Notepad++ supply chain incident

Notepad++ disclosed that attackers abused their hosting/provider to tamper with automatic updates, causing some users—primarily in Southeast Asia—to receive remote‑access malware which fetched additional staged payloads; the incident was limited to a small number of targeted organizations and Rapid7 has published indicators and analysis.