Researchers say they hacked a known weakness in the Internet’s digital certificate infrastructure. They used a cluster of more than 200 PlayStation 3s to crack the MD5 “collision” weakness. Experts say the attack is a major one, affecting secure Websites and email servers. Around 9,000 of the 30,000 Web digital certificates the researchers collected were signed with MD5 — and 97 percent of those were issued by one CA, RapidSSL. The researchers were able to impersonate a legitimate Website, complete with the padlock icon accompanying actual secured sites.”]
Source: https://www.darkreading.com/attacks-breaches/new-ssl-hack-imperils-secure-websites