5-year-old cracks Xbox One security by discovering simple flaw
Microsoft sends Kristoffer Von Hassel, aged five, four free games, $50, and a year of Xbox Live Gold after he reports how he managed to break Xbox Live security.
Avengers: Endgame Passes Avatar in the US Box Office, Still Behind Worldwide - GS Universe News Update Top New Games Out On Switch, PS4, Xbox One, And PC This Week -- May 19-25 2019 Game Of Thrones Series Finale Breakdown -- "The Iron Throne" E3 2019 Press Conference Schedule: Nintendo, Microsoft, And More - GS News Update More Gen 4 Pokémon, Glaceon, And Leafeon Now Available In Pokemon Go - GS News Update Apex Legends Update Tweaks Wraith And Pathfinder - GS News Update The Most Influential Games Of The 21st Century Video: League Of Legends Nintendo Pulls Animal Crossing: Pocket Camp and Fire Emblem Heroes from Belgium - GS News Update Path Of Exile: Legion - Official Trailer and Developer Commentary One Dauntless - Console Release Trailer | PlayStation 4, Xbox One, Epic Games Store Harry Potter: Wizards Unite - Monster Book Of Monsters Harasses Muggle Shopkeeper Trailer Overwatch Anniversary Event 2019 Gameplay Live
A 5-year-old boy managed to circumvent the Xbox One's security and log in to his father's account without entering the correct password.
Reported on the BBC, San Diego child Kristoffer Von Hassel has now been credited as a security researcher by Microsoft. In an alternate universe, the kid probably turned to the dark side, logged into your account, and pumped your life savings into FIFA Ultimate Team card packs.
The exploit, which has already been fixed, was discovered by Kristoffer after entering the wrong password when trying to access his dad's Xbox Live account. By first attempting to log in with an incorrect password, users are taken to a second verification screen, where the child found out that by simply filling up the password field with spaces he would be able to access the account.
After besting the multibillion dollar company, the preschooler said to local news station KGTV that he "was like yea!"
After realising what he'd done, however, Kristoffer said he "got nervous. I thought [Dad] was going to find out."
Kristoffer's father, Robert, also works in computer security. Technical wizardry must run in the family.
What did Kristoffer think was going to happen after his father reported the error to Microsoft? "I thought someone was going to steal the Xbox," he said.
For reporting the major security loophole, Microsoft gave the kid four free games, $50, and a 12-month subscription to Xbox Live.
"We're always listening to our customers and thank them for bringing issues to our attention," said Microsoft in a statement. "We take security seriously at Xbox and fixed the issue as soon as we learned about it."
Got a news tip or want to contact us directly? Email firstname.lastname@example.org