The Verge

Apple says collision in child-abuse hashing system is not a concern

Researchers have produced a collision in iOS’s built-in hash function, raising new concerns about Apple’s CSAM-scanning system — but Apple says the finding does not threaten the integrity of the ...
GIGAZINE

It turns out that OpenWrt had a vulnerability that allowed collision attacks to be performed because it only used 12 digits of the SHA-256 hash value

It has been revealed that the update system of the embedded Linux distribution ' OpenWrt ' had a vulnerability that could cause malicious packages to be mistaken for genuine packages. The SHA-256 hash ...
Ars Technica

How do you know when md5 will bite you with collisions?

In general, unless you're specifically tailoring input to produce collisions, collision risk of a (formerly, in case of md5 and by now also sha1) cryptographically secure hash function is not ...
Ars Technica

At death’s door for years, widely used SHA1 function is now dead

For more than six years, the SHA1 cryptographic hash function underpinning Internet security has been at death’s door. Now it’s officially dead, thanks to the submission of the first known instance of ...
Bleeping Computer

SHA1 Collision Attack Makes Its First Victim: Subversion Repositories

It took only one day for the SHA1 collision attack revealed by Google on Thursday to make its first victims after developers of the WebKit browser engine broke their Subversion (SVN) source code ...
New Scientist

Hashing exploit threatens digital security

Cryptographers have found a sneaky way to make a digital signature from one document appear linked to a fraudulent document without invalidating the signature and giving the fraud away. The ...