35
Technology6h 31m ago

Google and Microsoft removed the ModHeader browser extension after researchers discovered a dormant data collector within it designed to encrypt and upload visited domain information.

Archive Window: 7 Days Left

Global

Who
Google, Microsoft, Researchers
What
Google and Microsoft removed the ModHeader browser extension after researchers discovered a dormant data collector within it designed to encrypt and upload visited domain information.
When
Mon, 13 Jul 2026 17:17:00 GMT · 6h 31m ago
Where
Global ·
Why
A dormant collector was found within the ModHeader extension that was capable of encrypting and uploading up to 1,000 visited domains.
The Frontline Impact

How this affects you

The ModHeader browser extension, with 1.6 million installations, has been removed from distribution channels by Google and Microsoft due to a security vulnerability.

Story chain

2 events in this thread
  1. Technology6h 31m ago
    Google and Microsoft removed the ModHeader browser extension after researchers discovered it contained a dormant data collection feature.
    Open article
  2. Currently Reading6h 31m ago
    Google and Microsoft removed the ModHeader browser extension after researchers discovered a dormant data collector within it designed to encrypt and upload visited domain information.

Verified Sources & Citations