Notepad++ Fixes Critical Updater Flaw Used by Chinese Hackers

Notepad++ fixes a critical flaw in its update system exploited by hackers, enhancing security with signature verification in version 8.8.9.

By Content Team

Dec 12, 2025

ON THIS PAGE

Share

---

ON THIS PAGE

Want more insights like this?

Subscribe to our newsletter to get the latest software protection strategies delivered to your inbox.

By submitting your email, you consent to Codekeeper contacting you and agree to our privacy policy.

Notepad++ has patched a serious vulnerability that allowed hackers to hijack the popular code editor's update system. Security researcher Kevin Beaumont reported that Chinese threat actors exploited this flaw to target telecoms and financial services companies across East Asia in early December.

The attack worked by intercepting traffic between Notepad++ and its update servers, tricking users into downloading malicious files instead of legitimate updates. The vulnerability affected the WinGUp updater component, which failed to properly verify the authenticity of downloaded files.

Version 8.8.9 now includes signature verification to prevent fake updates from installing. However, experts believe the attacks required significant resources, possibly involving traffic hijacking at the internet service provider level.

Source: SecurityWeek

Share this article

Have questions about protecting your software?

Our escrow experts are standing by to help.

Book a free demo

YOU MAY ALSO LIKE

What to Do When You Get a Data Breach Notice

Mar 4, 2026

Under Armour Investigates Data Breach Affecting 72 Million Email Addresses

Jan 23, 2026

Cyberattacks on Industrial Systems Nearly Double as Hackers Target Critical Infrastructure

Jan 15, 2026

Southampton School Closes Four Days After Ransomware Attack

Mar 29, 2026