GitHub is making Claude by Anthropic and OpenAI’s Codex AI coding agents directly available inside GitHub today. A new public ...

Notepad++ released version 8.8.9 in December, which checks digital signatures and certificates before installing any updates.

Some Notepad++ users were redirected to malicious servers last year. Now, its developer says they were targeted by Chinese ...

Notepad++ users faced a serious threat as Chinese state-sponsored hackers compromised update servers for half of 2025, ...

Notepad++ targeted and used to deliver poisoned updates to a select group of victims.

The hosting provider's compromise allowed attackers to deliver malware through tainted software updates for six months.

Rapid7 links China-linked Lotus Blossom to a 2025 Notepad++ hosting breach that delivered the Chrysalis backdoor via hijacked updates, fixed in v8.8.9 ...

The developer did not specify when they became aware of the attack, but said that “all attacker access was definitively terminated” by December 2nd. The Notepad++ updater has been updated itself with ...

State-sponsored threat actors compromised the popular code editor's hosting provider to redirect targeted users to malicious ...

Attackers had specifically delivered malware to systems using the Notepad++ updater. Investigations point to state actors.

State-backed attackers hijacked Notepad++ update traffic via a hosting provider breach, redirecting users to malicious downloads since June 2025.

In context: Microsoft is going in some very wild directions with Windows development, with Notepad being one of the most outstanding guinea pigs in AI and design experimentations. Notepad now has the ...