Cybersecurity Challenges Associated with Software Updates
Vol. 14 No. 1 (2025), Information technology applications
Vol. 14 No. 1 (2025)

Cybersecurity Challenges Associated with Software Updates

Information technology applications
Published 2025-11-24
  • Robert Valík
Robert Valík
PDF

Keywords

Software updates, security, vulnerability

How to Cite

Valík, R. (2025). Cybersecurity Challenges Associated with Software Updates. Information Technology Applications, 14(1), 43–50. Retrieved from https://www.itajournal.com/index.php/ita/article/view/252
ACM ACS APA ABNT Chicago Harvard IEEE MLA Turabian Vancouver

Download Citation

Endnote/Zotero/Mendeley (RIS) BibTeX

Abstract

In the past, software distribution was one of the tougher problems for independent developers. With the rise and ubiquitousness of broadband internet connectivity, this problem has been solved as these developers have the ability to directly distribute software updates to their customers. As the focus is on fast-paced software delivery, they may lack practical knowledge in some other, more subtle aspects of software distribution, e.g. information security.

Our hypothesis is that there is a lack of security auditing before the final distribution. Using a controlled environment, we analyzed outgoing network traffic to identify the communicating during update sequence.

We used acquired data to identify a specific service that serves software update packages. After we identified the service, we tried to force the software to use our modified service, download a modified update package and execute it. As we were able to succeed, this outcome fully supports our above assumptions.

PDF
Creative Commons License

This work is licensed under a Creative Commons Attribution 4.0 International License.

Copyright (c) 2025 Information Technology Applications