> TritonInfoSec News
Home / Feb 18, 2026 / Story
0
#4 The Hacker News general February 18, 2026 at 10:40 UTC

Notepad++ Fixes Hijacked Update Mechanism Used to Deliver Targeted Malware

By [email protected] (The Hacker News)

AI Summary

Notepad++ version 8.9.2 implements a 'double lock' design to secure its update mechanism after Chinese threat actors hijacked the software's update process to deliver targeted malware. Maintainer Don Ho describes the new system as 'robust and effectively unexploitable' with enhanced verification processes. This supply chain attack demonstrates how attackers target trusted software update channels to distribute malware selectively to high-value targets.

Read full article → https://thehackernews.com/2026/02/notepad-fixes-hi…

Relevance score: 94.0/100

# More from February 18

  1. 1
    AI Found Twelve New Vulnerabilities in OpenSSL Schneier on Security
  2. 2
    Dell RecoverPoint for VMs Zero-Day CVE-2026-22769 Exploited Since Mid-2024 The Hacker News
  3. 3
    CISA Flags Four Security Flaws Under Active Exploitation in Latest KEV Update The Hacker News
  4. 5
    Microsoft says bug causes Copilot to summarize confidential emails BleepingComputer
  5. 6
    Keenadu Firmware Backdoor Infects Android Tablets via Signed OTA Updates The Hacker News
  6. 7
    Researchers Show Copilot and Grok Can Be Abused as Malware C2 Proxies The Hacker News
  7. 8
    Chinese hackers exploiting Dell zero-day flaw since mid-2024 BleepingComputer
  8. 9
    Poland Energy Survives Attack on Wind, Solar Infrastructure Dark Reading
  9. 10
    Polish police detain alleged cybercriminal with Phobos ransomware ties