Electronic Arts really has it nailed. Somehow they've managed to con millions of us into the weekly ritual of playing solitaire games that we might not necessarily even like for completely worthless reward badges. All it costs them is the bandwith and the database hardware to track who has won what. And we actually pay them for this privilege.
Apparently, Electronic Arts doesn't care that this is happening, because they haven't bothered to put a stop to it. They could do this very easily by checking the Referer header on image requests (though the more determined among us could forge that), or slightly less easily by changing the badge naming scheme so it's not quite so guessable.
I was originally going to make each badge link open the correct page on the Pogo server and do some logic to determine which of them the particular user clicking the link had already won, but there are several parameters in these page requests that actually change from player to player (which doesn't make a lot of programmatic sense).
However, shame on the Electronic Arts programmers for putting this in a URL parameter in the first place.