Zscaler experts have spotted several malicious files on the Google developer website

Aug 2, 2013 20:16 GMT  ·  By

Cybercriminals have started hosting their malicious creations on legitimate websites in an effort to keep their operations running for as long as possible. Security researchers have found that they’ve even started hosting malware on Google Code, Google’s official developer website.

Back in May, Zscaler found a malicious Flash Player update on Dropbox. Now, experts have spotted a similar update file on Google Code.

In addition to the bogus Flash Player update, several other pieces of malware have been identified on Google Code.

“This incident sets a precedent that no file hosting service is beyond reproach. Blind trust of specific domains should not be tolerated from an organizational or personal perspective. So set those security privileges to kill and keep one eye open for shady files coming from even a seemingly trusted location,” Zscaler’s Chris Mannon explained in a blog post.