The article doesn't say if anyone has actually been affected by this exploit, but to be on the safe side, Apple ought to figure out a way to authenticate software updates.There are ways to do this, unfortunately the software is illegal in the United States.
I think a digital certificate derived from Apple's IP address would be legal enough.