The European Commission's major initiative to restrict minors' access to online content has suffered a credibility blow. Less than 24 hours after its official presentation by Ursula von der Leyen, cybersecurity experts revealed that the new EU age verification app is vulnerable to simple attacks. British researcher Paul Moore demonstrated that the app's security can be bypassed in under two minutes by manipulating a local configuration file to reset the PIN. While the Commission claims the version tested was a 'development prototype' intended for open-source review, the incident raises concerns regarding the implementation of age-restriction laws in countries like Portugal, which recently set the minimum age for autonomous social media access at 16.