Security Boulevard

What to Know About the Notepad++ Supply-Chain Attack

The cybersecurity community is still grappling with a sobering realization: one of the most ubiquitous tools in the developer’s toolkit, Notepad++, was hiding a critical vulnerability for over six ...
CPO Magazine

Chinese Hackers Compromised Notepad++ Software Updates For Nearly Half a Year, But Only “Select” Targets Breached

Security researchers believe that Chinese hackers are to blame for the attack in part because of the "selective" nature of ...

Notepad++ hit by suspected Chinese state-sponsored hackers

Notepad++ targeted and used to deliver poisoned updates to a select group of victims.

Notepad++ boosts update security with ‘double-lock’ mechanism

Notepad++ has adopted a "double-lock" design for its update mechanism to address recently exploited security gaps that ...

Notepad++: Security update against code smuggling vulnerability

Notepad++ improves security mechanisms and closes a new vulnerability that allows attackers to execute malicious code.
Yahoo

Popular open-source coding application targeted in Chinese-linked supply-chain attack

Feb 2 (Reuters) - A Chinese-linked cyberespionage group with a long history hijacked the update process for the popular code editing platform Notepad++ to deliver a custom backdoor and other malware ...
Cybernews

Notepad++ releases another patch following recent cyberattacks

Notepad++ released a security patch to reinforce its update process with a “double-lock” design after a sophisticated ...
SecurityWeek

CISA Warns of Exploited SolarWinds, Notepad++, Microsoft Vulnerabilities

CISA has expanded its KEV catalog with new SolarWinds, Notepad++, and Apple flaws, including two exploited as zero-days.