Regulatory Push for Online Age Verification and Adult-Site Access Restrictions
A growing regulatory push to require online age verification—particularly for access to pornography and other age-restricted content—is accelerating in the U.S. and U.K., with policymakers framing it as a child-safety measure and critics warning of privacy and free-speech risks. An FTC commissioner publicly endorsed age verification as a tool to protect children online, pointing to widespread state-level adoption in the U.S. and noting that court outcomes have been mixed, including a U.S. Supreme Court decision upholding a Texas law requiring pornography sites to verify users’ ages.
In the U.K., the Online Safety Act (OSA) is driving direct service changes: Aylo (parent company of Pornhub and other tube sites) said it will restrict access in the United Kingdom rather than implement the OSA’s age-checking approach for all visitors, while allowing continued access for users who have already verified their identity. Aylo argued the framework diverts traffic to unregulated sites and creates privacy risks, while Ofcom countered that services can either implement compliant age checks or block U.K. access and urged development of effective device-level solutions.
How this story unfolded
6 events from the most recent confirmed update back to the earliest known activity.
FTC Commissioner Mark Meador urges wider online age verification
At an FTC-hosted workshop, Commissioner Mark Meador argued that age verification should become standard online practice to better protect children. He said such measures are already in place in at least 25 U.S. states and promoted AI-based behavioral age verification as a privacy-preserving option.
FTC highlights COPPA enforcement actions against Disney and Sendit
The FTC pointed to recent children's privacy enforcement actions, including a $10 million settlement involving Disney and a lawsuit against the Sendit anonymous messaging app. These actions were cited as part of the agency's broader push against unlawful collection of children's data.
U.S. Supreme Court upholds Texas porn-site age verification law
The U.S. Supreme Court upheld a Texas law requiring pornography websites to verify users' ages, finding the requirement did not violate the First Amendment. The ruling was described as likely to accelerate adoption of similar laws in other states.
Ofcom says non-compliant porn sites must add age checks or block UK access
Responding to Aylo's position, Ofcom said services subject to the Online Safety Act can either implement age assurance measures or prevent UK users from accessing their sites. The regulator also said it has already pursued enforcement actions against pornography sites that failed to comply.
Aylo says it will block UK access to Pornhub and related sites from February 2
Aylo announced it would restrict access to Pornhub and other major adult tube sites in the United Kingdom starting February 2 instead of implementing age-verification measures required under the Online Safety Act. The company said the framework creates privacy and personal-data risks and may drive users to unregulated sites.
UK Online Safety Act requires porn sites to add age checks or block UK users
The UK Online Safety Act established requirements for pornography services to implement age-verification measures for UK users or restrict access, with Ofcom responsible for enforcement. The law set the framework for later compliance and blocking decisions by major adult platforms.
Related entities
Vulnerabilities, threat actors, malware, products, organizations, and breaches Mallory has linked to this story.
Sources
3 references tracked. Mallory keeps watching after this page renders.
Online age verification sought by FTC commissioner | SC Media
scworld.com
Open sourceFTC commissioner says online age verification ‘offers a better way’ to protect kids | The Record from Recorded Future News
therecord.media
Open sourceIf you live in the UK, you probably won't be able to visit Pornhub anymore | TechCrunch
techcrunch.com
Open sourceSee the full picture, correlated to your attack surface.
Map indicators from this story to your assets and identify affected systems in minutes.
Every observed campaign, victim, and pivot linked to actors named in this story.
Malware, exploits, and IOCs connected to the activity described here.
YARA, Sigma, and Snort rules deployed to your SIEM as soon as they’re published.
Get matching new stories delivered to your team as they break — not the next morning.
Ask questions about this story and take action on the answers.
Related stories
Other stories Mallory is tracking that overlap on entities, sources, or topic labels.
Regulatory Push to Strengthen Child Online Safety and Age Assurance on Social Platforms
UK regulators **Ofcom** and the **Information Commissioner’s Office (ICO)** issued warnings to major social media and video platforms (including **Facebook, Instagram, Snapchat, TikTok, and YouTube**) demanding “urgent steps” to implement more robust **age assurance** controls to prevent access by children under 13. Regulators signaled potential enforcement if platforms continue relying primarily on easily bypassed self-declared ages, arguing this enables unlawful collection and use of children’s data and exposes under-13s to services not designed for them; Ofcom requested companies report back on their plans by the end of April. In the US, the House Energy and Commerce Committee advanced the **Kids Internet and Digital Safety (KIDS) Act** on a party-line vote amid Democratic objections that the bill could reduce platform accountability for harms to minors. Criticisms focused on provisions that could **preempt certain state laws**, a **knowledge requirement** that opponents argue may let companies claim ignorance of minors’ presence, and the lack of a proactive **“duty of care”** requirement; proposed amendments to strengthen protections were not adopted.
Apr 1, 2026
Government Pushes for Age Verification and Content Controls on Digital Platforms
The UK government is urging major technology companies such as Apple and Google to implement nudity-blocking systems on mobile devices, aiming to protect minors by requiring adult users to verify their age before accessing or sharing explicit images. This initiative, which currently stops short of a legal mandate, would leverage nudity-detection algorithms at the operating system level and could be expanded to desktop platforms in the future. The proposed measures would also require child sex offenders to keep such blockers enabled, reflecting a broader governmental effort to enforce age-appropriate content controls across digital ecosystems. Simultaneously, experts are raising concerns about the effectiveness of current age verification technologies, particularly those relying on consumer-grade cameras and AI-powered facial recognition. Research highlights that these systems may provide a false sense of security, as they are susceptible to spoofing and may not reliably authenticate minors. The debate underscores the technical and policy challenges in balancing child safety, privacy, and the practical limitations of available authentication methods on popular platforms like Roblox and other social media or gaming services.
Mar 21, 2026
UK Regulators Fine Online Platforms for Failing to Implement Effective Age Assurance
UK regulators issued major penalties against online services for inadequate **age assurance** controls intended to protect children. The Information Commissioner’s Office (**ICO**) fined **Reddit £14.47 million** for unlawfully processing children’s data, alleging that despite a stated under-13 prohibition, Reddit did not introduce an age assurance mechanism until **July 2025** and had not completed a required **data protection impact assessment (DPIA)** before **January 2025**. The ICO said these failures potentially exposed minors to inappropriate content and left under-13 users’ personal data collected and used without a lawful basis; Reddit said it intends to appeal. Separately, communications regulator **Ofcom** fined porn operator **8579 LLC £1.35 million** under the UK **Online Safety Act** for failing to deploy “highly effective” age checks (e.g., photo ID matching or credit card checks) to prevent minors from accessing adult content. Ofcom also imposed an additional **£50,000** penalty for allegedly ignoring information requests and warned of an ongoing **£1,000/day** penalty until compliant age verification is implemented, amid broader concerns from civil liberties groups about the privacy and cybersecurity risks of stringent age-verification regimes.
Mar 21, 2026