Quoted from Wolfmarsh:Stern is the only company right now I would trust to even attempt this.
This costs money, and a decent chunk of it, to do it correctly and securely. Setting up some code in a pin to download an update is easy. Making it secure is hard. They will also need to ensure the update source can't be poisoned or impersonated. The update service will also need to be high availability (HA) for something like this.
I still get hijacked emails—seemingly from Stern employees—asking me to pay some phony invoice, so these guys have some work to do security-wise before even thinking about doing something like this.