As I have always believed, any software that has an auto-update feature is ripe for cracking, and once cracked will give the insurgent(s) unlimited freedom to all computers connected to the auto-update "feature".  It like having digital valet service for crackers.

http://news.cnet.com/8301-1009_3-57446652-83/flame-malware-network-based-on-shadowy-domains-fake-names/

http://www.foxnews.com/scitech/2012/06/04/flame-disguised-itself-as-microsoft-program-to-attack-some-pcs-company-reveals/

http://arstechnica.com/security/2012/06/flame-malware-hijacks-windows-update-to-propogate

Apple is not far behind....

The real question for me is... this trojan/worm/malware home grown ?

cheers,

s.

Aside reference:

http://www.pburkholder.com/sysadmin/SSL-mitm/index.php

(as bit sexist as it should be 'person' or 'something' in the middle)