Regardless of the intent, it was poorly executed and highlights security gaps inherent in the distribution model of browser extensions.