SecurityWeek

CISA Warns of Exploited SolarWinds, Notepad++, Microsoft Vulnerabilities

CISA has expanded its KEV catalog with new SolarWinds, Notepad++, and Apple flaws, including two exploited as zero-days.
Ars Technica

Notepad++ users take note: It’s time to check if you’re hacked

Infrastructure delivering updates for Notepad++—a widely used text editor for Windows—was compromised for six months by suspected China-state hackers who used their control to deliver backdoored ...
Bleeping Computer

Notepad++ update feature hijacked by Chinese state hackers for months

Chinese state-sponsored threat actors were likely behind the hijacking of Notepad++ update traffic last year that lasted for almost half a year, the developer states in an official announcement today.
The Hacker News

Researchers Observe In-the-Wild Exploitation of BeyondTrust CVSS 9.9 Vulnerability

Active exploitation of BeyondTrust enables unauthenticated RCE as CISA adds Apple, Microsoft, SolarWinds, and Notepad++ flaws ...
heise online

Notepad++: Updater takeover by state actors

Following the patching of a previously exploited security vulnerability in the update mechanism by a Notepad++ update in December, investigation results on the incidents are now available. According ...
Hosted on MSN

Notepad++ was hijacked by bad actors in 2025. Here's what you need to know.

Notepad++, one of the most popular alternatives to the native Notepad app in Windows 11, has today published on its website a security disclosure stating that the app was "hijacked by state-sponsored ...
Hosted on MSN

Chinese hackers hit Notepad++ to serve malicious update

If you use Notepad++, it's time to update. Hackers compromised the free text and coding editor to distribute a malicious update via the auto-update function. Notepad++ developer Don Ho detected the ...
The Hacker News

Notepad++ Official Update Mechanism Hijacked to Deliver Malware to Select Users

The maintainer of Notepad++ has revealed that state-sponsored attackers hijacked the utility's update mechanism to redirect update traffic to malicious servers instead. "The attack involved [an] ...
TechRadar

Best note taking app of 2025

We list the best note-taking apps, to make it simple and easy to make notes at the office, at home, and on the move. Note-taking apps have become increasingly popular, especially with business ...
PC Magazine

Chinese Hackers Hit Notepad++ to Serve Malicious Update

Chinese Hackers Hit Notepad++ to Serve Malicious Update The program is a free text and code editor that's been downloaded millions of times. The compromise began in June and is likely to have involved ...
GitHub

TextFX2 is a Notepad++ plugin which performs a variety of common conversions on selected text.

The original project has been dead since 2008. Now Notepad++ has started to block the plugin with version 8.4.3, so that it is no longer loaded. So I grabbed the source code with the aim to bypass the ...