The EU's age verification app can be hacked in 2 minutes. (Found by Paul Moore)

🦊 helloyanis :veripawed3:@furries.club · 5 days ago

The EU's age verification app can be hacked in 2 minutes. (Found by Paul Moore)

🦊 helloyanis :veripawed3:@furries.club · 5 days ago

@vapeloki The issue is, once again, not that the app allows you to bypass age verification or anything with how countries implement it. It’s that the app makes it extremely easy to get the data and spoof someone else, while claiming it’s secure and privacy focused while it is not.
A prectical example would be :
- Someone steals my phone
- They can access the app as they can bypass the PIN
- They can appear and act as myself on any platform that will use the system to verify
No matter how countries implement it or how the app is still “in development”, I’m just saying that this current implementation is insecure and can be very easily hacked besides what is being said on the public spaces like the dedicated website and the twitter account of the president of the EU commission.
I will probably stop replying to this thread now as you keep telling me the same arguments and even when I demonstrate how I disagree with them, you keep repeating the same ones so I’ll just stop wasting my time

vapeloki@lemmy.world · 5 days ago

I don’t say the code isn’t sloppy and should never go live I. It’s state.

I say: show me the app on the app store that you can download and use.

We are talking about security issues in a reference implementation.

We are not talking about an app. All this does is to spread fear and if this whole thing is not accepted by the Public because of this , what then? We land up in a privatisation scenario once again and then fuck privacy.

This state of the Codebase is fixable, but stop talking about it like it would be a released app. It is not.