Nothing in that article shows how to check if you’ve been affected however the dev’s recommend you manually install 8.9.1 or higher to mitigate this type of attack from happening again.

edit:
I suppose I didn’t either, they haven’t said if there are any clear indicators that you’ve been compromised however if you allowed npp to auto update before manually updating to 8.9.1 then you were within the vulnerability window. If auto update got you to 8.9.1 that does not necessarily mean you were not affected.

Just to be clear, npp itself wasn’t compromised, the hosting provider for distribution was compromised and redirecting update requests to malicious servers, basically MITM, however npp after 8.9.1 hardens against this attack by verifying the downloaded file and using https.