wasopensourcethenswitched toclosedexecutescorefunctionswellRatedover 4starsusesWASMmisleadsusersabout datacollectionexfiltratesfull URLsrequirespermissionstochange/readall sitesobfuscatesnetworkrequestsowned byadatabrokergotpopularthen wassold offnoprivacypolicycontactemail isnotmonitoredMisleadingprivacypolicyfrom averifiedpublishertargetedtowardskidsexfiltratesAI chatshasrandomdomainsfor exfilcommitsaffiliatefrauddoesn't tellusers aboutupdates toprivacypolicyis in theprivacy andsecuritycategoryremindersaboutaccepting"opt in"privacy policyis afeaturedextensiondarkpattern ononboardingcollectsshoppingdatawasopensourcethenswitched toclosedexecutescorefunctionswellRatedover 4starsusesWASMmisleadsusersabout datacollectionexfiltratesfull URLsrequirespermissionstochange/readall sitesobfuscatesnetworkrequestsowned byadatabrokergotpopularthen wassold offnoprivacypolicycontactemail isnotmonitoredMisleadingprivacypolicyfrom averifiedpublishertargetedtowardskidsexfiltratesAI chatshasrandomdomainsfor exfilcommitsaffiliatefrauddoesn't tellusers aboutupdates toprivacypolicyis in theprivacy andsecuritycategoryremindersaboutaccepting"opt in"privacy policyis afeaturedextensiondarkpattern ononboardingcollectsshoppingdata

Malicious Extension Bingo - Call List

(Print) Use this randomly generated list as your call list when playing the game. There is no need to say the BINGO column name. Place some kind of mark (like an X, a checkmark, a dot, tally mark, etc) on each cell as you announce it, to keep track. You can also cut out each item, place them in a bag and pull words from the bag.


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
  1. was opensource then switched to closed
  2. executes core functions well
  3. Rated over 4 stars
  4. uses WASM
  5. misleads users about data collection
  6. exfiltrates full URLs
  7. requires permissions to change/read all sites
  8. obfuscates network requests
  9. owned by a databroker
  10. got popular then was sold off
  11. no privacy policy
  12. contact email is not monitored
  13. Misleading privacy policy
  14. from a verified publisher
  15. targeted towards kids
  16. exfiltrates AI chats
  17. has random domains for exfil
  18. commits affiliate fraud
  19. doesn't tell users about updates to privacy policy
  20. is in the privacy and security category
  21. reminders about accepting "opt in" privacy policy
  22. is a featured extension
  23. dark pattern on onboarding
  24. collects shopping data