[morpheuskafka]

I'm assuming there will never be an official proof of concept release, so how long do you all think it will be before we see widely available exploit code and fake certificates out in the wild?

[spuz]

Tpcaek has said elsewhere in this thread:

> Saleem Rashid worked out a POC for this on Slack in something like 45 minutes today

So I would be amazed if there were not some malicious certificates out there already.

[Maxious]

some examples of fake certificates/signings https://twitter.com/matthew_d_green/status/12172461614400512... https://twitter.com/subTee/status/1217300590696501249