@xomx said in autoupdater and connection temp.sh:

the investigation is still ongoing and @donho will surely disclose more whenever/if it’ll be possible to do so.

Unfortunatly, the investigation actually concluded the day of the announcement (just after the announcement). As I mentioned at the bottom of my announce Edit (February 2, 2026), the IR team was unable to determine the hijacking method, : Our IR team spent a week analyzing roughly 400 GB of server logs provided by the former hosting provider. While signs of an intrusion were identified, no concrete indicators of compromise - such as binary hashes, domains, or IP addresses - were found.

@PeterJones said in Chinese compromise began as early as NP++ v8.6.9:

@Cam-Krout,

That’s not evidence of Chinese (state-sponsored) involvement or compromise. That’s specifically the intentional link to the v8.6.9 https://notepad-plus-plus.org/news/v869-about-taiwan/ “Support Taiwan’s Independence” (which is what google translate says those characters mean). The the developer is a huge proponent of such (and his statements in the N++ About box and release pages has a history of taunting state-sponsored attacks on Notepad++ and its infrastructure).

So that’s rather evidence of the reasons behind the attack, not a symptom of the attack.

Oh my, I stand corrected. Would have freaked me out less had it used my locale to determine the language for the hyperlink text (I saw that, plus 32-bit, plus a logo I didn’t recognize, and I panicked!)

But regardless, I appreciate the heads up.

@Fred-Morant ,

Regular expressions don’t work the way you expect in search-backwards mode, so it’s disabled except for advanced users.

Advanced users can look at the user manual and figure out how to enable regexBackward4PowerUser

https://npp-user-manual.org/docs/preferences/#preferences-for-advanced-users

@h-jangra Bild1.png I apologize, but I can’t find a way to set “:set tw=60 and :wrap or gq” in “NppVim”. I’m not a very experienced user; perhaps I’m missing some basic knowledge.