++ update traffic last year that lasted for almost half a year, the developer states in an official announcement today.
ExtremeTech

Notepad++ Says Chinese-State Hackers Spent Half a Year Hijacking Its Software Updates

Notepad++ released version 8.8.9 in December, which checks digital signatures and certificates before installing any updates.
Que.com on MSN

China-linked Lotus Blossom breaches Notepad++ hosting, spreads malware

A recent supply-chain-style intrusion has put a spotlight on a familiar truth in cybersecurity: attackers don’t always need to hack ...
OSTechNix

Notepad++ Supply Chain Attack: Is Your Version Secure?

Notepad++ update servers were compromised for 6 months in 2025. Learn how the Chrysalis backdoor targeted users and why you must manually update to version 8.9.1 now.