Two out of every 1,000 RSA moduli offer no security, researchers say. Researchers say multi-secret cryptosystems such as RSA are significantly riskier than single-secret ones. Researchers surmise that if they could figure out the flaw, others – perhaps those with sinister motives – could as well. No known instance of a significant breach has occurred because of the reported flaw. One positive takeaway from this paper is that members of the information security community identified the problem – not a group of hackers – and others can step in to help fix it.”]
Source: https://www.govinfosecurity.com/blogs/when-998-security-may-be-sufficient-p-1197