Years later, Microsoft decided to protect us. As of April 1, 2022 (not April Fool's Day prank), Microsoft seems to have finally added the https protocol to downloads for updates, instead of the unencrypted http protocol.
For years Google & Co has been preparing for us that our communication with the sites should be done through the https protocol, for guaranteed communications through encryption from servers that use SSL certificates.
At Microsoft, however, for many years update package downloads did not use an encrypted protocol. So it was time for her company change how update packets are received over https to increase security.
The update packages are of course provided with SHA keys and digital signatures and are thus protected from any tampering. However, most programs browsing they had problems with http addresses.
From April 1, 2022, all update downloads from the company's update servers and from Microsoft Update Catalog are performed via the https protocol. So the links from the Microsoft Update Catalog will have the following shape:
https://catalog.s.download.windowsupdate.com/c/msdownload/update
instead:
http://download.windowsupdate.com/d/msdownload/update/
It seems that not only the https protocol is enforced, but the download starts from one as well subdomains (catalog.s), where s in address URL probably means secure.
Nothing changes for downloads from the Microsoft Update Catalog - except of course the links that will probably need to be customized.
The company could fix this issue very simply with one direction.
