Chinese State-Backed Hackers Compromised Notepad++ Updates in 2025 via Hosting Provider Breach

In 2025, Chinese state-backed hackers compromised Notepad++ updates for several months by exploiting a vulnerability in its hosting provider. The attack enabled the distribution of malware to users through the software's official updates. No additional technical details, such as the type of malware or the specific vulnerabilities exploited, have been disclosed. The incident exposed users to risks of malware infection.