Skip to main content
New Year’s Sale — Build a balanced news diet with 40% off Vantage
Get Started
SubscribeLogin
Published loading...Updated

EmEditor Editor Website Hacked to Deliver Infostealer Malware in Supply Chain Attack

Summary
A major supply chain attack targeting EmEditor, a widely used text editor software, has exposed millions of users to sophisticated infostealer malware. Between December 19 and December 22, 2025, the official EmEditor website fell victim to unauthorized modification, serving compromised installer files to unsuspecting users during a critical four-day window. The company confirmed that users […] The post EmEditor Editor Website Hacked to Deliver I…
DisclaimerThis story is only covered by news sources that have yet to be evaluated by the independent media monitoring agencies we use to assess the quality and reliability of news outlets on our platform. Learn more here.Cross Cancel Icon

3 Articles

eSecurityPlaneteSecurityPlanet

EmEditor Website Breach Turns Trusted Installer Into Infostealer Malware

A supply chain attack targeting the official EmEditor website quietly exposed users to infostealer malware after attackers tampered with the software’s download mechanism.  For four days in December 2025, users who downloaded EmEditor from its official site unknowingly installed a trojanized version of the editor. This poses “… a large-scale potential threat to related government and enterprise institutions,” said Qianxin researchers. Inside the…

Read Full Article
cybernoz.comcybernoz.com

EmEditor Website Breach Used To Spread Infostealer Malware - Cybernoz - Cybersecurity News

The popular text editor EmEditor fell victim to a sophisticated supply chain attack between December 19-22, 2025, in which attackers compromised the official website to distribute malware-laced installation packages. Emurasoft, Inc., the software’s developer, confirmed on December 23 that malicious MSI installers were served to users through tampered download links, bearing fraudulent digital signatures from “WALSHAM INVESTMENTS LIMITED” instead…

Read Full Article
IT Security News - cybersecurity, infosecurity newsIT Security News - cybersecurity, infosecurity news

EmEditor Website Breach Used to Spread Infostealer Malware

The popular text editor EmEditor fell victim to a sophisticated supply chain attack between December 19-22, 2025, in which attackers compromised the official website to distribute malware-laced installation packages. Emurasoft, Inc., the software’s developer, confirmed on December 23 that malicious MSI installers were served to users through tampered download links, bearing fraudulent digital signatures from […] The post EmEditor Website Breach …

Read Full Article
Think freely.Subscribe and get full access to Ground NewsSubscriptions start at $9.99/yearSubscribe

Bias Distribution

  • There is no tracked Bias information for the sources covering this story.

Factuality Info Icon

To view factuality data please Upgrade to Premium

Ownership

Info Icon

To view ownership data please Upgrade to Vantage

IT Security News - cybersecurity, infosecurity news broke the news in on Tuesday, December 30, 2025.
Too Big Arrow Icon
Sources are mostly out of (0)

Similar News Topics

Supply Chain icon

Supply Chain

Software icon

Software

Cyberattacks icon

Cyberattacks

Cybersecurity icon

Cybersecurity

Business & Markets icon

Business & Markets

News
Feed Dots Icon
For You
Search Icon
SearchBlindspot LogoBlindspotLocal