The Hacker News

Notepad++ Fixes Hijacked Update Mechanism Used to Deliver Targeted Malware

Notepad++ 8.9.2 fixes update hijack exploited to deliver malware, patches RCE flaw, and hardens WinGUp security.
WinBuzzer

Microsoft Patches High-Severity Notepad Remote Code Execution Flaw

Microsoft has patched the Windows Notepad remote code execution vulnerability CVE-2026-20841, warning users to install February 2026 updates to block exploits.
Hosted on MSN

Hackers exploit Notepad hijacking bug to gain control of Windows PCs

A new exploit has been found that allows attackers to use Notepad, one of the most trusted applications on Windows, to elevate their privileges to an administrator and bypass security. Experts say ...
XDA Developers on MSN

Microsoft patches critical Notepad flaw that exploited Markdown files

Clicking the malicious links could launch "unverified protocols." ...