Steam Deck vs Switch 2: $789 vs $449.99 [2026]
The Steam Deck vs Switch 2 question has become the defining handheld debate of 2026, and the two devices could hardly be more different. On one side sits Valve's Steam Deck OLED, an open Linux gaming…
The Steam Deck vs Switch 2 question has become the defining handheld debate of 2026, and the two devices could hardly be more different. On one side sits Valve's Steam Deck OLED, an open Linux gaming…
The two most important Windows gaming handhelds of the 2025–2026 cycle did not arrive quietly. Within two weeks…
Valve is about to do something it has not done since 2019: ship a virtual reality headset. The…
Valve's Steam Machine finally arrived this week, going on sale on June 29, 2026 after a seven-month wait since its November 2025…
A Valheim dedicated server is the difference between a world that only exists while the host is online and a persistent Viking…
The PS5 Pro vs PS5 decision looks very different in mid-2026 than it did at launch. After a second price increase that…
The Steam Deck vs ROG Ally question got a lot more complicated in 2026. On May 27, 2026, Valve raised the price…
Running your own Minecraft server is the difference between renting a world and owning one. Instead of paying a monthly bill and…
In June 2026, the PS5 vs Xbox Series X decision is stranger than it has ever been. After back-to-back price hikes, Sony's…
This domain has been home to the SHAttered SHA-1 collision project since 2017, and is now a hub for cryptography, security and privacy reporting. The full origin story of the project, the two proof PDFs and the research credits live below.
On 23 February 2017, researchers at CWI Amsterdam and Google showed the world the first real collision for the SHA-1 hash function. The project was called SHAttered, and this domain has been its home ever since. The two files that prove the break are still here to download.
A cryptographic hash takes any file and returns a short fixed-length fingerprint. The promise is simple: change a single bit of the file and the fingerprint changes too, and no two different files should ever share one. A collision breaks that promise. It is a pair of distinct inputs that produce the exact same hash. For a function used to sign software, certificates and documents, a collision is not a curiosity. It is a crack in the foundation.
The team did not just argue that SHA-1 was weak on paper. They built the evidence. Two PDF files, visibly different and carrying different content, share one identical SHA-1 value: 38762cf7f55934b34d179ae6a4c80cadccbb7f0a. Run either file through SHA-1 and the answer matches. Run them through SHA-256 and the answer differs, which is how anyone can confirm they are genuinely two separate files.
The break was expensive, and that was part of the point. Producing the collision took roughly nine quintillion SHA-1 computations, the work of about 6,500 CPU-years and 110 GPU-years run in parallel. That scale kept the attack out of reach for a casual attacker in 2017, yet it ran thousands of times faster than trying every possibility by brute force. The direction of travel was clear: the cost would only fall.
Once a working collision exists, trust in a hash erodes quickly. Within months the result pushed browsers, certificate authorities and version-control systems to drop SHA-1 for anything security-sensitive. Git added collision detection. TLS certificates signed with SHA-1 were phased out. The lesson reached far past one algorithm: a function can look safe for years and still fall the moment the maths and the hardware line up.
SHAttered was the work of Marc Stevens and Pierre Karpman at CWI Amsterdam, together with Elie Bursztein, Ange Albertini and Yarik Markov at Google. It built on years of earlier cryptanalysis of the SHA-1 design. The full technical paper that documents the method is preserved here.
The same questions that drove SHAttered run through everything we cover here: how hashing works, where it is used, and how systems prove they have not cheated. These guides pick up where the research leaves off.
Hash functions, the SHA family, encryption and digital signatures.
Breaches, passwords, TLS and staying secure online.
VPNs, Tor, encrypted messaging and staying anonymous.
How blockchains use hashing, wallets and crypto safety.
How SHA-256 lets you verify an outcome for yourself.
Beyond the original SHA-1 collision proof, the site now publishes ongoing coverage across cryptography, cybersecurity, privacy, cryptocurrency and provably-fair systems. Every article is editorial, lightly-opinionated and built on primary sources where possible.