‘Java Software Critical Update’ Pop-up Alert

The 'Java Software Critical Update' pop-up alert is an attack that seeks to install undesirable or illegal software onto your PC, potentially including threats. With its payload disguised as a standard security patch for Java, the 'Java Software Critical Update' pop-up alert can safely beguile victims whenever they visit a website that loads its pop-up, either as the result of the hacking efforts of criminals or of Web pages that deliberately are designed to load such content. All suitable Web-browsing security features and protocols should be upheld to protect your PC from the risks associated with this pop-up, and malware experts personally would recommend conducting anti-malware scanning analyzes on any computer that has come into contact with any form of 'Java Software Critical Update' pop-up alert.

A Critical Update with Critical Consequences for Your Computer

Although the phrase 'critical' often is used as a synonym for 'important,' it also can express disapproval or, in gaming circles, refer to especially grievous wounds. The latter is particularly relevant when one thinks of the serendipitously-named 'Java Software Critical Update' pop-up alert, which uses a 'security fix' disguise to attack your computer. Like other attacks of its type, the 'Java Software Critical Update' pop-up alert is formatted with the standard appearance of a Java update from Oracle, a company that issues security fixes for Java and JavaScript on an ongoing basis.

Unlike a legitimate update from Oracle, the 'Java Software Critical Update' pop-up alert doesn't mention the relevant version of Java upfront, displays itself on websites completely unrelated to the company and has been known to include typos (such as 'bee' in lieu of 'been'). In spite of these obvious giveaways, malware researchers worry that some victims could be infected by the 'Java Software Critical Update' pop-up alert due to its implication of urgent security fixes being required immediately.

PC users who install the 'Java Software Critical Update' pop-up alert's patch may compromise their computers, ultimately allowing criminals to install harmful software and/or unwanted programs. Screen-locking Police Ransomware Trojans, firewall-evading backdoor Trojans and worms that spread through peripheral devices are some of the many high-level PC threats that malware researchers have seen distributed in this fashion.

The 'Java Software Critical Update' pop-up alert is a new variant of old attacks that have been seen for years, and all of the same methods of defending against other kind of attacks are just as applicable for the 'Java Software Critical Update' pop-up alert. Malware researchers always recommend using such basic security habits as:

• Disabling Java, Flash and other exploitable features, including most website scripts, whenever you're browsing a site that isn't trustworthy.
• Patching your software regularly from reputable sources only (as opposed to a random website pop-up like the 'Java Software Critical Update' pop-up alert). This will cut down on vulnerabilities that could be used to install threats through the 'Java Software Critical Update' pop-up alert and its kin.
• Using anti-malware tools with Web-browsing security features, such as threatening URL blacklisting functions.

A PC that uses all of these defenses together shouldn't have much to worry about from a 'Java Software Critical Update' pop-up alert. However, as a precaution against a potential threat contamination, scanning any computer that comes into contact with the 'Java Software Critical Update' pop-up alert or any other attempted drive-by-download is pure common sense.

Technical Details