Notepad++ Supply Chain Attack – 2026 Report Date: February 3, 2026 Classification: Public Threat Type: Supply Chain Compromise Attribution: Lotus Blossom (Moderate Confidence) Executive Summary Notepad++ confirmed an infrastructure-level compromise affecting its update mechanism from June through December 2025. Attackers hijacked the hosting provider’s server to selectively redirect update requests from targeted users to malicious […]