2026.06.01 21:56:53 (Mastodon 116677083993481766, Twitter 2061567705929695719) from Daniel J. Bernstein:
Posted new paper "Exploiting ML-DSA bugs" and demo scripts: https://cr.yp.to/papers.html#mldsa The current panic to roll out new ML-DSA code in place of ECC signatures will give away tons of keys to attackers through the predictable flood of efficiently exploitable software vulnerabilities.