EU age verification app: "Worry-free package" with security vulnerabilities
_tk_
35 points
1 comment
April 19, 2026
Related Discussions
Found 5 related stories in 108.7ms across 10,002 title embeddings via pgvector HNSW
- EU age verification app hacked, 2 minute How to posted johanstokking · 73 pts · April 17, 2026 · 73% similar
- EU Age Verification Hacked in 2 Minutes: What Happened bigbugbag · 12 pts · April 20, 2026 · 71% similar
- EU Age Control: The trojan horse for digital IDs gasull · 60 pts · April 26, 2026 · 68% similar
- Brussels launched an age checking app. Hackers took 2 minutes to break it axbyte · 189 pts · April 20, 2026 · 64% similar
- Age verification tech could put children at greater risk, says think tank robtherobber · 200 pts · June 08, 2026 · 64% similar
Discussion Highlights (1 comments)
hiciu
I'm not affiliated with the project, just curious. So there's demo app in the eu-digital-identity-wallet/av-app-android-wallet-ui github repo, I believe this is what's being tested. This is obviously not an app for an end user, it looks more like a template, to be implemented / integrated on the national level. There's also this controversial requirement for attestation / google play integrity / tpm on the device. That's not implemented in the demo app, in fact the twitter video linked in the article clearly shows security researcher launching a total commander android app with super user privileges. IMO selling this as an "EU age verification app" by the commission is dishonest. edit: so in the linked twitter thread, the security researcher is aware that this is demo app. So not only commission here is being dishonest...