GCHQ’s “Can You Crack It?” website, designed to help recruit talented codebreakers for the British government department, is getting lots of attention from the media and bloggers – but some of that may be unwanted.
A number of bloggers and Twitter users have pointed out that GCHQ appears to have done rather a poor job at locking down the website, making it child’s play for anyone to visit the webpage you’re only supposed to see if you’ve successfully cracked the code.
All it takes to find the page is to use the site: command in Google, as the “Can You Crack It?” webmaster seemingly didn’t hide the success page from search engines…
Read more in my article on the Naked Security website.
Found this article interesting? Follow Graham Cluley on Twitter or Mastodon to read more of the exclusive content we post.