Sucuri Blog
  • Products
    • Website Security Platform
    • Website Firewall (WAF)
    • Multi-Site plans
    • Custom & Enterprise Plans
    • Partnerships
  • Features
    • Detection
      Website Monitoring & Alerts
    • Protection
      Future Website Hacks
    • Performance
      Speed Up Your Website
    • Response
      Help For Hacked Websites
    • Backups
      Disaster Recovery Plan
  • Resources
    • Guides
    • Webinars
    • Infographics
    • Blog
    • SiteCheck
    • Reports
    • Email Courses
  • Pricing
  • Immediate Help
  • Login
Sucuri Blog
  • Products
    • Website Security Platform
    • Website Firewall (WAF)
    • Multi-Site plans
    • Custom & Enterprise Plans
    • Partnerships
  • Features
    • Detection
      Website Monitoring & Alerts
    • Protection
      Future Website Hacks
    • Performance
      Speed Up Your Website
    • Response
      Help For Hacked Websites
    • Backups
      Disaster Recovery Plan
  • Resources
    • Guides
    • Webinars
    • Infographics
    • Blog
    • SiteCheck
    • Reports
    • Email Courses
  • Pricing
  • Immediate Help
  • Login
  • Immediate Help
Login
Login

New Customer?

Sign up now.
  • Submit a ticket
  • Knowledge base
  • Chat now

Puja Srivastava

28 posts
Puja Srivastava is a Security Analyst with a passion for fighting new and undetected malware threats. With over 7 years of experience in the field of malware research and security, Puja has honed her skills in detecting, monitoring, and cleaning malware from websites. Her responsibilities include website malware remediation, training, cross-training and mentoring new recruits and analysts from other departments, and handling escalations. Outside of work, Puja enjoys exploring new places and cuisines, experimenting with new recipes in the kitchen, and playing chess.
Malicious JavaScript Injects Fullscreen Iframe On a Wordpress Website
  • Security Advisory
  • Website Malware Infections
  • WordPress Security

Malicious JavaScript Injects Fullscreen Iframe On a WordPress Website

  • Puja Srivastava
  • August 13, 2025
Last month, we came across an ongoing JavaScript-based malware campaign affecting compromised websites. The malware injects a fullscreen iframe that silently loads content from a…
Read the Post
Unauthorized Admin User Created via Disguised Wordpress Plugin
  • Security Advisory
  • Website Malware Infections
  • WordPress Security

Unauthorized Admin User Created via Disguised WordPress Plugin

  • Puja Srivastava
  • July 29, 2025
Recently at Sucuri, we investigated a malware case reported by one of our clients. Their WordPress site was compromised, and the attacker had installed a…
Read the Post
Uncovering a Stealthy WordPress Backdoor in mu-plugins
  • Security Advisory
  • WordPress Security

Uncovering a Stealthy WordPress Backdoor in mu-plugins

  • Puja Srivastava
  • July 22, 2025
Recently, our team uncovered a particularly sneaky piece of malware tucked away in a place many WordPress users don’t even know exists: the mu-plugins folder.…
Read the Post
WordPress Redirect Malware Hidden in Google Tag Manager Code
  • Security Advisory
  • Website Malware Infections
  • WordPress Security

WordPress Redirect Malware Hidden in Google Tag Manager Code

  • Puja Srivastava
  • July 17, 2025
Last month, a customer contacted us after noticing their WordPress website was unexpectedly redirecting to a spam domain. The redirection occurred approximately 4-5 seconds after…
Read the Post
Stealthy PHP Malware Uses ZIP Archive to Redirect WordPress Visitors
  • Security Advisory
  • Website Malware Infections
  • WordPress Security

Stealthy PHP Malware Uses ZIP Archive to Redirect WordPress Visitors

  • Puja Srivastava
  • July 11, 2025
Last month, a customer contacted us, concerned about persistent and inexplicable redirects on their WordPress website. Our investigation quickly unearthed a sophisticated piece of malware…
Read the Post
Stealthy WordPress Malware Drops Windows Trojan via PHP Backdoor
  • Security Advisory
  • Website Malware Infections
  • WordPress Security

Stealthy WordPress Malware Drops Windows Trojan via PHP Backdoor

  • Puja Srivastava
  • June 27, 2025
Last month, we encountered a particularly interesting and complex malware case that stood out from the usual infections we see in compromised WordPress websites. At…
Read the Post
Analysis of a Malicious WordPress Plugin The Covert Redirector
  • Security Advisory
  • Website Malware Infections
  • WordPress Security

Analysis of a Malicious WordPress Plugin: The Covert Redirector

  • Puja Srivastava
  • June 18, 2025
A few weeks ago, we received a support request from a website owner who was experiencing unexpected redirects. Visitors landed on the website normally, but…
Read the Post
Fake Java Update Popup Found in Malicious WordPress Plugin
  • Security Advisory
  • Website Malware Infections
  • WordPress Security

Fake Java Update Popup Found in Malicious WordPress Plugin

  • Puja Srivastava
  • May 27, 2025
We recently assisted a customer who reported a persistent and concerning “Java Update” pop-up appearing on their WordPress website. This type of deceptive notification is…
Read the Post
Fake Google Meet Page Tricks Users into Running PowerShell Malware
  • Security Advisory
  • Website Malware Infections
  • WordPress Security

Fake Google Meet Page Tricks Users into Running PowerShell Malware

  • Puja Srivastava
  • May 23, 2025
Last month, a customer reached out to us after noticing suspicious URLs on their WordPress site. Visitors reported being prompted to perform unusual actions. We…
Read the Post
Ad-Jacked Cybercriminals Inject Fake Google Adsense into WordPress
  • Security Advisory
  • WordPress Security

Ad-Jacked: Cybercriminals Inject Google Adsense into WordPress

  • Puja Srivastava
  • April 15, 2025
Recently, we’ve encountered cases where WordPress websites were impacted by  Google Adsense hijackers. Attackers inject advertisements and scripts that steal website resources and pump ad…
Read the Post
Hidden Malware Strikes Again: Mu-Plugins Under Attack
  • Security Advisory
  • Website Malware Infections
  • WordPress Security

Hidden Malware Strikes Again: Mu-Plugins Under Attack

  • Puja Srivastava
  • March 28, 2025
At Sucuri, our security researchers continually monitor for new malware variants and infection techniques targeting WordPress websites. Recently, we’ve uncovered multiple cases where threat actors…
Read the Post
Search
Sucuri Sidebar Malware Removal to Signup Page
Sucuri Logo

Let’s Connect

Products
Website Firewall Website Security Platform WordPress Security Website Backups Hack Assistance Pricing
Solutions
DDoS Protection Malware Detection Malware Removal Malware Prevention Blacklist Removal SEO Spam Removal
USE CASES
Developers Ecommerce Agency Plans Enterprise Services HTTPS/2 Virtual Patching
Support
Knowledge Base SiteCheck Guides Research Labs Report Abuse Status Report
Company
About Sucuri Contact Blog Referral Partners Testimonials
Terms of Use Privacy Policy Do Not Sell My Personal Information Frequently Asked Questions

© 2025 GoDaddy Mediatemple, Inc., d/b/a Sucuri. All rights reserved.

back to top

'