New Delhi, Feb. 2 -- The developer of Notepad++ has reportedly noted that its software update mechanism was covertly hijacked for several months last year, with evidence suggesting the operation was carried out by a Chinese state sponsored threat group.

According to Bleepingcomputer, attackers intercepted and selectively redirected update requests, steering certain users towards malicious servers and delivering tampered update information. The breach is believed to have begun in June 2025 and continued until early December.

Rather than launching a broad attack, the intruders reportedly focused on specific victims. Security experts assisting the investigation said the redirections were highly selective, affecting only chosen systems rath...