Threat Intelligence Report

Notepad++ update hijacking

📅 February 4, 2026 📰 blog.aguilo-network.net 🔍 0 CVE(s) referenced

A sophisticated supply chain attack hijacked Notepad++'s update infrastructure for months, enabling the delivery of targeted, signed malicious payloads to users and highlighting the critical importance of defense-in-depth and robust log retention for detection and response.

researcher

🔐 Sign In to Read Full Report

You'll need to accept our Terms of Service to access the platform.

📊 Visual Mindmap

🎯 IOC Extraction

⚔️ MITRE ATT&CK TTPs

📦 STIX 2.1 Bundle