Chinese State-Backed Hackers Hijack Notepad++ Hosting Provider to Distribute Malware

Malicious actors backed by the Chinese state compromised the hosting provider of Notepad++ to redirect targeted users toward malicious downloads. The attack lasted six months, exploiting the software's update infrastructure. The attackers hijacked the legitimate distribution mechanism to spread malicious payloads, though specifics about the exploited vulnerabilities or the tools used remain unclear. The impact primarily affects targeted users, with no details provided on the scale of infections or the compromised data.