Bleeping Computer

Notepad++ fixes flaw that let attackers push malicious update files

Notepad++ version 8.8.9 was released to fix a security weakness in its WinGUp update tool after researchers and users reported incidents in which the updater retrieved malicious executables instead of ...
TechSpot

Notepad++ users urged to update immediately after hackers hijack the app's updater

PSA: Notepad++ users who haven't yet updated to version 8.8.9 or later should manually download the latest installer as soon as possible. Following reports of malicious activity, a December 2025 ...
CSOonline

Notepad++ author says fixes make update mechanism ‘effectively unexploitable’

The recently compromised update mechanism for the popular open source text editor Notepad ++ has been hardened so it’s now ‘effectively unexploitable’, says the application’s author. Don Ho made the ...