Back in 2010, the world of cryptography faced a wake-up call when sophisticated malware known as Flame hijacked Microsoft’s update process. This event, which came to light in 2012, serves as a stark reminder of how critical cryptographic security is.

The lynchpin of this attack was an exploit of MD5, a cryptographic hash function that had been vulnerable since 2004. By forging a digital signature based on the flawed MD5 algorithm, attackers managed to push a malicious update through a network. The potential for global catastrophe was real, and it’s a chilling thought.

This incident is now a cautionary tale for cryptography engineers everywhere. Since then, two more pieces of research have demonstrated just how weak MD5 can be. One involved 200 Sony Playstations running for three days to generate a rogue TLS certificate, highlighting the ease with which such attacks can be mounted.

Despite these known vulnerabilities, parts of Microsoft’s infrastructure still relied on MD5 until recently. Determined to avoid similar future catastrophes, organizations are now rolling out new cryptographic algorithms to replace RSA and elliptic curves. These have been known for over three decades to be vulnerable to Shor’s algorithm—a series of equations that could allow a powerful quantum computer to solve the mathematical problems underpinning these algorithms in polynomial time, significantly faster than classical computers.

The race is on: as quantum technology advances, so too must our cryptographic defenses. The future depends on it.