I am new to this, so there might be a reason behind it, which makes my feedback useless. Probably you are aware of the problem.
Anyway, as feedback on the download procedure is wanted, here it goes:
the Snap download as well as the whole ESA website (http://step.esa.int/main/download/snap-download/) are not in https but in http which (from my knowledge point of view) makes it easy for third parties to intervene in between and change the download. Therefore, it is a possible entry point for malware.