Summary:

- In 2025, a supply chain attack targeted the popular Notepad software, compromising its code and allowing hackers to distribute malware through the application.
- The attack went undetected for several months, affecting millions of users who downloaded the infected version of Notepad.
- Security researchers discovered the attack and worked with the software vendor to issue a patch, but the incident highlighted the importance of securing the software supply chain to prevent such widespread attacks in the future.