Notepad++ Official Update Mechanism Hijacked to Deliver Malware to Select Users

Updated on February 2, 2026

The maintainer of Notepad++ has revealed that state-sponsored attackers hijacked the utility’s update mechanism to redirect update traffic to malicious servers instead.
“The attack involved [an] infrastructure-level compromise that allowed malicious actors to intercept and redirect update traffic destined for notepad-plus-plus.org,” developer Don Ho said. “The compromise occurred at the hosting…

Read the rest of the story at Read More

Source: The Hacker News

July 29, 2025 Uncategorized

How the Browser Became the Main Cyber Ba...

December 16, 2025 Uncategorized

Compromised IAM Credentials Power a Larg...

December 10, 2025 Uncategorized

Notepad++ Official Update Mechanism Hijacked to Deliver Malware to Select Users

Related posts

How the Browser Became the Main Cyber Ba...

Compromised IAM Credentials Power a Larg...

Microsoft Issues Security Fixes for 56 F...

Leave a Comment Cancel reply

Recent News

Docker Fixes Critical Ask Gordon AI Flaw Allowing Code Execution via Image Metadata

[Webinar] The Smarter SOC Blueprint: Learn What to Build, Buy, and Automate

Hackers Exploit Metro4Shell RCE Flaw in React Native CLI npm Package

When Cloud Outages Ripple Across the Internet

APT28 Uses Microsoft Office CVE-2026-21509 in Espionage-Focused Malware Attacks

Mozilla Adds One-Click Option to Disable Generative AI Features in Firefox

Notepad++ Hosting Breach Attributed to China-Linked Lotus Blossom Hacking Group

Researchers Find 341 Malicious ClawHub Skills Stealing Data from OpenClaw Users

OpenClaw Bug Enables One-Click Remote Code Execution via Malicious Link

Microsoft Begins NTLM Phase-Out With Three-Stage Plan to Move Windows to Kerberos