Threats Tagged 'modheader'
View all threats tagged with 'modheader'. Filter and sort to focus on specific types of threats.
Stop chasing alerts. Route them.
Start free, then upgrade once to turn Radar into an automated delivery engine for your security stack.
Custom feeds / Automations: email, Slack, webhooks, SIEM/MISP / API access (baseline limits)
API access activates after upgrading in Console -> Billing.
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.
Filter Threats
Narrow down the results by type, severity, or affected countries
Threats Tagged 'modheader'
Click on any threat for detailed analysis and mitigation recommendations
ModHeader Malware: Inside the Chrome Spyware Google Removed 0 ModHeader, a widely used Chrome developer extension, was removed from the Chrome Web Store after being found to contain hidden spyware and adware. Version 7.0.18 included a covert SDK disguised as a date library that harvested visited domain names, encrypted them, and was set to upload this data daily to a suspicious domain. Although the data collection was dormant due to an empty allowlist, the exfiltration infrastructure was fully present. The extension also exhibited adware behavior by opening affiliate tabs on updates, including on enterprise-managed devices. The malicious code was signed by the official Chrome Web Store, affecting both Chrome and Edge users. Forensic analysis showed the extension locally stored a large amount of sensitive HTTP headers, but no successful data exfiltration was observed in analyzed systems. Join the discussion | AlienVault OTX General | 07/14/2026, 08:04:43 UTC Added: 07/14/2026, 10:02:33 UTC |
Showing 1 to 1 of 1 result