#Tag · BT Free Social

Dr. Juande Santander-Vela boosted

Ben Royce 🇺🇦 🇸🇩

I haven't used Notepad++ in awhile

Fortunately

If you still do

😬

https://techcrunch.com/2026/02/02/notepad-says-chinese-government-hackers-hijacked-its-software-updates-for-months/

" #Notepad++ says Chinese government hackers hijacked its #software updates for months"

#Notepadplusplus

TechCrunch

Notepad++ says Chinese government hackers hijacked its software updates for months | TechCrunch

The developer of the popular text editor Notepad++ said hackers associated with the Chinese government hijacked its software update mechanism to deliver tainted software to users for months.

Ben Royce 🇺🇦 🇸🇩

@benroyce@mastodon.social · 4 days ago

I haven't used Notepad++ in awhile

Fortunately

If you still do

😬

https://techcrunch.com/2026/02/02/notepad-says-chinese-government-hackers-hijacked-its-software-updates-for-months/

" #Notepad++ says Chinese government hackers hijacked its #software updates for months"

#Notepadplusplus

TechCrunch

Notepad++ says Chinese government hackers hijacked its software updates for months | TechCrunch

The developer of the popular text editor Notepad++ said hackers associated with the Chinese government hijacked its software update mechanism to deliver tainted software to users for months.

Karis boosted

Marcus "MajorLinux" Summers

@majorlinux@toot.majorshouse.com · 4 days ago

There are definitely lessons to be learned here.

Notepad++ users take note: It's time to check if you're hacked

https://arstechnica.com/security/2026/02/notepad-updater-was-compromised-for-6-months-in-supply-chain-attack/

#NotepadPlusPlus #Hack #SupplyChain #Vulnerability #Security #Tech

Ars Technica

Notepad++ updater was compromised for 6 months in supply-chain attack

Suspected China-state hackers used update infrastructure to deliver backdoored version.

Marcus "MajorLinux" Summers

@majorlinux@toot.majorshouse.com · 4 days ago

There are definitely lessons to be learned here.

Notepad++ users take note: It's time to check if you're hacked

https://arstechnica.com/security/2026/02/notepad-updater-was-compromised-for-6-months-in-supply-chain-attack/

#NotepadPlusPlus #Hack #SupplyChain #Vulnerability #Security #Tech

Ars Technica

Notepad++ updater was compromised for 6 months in supply-chain attack

Suspected China-state hackers used update infrastructure to deliver backdoored version.

Taggart

@mttaggart@infosec.exchange · 4 days ago

Notepad++ versions and update mechanisms had been compromised since June until December 2025. Please update to 8.9.1 wherever you have this tool. It's unclear what malicious versions of the tool might do. I Recommend activating incident response for affected hosts.

https://notepad-plus-plus.org/news/hijacked-incident-info-update/

Come On Giant Asteroid!

@VE2UWY@mastodon.radio replied · 4 days ago

@mttaggart

Ugh. Done. Thanks!

#Notepad++ #NotepadPlusPlus

IAintShootinMis

@iaintshootinmis@digitaldarkage.cc · 4 days ago

#CTI #Infosec #NotepadPlusPlus #Npp Here's a list of all the legitimate hashes for Notepad plus plus since April 2025.

Threat hunters, get a list of all the hashes of NPP in your environment, look for any that don't correspond to this list.

Hashes for 8.8.4 aren't available at this time, but if someone can provide them, I'll update the link.

@GossiTheDog https://gist.github.com/iaintshootinmis/4ad89830caf6be34c1f29bd6b9bbc5e6