Security · 1h ago
ModHeader extension with 1.6M installs pulled for data harvesting
Security researchers discovered that the popular ModHeader browser extension, with 1.6 million installs, was exfiltrating visited domains to a third-party server controlled by a Chinese actor. Google and Microsoft removed the extension from their stores after being alerted. The extension had been trusted for years, highlighting risks in browser add-ons.
Meridian48 take
This incident underscores the vulnerability of browser extensions as a vector for data theft, even when widely used and seemingly benign.
Read the full reporting
Experts get Google, Microsoft to pull trusted ModHeader with 1.6 million installs after finding it could harvest all kinds of data →
TechRadar
browser-extensiondata-exfiltration