Attacker-controlled endpoint used to exfiltrate combined fragment data, specifically stolen Gmail contents, via URL parameters.