Shifting the updater to employ https rather than recent plaintext http would be excellent and straightforward starting point. It can be great reward if it also checks new exe's signature, but in 1st location, it must not enable any one on the best way to intercept requests so easily.*) make DLL hijacking attack not do the job: Winbox will never loo