Flame malware used man-in-the-middle attack against Windows Update

Microsoft has released an emergency update for Windows revoking digital certificates that could be used to impersonate the Windows Update security service. The Flame malware exploited flaws related to this vulnerability realizing concerns that Windows Update might be compromised to distribute malware.

Story added 4. June 2012, content source with full text you can find at link above.