/
2025-12-11: Notepad++ updater hacked again. Do not update from within the app or from third party sites.

2025-12-11: Notepad++ updater hacked again. Do not update from within the app or from third party sites.

https://www.pcworld.com/article/3008425/oh-no-hackers-snuck-malware-inside-uber-popular-windows-app-notepad.html

Reposting from campus CSF list:

Please note: You must download and install this update manually from the notepad++ site to get the version not infected with malware! This is a classic case of a supply chain vulnerability. Do NOT update from within the Notepad++ application as seen in the screenshot below. 

note that the infected fake version has one less digit than normal.

image.png