Small numbers of Notepad++ users reporting security woes

The report outlines how weaknesses in Notepad++'s update and download mechanisms (past HTTP traffic, weak certificate usage, and update chain issues) can be abused to deliver trojanised installers; it documents targeted reconnaissance activity against East Asia-linked organizations, provides indicators to watch for (gup.exe network calls, unexpected AutoUpdater.exe in TEMP, use of curl/temp.sh), and recommends updating to 8.8.8, avoiding auto-updates, and restricting updater/network access where practical.