Crypto collision used to hijack Windows Update goes mainstream – Register
Crypto collision used to hijack Windows Update goes mainstream
Register Flame used a chosen-prefix collision attack against MD5 in order to generate a rogue CA certificate. The sophisticated malware, discovered in 2012 but probably circulating since 2010, was used in a cyber-espionage attack against Middle Eastern countries. |