Notepad++ update servers were compromised for 6 months in 2025. Learn how the Chrysalis backdoor targeted users and why you must manually update to version 8.9.1 now.

State-sponsored hackers' are being blamed for compromising the popular alternative to Windows Notepad over a period of six months last year.

It's believed that, between June and November 10/December 2, 2025 (independent security experts and its hosting provider ...

A software update mechanism for the popular text editor Notepad++ was hijacked by suspected Chinese state-sponsored hackers, allowing them to silently redirect some users to malicious update servers, ...

Notepad++ has been compromised in a sophisticated nation-state cyberattack. Learn about the security breach, the ...

State-sponsored threat actors compromised the popular code editor's hosting provider to redirect targeted users to malicious ...

The attacks came from a third-party and not from the Notepad++ team.

The popular Notepad alternative was hijacked by bad actors for several months in 2025, but the latest update appears to solve ...

The program is a free text and code editor that's been downloaded millions of times. The compromise began in June and is ...

Notepad++ updates were hijacked in a state-sponsored attack, with China-linked hackers redirecting downloads to malicious servers.

Infrastructure delivering updates for Notepad++—a widely used text editor for Windows—was compromised for six months by ...

A months-long supply chain attack that affected the Notepad++ update process has been linked to a compromise of shared hosting infrastructure rather than a flaw in the software's code. This according ...