THREATOPS
THREAT OPSThreat News › Small numbers of Notepad++ users reporting security woes

Small numbers of Notepad++ users reporting security woes

lowdoublepulsarPublished 2025-12-02

<p>Interesting one, has been rumbling for about a week in my circles.</p><p>I’ve heard from 3 orgs now who’ve had security incidents on boxes with Notepad++ installed, where it appears Notepad++ processes have spawned the initial access. These have resulted in hands on keyboard threat actors.</p><p>It is unclear exactly what is happening, and this blog is not to blame the (very good) developer of

MITRE ATT&CK techniques

Indicators of compromise

Original source: https://doublepulsar.com/small-numbers-of-notepad-users-reporting-security-woes-371d7a3fd2d9?source=rss----8343faddf0ec---4