An Xbox password flaw was recently discovered by a five-year-old boy and he did it just to get into his father’s account to play the games. Not realizing the significance of his find, Kristoffer Von Hassel, who was caught by his father playing the Xbox games, saw his father look awestruck rather than angry when he was caught, according to Newsmax on April 4.
Robert Davies was immediately fascinated when he saw his son playing the games without knowing his password. When he asked Kristoffer how he got into the games, he showed his dad.
When he put in a wrong password it took him to the password verification screen. All little Kristoffer did to get into the games was hit the space key a few times then after hitting “enter,” he was in. Davies happens to work in computer security so this discovery really took him by surprise. He said:
"How awesome is that!" Davies said in an interview. "Just being five years old and being able to find a vulnerability and latch onto that. I thought that was pretty cool."
Dad and Kristoffer reported the password flaw to Microsoft and along with some thank-you gifts, both Kristoffer and his dad’s names appear on the Microsoft website in a list of security researchers who are credited in making Microsoft online services more secure.
Kristoffer received a year-long subscription to Xbox Live, four games and $50. It looks as if computer security runs in the family!