zlacker

[return to "Notepad++ hijacked by state-sponsored actors"]
1. daemon+N5[view] [source] 2026-02-02 03:00:04
>>myster+(OP)
So what mitigations should the end user be doing? How do we know if anything compromised?
◧◩
2. averev+b7[view] [source] 2026-02-02 03:11:06
>>daemon+N5
Right the writeup doesn't mention when it started and what versions are affected
◧◩◪
3. freita+Nb[view] [source] 2026-02-02 04:06:11
>>averev+b7
The writeup says it right there:

"The security exper’s analysis indicates the attack ceased on November 10, 2025, while the hosting provider’s statement shows potential attacker access until December 2, 2025. Based on both assessment, I estimate the overall compromise period spanned from June through December 2, 2025, when all attacker access was definitively terminated."

[go to top]