Notepad++ hack: Supply chain threats evolve

Notepad++ was subject to a software supply-chain compromise beginning June 2025 when attackers who researchers link to China hijacked update requests via a shared hosting server to deliver a custom backdoor called Chrysalis; the malware provided persistent, stealthy remote access and enabled hands‑on‑keyboard intrusions, prompting Notepad++ to harden its updater, enforce certificate/signature checks, sign update XML, and move to more secure hosting.