In a security update posted on the project’s website, the development team said the attack did not exploit a flaw in the editor’s source code itself. Instead, the compromise occurred at the infrastructure level, involving systems used to deliver software updates.
First seen on therecord.media
Jump to article: therecord.media/popular-text-editor-hijacked-by-suspected-state-sponsored-hackers
