SecurityWeek

CISA Warns of Exploited SolarWinds, Notepad++, Microsoft Vulnerabilities

CISA has expanded its KEV catalog with new SolarWinds, Notepad++, and Apple flaws, including two exploited as zero-days.
The Hacker News

Researchers Observe In-the-Wild Exploitation of BeyondTrust CVSS 9.9 Vulnerability

Active exploitation of BeyondTrust enables unauthenticated RCE as CISA adds Apple, Microsoft, SolarWinds, and Notepad++ flaws to KEV list.
GitHub

lKinderBueno/Streamity-Xtream-IPTV-Web-player

Streamity is an online web player. Play your Xtream API playlists and media libraries directly in your browser, with no additional software required. Open with a text editor (for example notepad++) ...
TechSpot

Notepad++ users urged to update immediately after hackers hijack the app's updater

PSA: Notepad++ users who haven't yet updated to version 8.8.9 or later should manually download the latest installer as soon as possible. Following reports of malicious activity, a December 2025 ...
Bleeping Computer

Notepad++ fixes flaw that let attackers push malicious update files

Notepad++ version 8.8.9 was released to fix a security weakness in its WinGUp update tool after researchers and users reported incidents in which the updater retrieved malicious executables instead of ...
PC World

Oh no! Hackers snuck malware inside uber-popular Windows app Notepad++

This is not a drill! The makers of the popular text editor Notepad++ are warning that the Notepad++ updater, which goes by the name WinGUp, links to malware servers. This is a case of traffic ...
heise online

Notepad++ updater installed malware

The updater integrated into Notepad++ has allowed itself to be infiltrated by malware, which has been installed on some PCs. The developer of the powerful open-source text editor is responding with an ...
cybernews

Notepad++ releases emergency patch as hackers exploit updater to deploy malware

Hackers are abusing Notepad++, a popular text and source code editor, to deliver malware. The app’s updater, WinGUp, can be tricked by an attacker-in-the-middle to pull compromised executables from ...
Neowin

Microsoft says SQL Server adoption on Linux is 'phenomenal', ends support for SUSE distro

Microsoft SQL Server 2025 finally hit general availability today, following a private preview a year ago and a public preview back in May. That said, the AI-focused release is still in a public ...
TechRadar

Industrial computing systems at risk from "time bombs " in malicious NuGet packages

Socket found nine NuGet packages with delayed sabotage targeting industrial control systems Sharp7Extend can corrupt Siemens S7 PLCs and randomly crash host processes Malicious code activates in ...
SlashGear

How To Enable Dark Mode In Notepad++ (On Windows 10 Or 11)

Windows Notepad is great for whenever you need somewhere to paste text copied from a website or to jot down your grocery list. But if you're writing or editing source code, you're better off switching ...