I am a big user of Notepad ++ as I find it to be the best way to go through logs. Especially big ones. Thus I will be downloading the latest version of the app as soon as I get home for this reason:
Following the security disclosure published in the v8.8.9 announcement https://notepad-plus-plus.org/news/v889-released/ the investigation has continued in collaboration with external experts and with the full involvement of my (now former) shared hosting provider.
According to the analysis provided by the security experts, the attack involved infrastructure-level compromise that allowed malicious actors to intercept and redirect update traffic destined for notepad-plus-plus.org. The exact technical mechanism remains under investigation, though the compromise occured at the hosting provider level rather than through vulnerabilities in Notepad++ code itself. Traffic from certain targeted users was selectively redirected to attacker-controlled served malicious update manifests.
And:
I recommend downloading v8.9.1 (which includes the relevant security enhancement) and running the installer to update your Notepad++ manually.
I have to admit that I completely missed this. That’s bad on me. The only good news is that I run Notepad ++ inside of a Windows 11 virtual machine on my Mac. So since it is largely isolated, I don’t believe that either yours truly or my customers were at risk. But for everybody who runs Notepad ++, update ASAP to keep yourself safe.
Like this:
Like Loading...
Related
This entry was posted on February 2, 2026 at 1:39 pm and is filed under Commentary with tags Hacked, Notepad ++. You can follow any responses to this entry through the RSS 2.0 feed.
You can leave a response, or trackback from your own site.
If You Use Notepad ++, You Should Download The Latest Version ASAP
I am a big user of Notepad ++ as I find it to be the best way to go through logs. Especially big ones. Thus I will be downloading the latest version of the app as soon as I get home for this reason:
Following the security disclosure published in the v8.8.9 announcement https://notepad-plus-plus.org/news/v889-released/ the investigation has continued in collaboration with external experts and with the full involvement of my (now former) shared hosting provider.
According to the analysis provided by the security experts, the attack involved infrastructure-level compromise that allowed malicious actors to intercept and redirect update traffic destined for notepad-plus-plus.org. The exact technical mechanism remains under investigation, though the compromise occured at the hosting provider level rather than through vulnerabilities in Notepad++ code itself. Traffic from certain targeted users was selectively redirected to attacker-controlled served malicious update manifests.
And:
I recommend downloading v8.9.1 (which includes the relevant security enhancement) and running the installer to update your Notepad++ manually.
I have to admit that I completely missed this. That’s bad on me. The only good news is that I run Notepad ++ inside of a Windows 11 virtual machine on my Mac. So since it is largely isolated, I don’t believe that either yours truly or my customers were at risk. But for everybody who runs Notepad ++, update ASAP to keep yourself safe.
Share this:
Like this:
Related
This entry was posted on February 2, 2026 at 1:39 pm and is filed under Commentary with tags Hacked, Notepad ++. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.