qcontinuum1

qcontinuum1 / spying-extensions

Public

Report on spying browser extensions by Q Continuum group.

101
2
100% credibility
Found Feb 13, 2026 at 54 stars -- GitGems finds repos before they trend. Get early access to the next one.
Sign Up Free
AI Analysis
HTML
AI Summary

This repository publishes a security research report identifying 287 Chrome extensions that secretly transmit users' browsing history to third-party servers, impacting around 37 million users.

How It Works

1
🔍 Discover the Warning

You hear about a study revealing sneaky Chrome add-ons that track your web visits and share them without permission.

2
📖 Read the Report

You open the page to see a clear summary of hundreds of popular add-ons spying on millions of people.

3
😱 Spot the Shocking List

You scroll to the eye-opening table listing familiar add-ons like ad blockers and helpers that secretly send your browsing history away.

4
Check Your Add-ons

You compare the list to the ones you have installed on your browser.

5
Is Yours Listed?
🗑️
Yes, Remove It

You quickly uninstall the risky add-on to stop the spying.

👀
No, But Stay Alert

You keep using yours but decide to watch for updates or similar issues.

🛡️ Browse Safely Now

With risky add-ons gone, you feel more secure knowing your web habits stay private.

Sign up to see the full architecture

4 more

Sign Up Free

Star Growth

See how this repo grew from 54 to 101 stars Sign Up Free
Repurpose This Repo

Repurpose is a Pro feature

Generate ready-to-use prompts for X threads, LinkedIn posts, blog posts, YouTube scripts, and more -- with full repo context baked in.

Unlock Repurpose
AI-Generated Review

What is spying-extensions?

This HTML report from the Q Continuum group scans and exposes 287 Chrome browser extensions spying on 37M users' browsing history via outbound leaks to data brokers. It delivers IoCs like extension lists, decoded exfiltration payloads, honeypot hits, and actor mappings (e.g., Similarweb, Offidocs), solving the blind spot in extension privacy. Developers get a public resource for quick audits, complete with PDF/HTML exports and archived links.

Why is it gaining traction?

Unlike vague privacy warnings, it provides verifiable examples—curl snippets, actor OSINT, and user-count breakdowns—making spying tangible for browser security checks. The 37M-user scale (1% of Chrome) hits home for devs relying on extensions daily, fueling shares on github issue reports and repo spam flags. Standout: Actionable tables for purging leakers without manual MITMproxy hunts.

Who should use this?

Extension developers cross-checking their add-ons against leaks before launch. Security engineers at companies filing github bug reports or user reports on spying extensions in team stacks. Privacy-focused frontend teams auditing ad blockers, AI tools, or productivity plugins tied to data brokers.

Verdict

Solid intel for blacklisting despite 1.0% credibility score, 44 stars, and README-only docs—no tests or updates signal low maturity. Use the lists to report github projects/repos now, but cross-verify with your own scans.

(198 words)

Sign up to read the full AI review Sign Up Free

Similar repos coming soon.