You can infect your PC with malware without ever leaving Notepad, thanks to recent updates and additions. Hooray.

Microsoft fixes a critical Notepad vulnerability in Windows 11 that could allow remote code execution via malicious Markdown files. Here are the details ...

Active exploitation of BeyondTrust enables unauthenticated RCE as CISA adds Apple, Microsoft, SolarWinds, and Notepad++ flaws ...

Google fixes actively exploited Chrome zero-day CVE-2026-2441, a high-severity CSS use-after-free flaw enabling sandboxed remote code execution.

There's a remote code execution vulnerability in Notepad which is leveraged via the recently introduced formatting abilities to make tables in the app.

Google has released an emergency update to patch an actively exploited zero-day—the first Chrome zero-day of the year.

Even the company’s Notepad app, which once allowed users to jot down notes in plain text, has turned into a bloated, ...

CERT-In warns of a high-risk Chrome vulnerability on Windows, macOS and Linux. Update Chrome now to prevent system compromise ...

Vulnerabilities with high to critical severity ratings affecting popular Visual Studio Code (VSCode) extensions collectively downloaded more than 128 million times could be exploited to steal local ...

This month's big batch of security updates addresses nearly 60 vulnerabilities across Microsoft's various products and ...

The campaign exploits an Office vulnerability to deliver the modular XWorm RAT, chaining HTA, PowerShell, and in-memory .NET execution to sidestep detection and expand post-compromise control.

The Koi deal comes one week after Palo Alto closed its acquisition of CyberArk to bolster its AI security portfolio.