Notepad++ released version 8.8.9 in December, which checks digital signatures and certificates before installing any updates.

Anthropic’s Claude AI models experienced a major outage today, impacting products like Claude Code. Developers were seeing a 500 error when trying to use Claude Code, and Anthropic said that it was ...

Some Notepad++ users were redirected to malicious servers last year. Now, its developer says they were targeted by Chinese ...

The hosting provider's compromise allowed attackers to deliver malware through tainted software updates for six months.

Notepad++ has been compromised in a sophisticated nation-state cyberattack. Learn about the security breach, the ...

Rapid7 links China-linked Lotus Blossom to a 2025 Notepad++ hosting breach that delivered the Chrysalis backdoor via hijacked updates, fixed in v8.8.9 ...

State-sponsored threat actors compromised the popular code editor's hosting provider to redirect targeted users to malicious ...

A Chinese-linked cyberespionage group targeted Notepad++'s update process to deploy malware. The attack from June to December 2025 selectively affected users, prompting investigations. Hosting ...

The attacks came from a third-party and not from the Notepad++ team.

A Chinese-linked cyberespionage group named Lotus Blossom hijacked the update process of Notepad++ to target specific users. Gaining access in June 2025, they maintained control until December that ...

The program is a free text and code editor that's been downloaded millions of times. The compromise began in June and is ...

A months-long supply chain attack that affected the Notepad++ update process has been linked to a compromise of shared hosting infrastructure rather than a flaw in the software's code. This according ...