http://www.theregister.co.uk/2014/11/05/md5_hash_collision/ The cryptographic hash collision attack used by cyberspies to subvert Microsoft's Windows Update has gone mainstream, revealing that MD5 is hopelessly broken.