Too slow react-ion time Baddies are exploiting a critical bug in React Native's Metro development server to deliver malware ...

CISA has expanded its KEV catalog with new SolarWinds, Notepad++, and Apple flaws, including two exploited as zero-days.

Notepad++'s updater usually pops up, but users can also prompt it by selecting the "?" dropdown in the taskbar. Christopher Harper is a tech writer with over a decade of experience writing how-tos and ...

The hosting provider's compromise allowed attackers to deliver malware through tainted software updates for six months.

Leaked API keys are nothing new, but the scale of the problem in front-end code has been largely a mystery - until now. Intruder's research team built a new secrets detection method and scanned 5 ...

Infrastructure delivering updates for Notepad++—a widely used text editor for Windows—was compromised for six months by ...

The popular Notepad alternative was hijacked by bad actors for several months in 2025, but the latest update appears to solve the issue.

Plus: Apple’s Lockdown mode keeps the FBI out of a reporter’s phone, Elon Musk’s Starlink cuts off Russian forces, and more.

A compromised Open VSX publisher account was used to distribute malicious extensions in a new GlassWorm supply chain attack.

A fresh wave of ransomware activity is being fueled by an uncomfortable mix of software supply-chain risk, rapidly weaponized zero-day ...

Worried about the Notepad++ supply chain attack? Notepad++ 8.9.2 adds "Double-Lock" security to stop malware hijacking.

We list the best note-taking apps, to make it simple and easy to make notes at the office, at home, and on the move. Note-taking apps have become increasingly popular, especially with business ...