Malicious gadgets — if a user were to download one of them it could be used in a variety of other attacks, including one where one gadget steals information from another, a valuable attack against gadgets that store personal user information according to reports.

It’s a threat even for the biggest Web companies, including Google Inc., whose “gadgets” — little programs like calendars or daily photo feeds that users can implant onto their personalized Google home pages — are increasingly juicy targets for hackers, two security researchers said Wednesday.

The issue is that users building their own customized applications, and distributing them through Google, might have evil intentions and try to exploit those programs once they’re installed on users’ pages. Many users are inclined to inherently trust what they download from Google.

Due to the lack of moderation for uploaded gadgets there’s no way of telling if something is bad until it’s too late.

Beware of what you download!