Alerts
Events
DCR
Explore Cyware Products
Alerts
Events
DCR
Go to listing page
Fake Java Update Popup Found in Malicious WordPress Plugin
Malware and Vulnerabilities
May 28, 2025
sucuri
A malicious WordPress plugin disguised as "Yoast SEO" was found injecting a fake "Java Update" pop-up to trick users into downloading malware. The plugin injects JavaScript into the of pages, avoiding macOS, mobile, and Safari users.
Read More
WordPress malware
Fake Java Update
Malicious Plugin
Yoast SEO Impersonation
Website Infection
Publisher
Previous
Structured Query Language Injection in frappe.desk.repo ...
Malware and Vulnerabilities
Next
China accuses Taiwan-linked group of cyberattack on loc ...
Breaches and Incidents
/https://cyware-ent.s3.amazonaws.com/image_bank/2136_shutterstock_625972778.jpg)
/https://cyware-ent.s3.amazonaws.com/image_bank/iStock_64015865_SMALL.jpg)
