Notepad++: Security update against code smuggling vulnerability

Notepad++ improves security mechanisms and closes a new vulnerability that allows attackers to execute malicious code.
OSTechNix

Notepad++ 8.9.2 Introduces “Double-Lock” Security to Fix the Update Hijack

Worried about the Notepad++ supply chain attack? Notepad++ 8.9.2 adds "Double-Lock" security to stop malware hijacking.

Notepad++ hit by suspected Chinese state-sponsored hackers

Notepad++ targeted and used to deliver poisoned updates to a select group of victims.
Reuters

Popular open-source coding application targeted in Chinese-linked supply-chain attack

Notepad++ update process hijacked for targeted cyberespionage Cybersecurity firm Rapid7 links attack to Chinese group Lotus Blossom China denies involvement, citing lack of evidence Feb 2 (Reuters) - ...
Cybernews

Notepad++ releases another patch following recent cyberattacks

Notepad++ released a security patch to reinforce its update process with a “double-lock” design after a sophisticated ...
CPO Magazine

Chinese Hackers Compromised Notepad++ Software Updates For Nearly Half a Year, But Only ...

Security researchers believe that Chinese hackers are to blame for the attack in part because of the "selective" nature of ...
SecurityWeek

CISA Warns of Exploited SolarWinds, Notepad++, Microsoft Vulnerabilities

CISA has expanded its KEV catalog with new SolarWinds, Notepad++, and Apple flaws, including two exploited as zero-days.
The Hacker News

Notepad++ Fixes Hijacked Update Mechanism Used to Deliver Targeted Malware

Notepad++ 8.9.2 fixes update hijack exploited to deliver malware, patches RCE flaw, and hardens WinGUp security.

Popular open-source coding application targeted in Chinese-linked supply-chain attack

By AJ Vicens Feb 2 (Reuters) - A Chinese-linked cyberespionage group with a long history hijacked the update process for the popular code editing platform Notepad++ to deliver a custom backdoor and ...