Particularly installer scripts that are run by the trendy technique of

  curl -L http://www.example.com/some/cool/thing/install.sh | bash

Particularly risky if the protocol is not https. Even worse when the right-hand command is "sudo bash"