The INRIA institute in France have devised several attacks which prove that the continued support for MD5 in cryptographic protocols is much more dangerous than previously believed. The attacks are dubbed SLOTH, which stands for Security Losses from Obsolete and Truncated Transcript Hashes, but is also a comment on the overly slow pace of phasing out legacy and insecure algorithms like MD5 from protocols. They showed that man-in-the-middle attackers can impersonate clients to servers that use MD5 hashing for handshake transcripts. Intercepting and forwarding credentials is also possible.”]