SecurityWeek

CISA Warns of Exploited SolarWinds, Notepad++, Microsoft Vulnerabilities

CISA has expanded its KEV catalog with new SolarWinds, Notepad++, and Apple flaws, including two exploited as zero-days.
The Hacker News

Researchers Observe In-the-Wild Exploitation of BeyondTrust CVSS 9.9 Vulnerability

Active exploitation of BeyondTrust enables unauthenticated RCE as CISA adds Apple, Microsoft, SolarWinds, and Notepad++ flaws ...

Microsoft fixes Notepad flaw that could allow attackers hijack your Windows PC

Microsoft said it recently fixed a security flaw in Notepad that could let an attacker download and run malicious code.

Windows Notepad is now complex enough to have a serious security flaw

You can infect your PC with malware without ever leaving Notepad, thanks to recent updates and additions. Hooray.
How-To Geek on MSN

I’m done with Windows Notepad: Why I went back to this 20-year-old open-source tool

I don’t need tabs, sessions, or extra clutter in a tool I open for two seconds. Notepad++ stays fast, simple, and doesn't ...

Notepad's new Markdown powers served with a side of remote code execution

There are ample email security protections available to organizations, yet phishing remains the most effective initial access ...
Becker's Hospital Review

AHA warns of critical software vulnerability

AHA warns critical software vulnerability in Notepad++ update affecting versions before 8.8.9, exposing hospitals to cyber threats from ...
BusinessMirror

Supply chain attack targets govt organization

A GOVERNMENT organization was among the confirmed targets of a supply chain attack on Notepad++ that was far more extensive ...
Manila Standard

Kaspersky GReAT uncovers hidden attack chains in Notepad++ supply chain compromise

Kaspersky Global Research and Analysis Team (GReAT) researchers have discovered that attackers behind the Notepad++ supply ...
CPO Magazine

Chinese Hackers Compromised Notepad++ Software Updates For Nearly Half a Year, But Only “Select” Targets Breached

Security researchers believe that Chinese hackers are to blame for the attack in part because of the "selective" nature of ...
Technobezz

Chinese hackers backdoored Notepad++ for six months targeting specific users.

Chinese hackers compromised Notepad++ updates for six months, deploying a backdoor to selectively target users in government ...
PCMag

Another Week, Another Data Disaster: Substack, Coinbase, and a Malicious Notepad++ Update

If you have accounts on any of these services, now's a good time to check your security settings. Plus more from a busy week ...