Windows stealth updates...
... brought a lot of work to black hats. This is now their primary
goal - to be able to fake .microsoft.com domain globally, to be able
to *provide* such stealth updates to all users with the software they
want to be present on all Windows machines.
Or do they already use it as the primary mean of distributing the
malicious software?
Not enough paranoia? ;-)