Shifting the updater to work with https as an alternative to present plaintext http might be good and simple initial step. It can be awesome bonus if it also checks new exe's signature, but in initially area, it mustn't enable any one on the best way to intercept requests https://winboxapk64021.popup-blog.com/34296641/winbox-login-secrets
