Categories: Tech & Society

iPhone Hacker Shows The World How To Steal In-App Purchases

It seems that a crafty Ruskie hacker who calls himself “ZonD80? has concocted a method that lets even novice hackers get free in-app purchases from the Apple App Store without even having to jailbreak their iPhone. 9to5Mac says that the hacker’s content-stealing method has three steps: “The installation of CA certificate, the installation of in-appstore.com certificate, and the changing DNS record in wi-fi settings.” Once all these steps are complete, the hacker’s in-appstore.com interface takes over and lets users grab content from the App Store without paying.

Apple responded to the security flaw in a statement provided to The Loop. “The security of the App Store is incredibly important to us and the developer community,” an Apple spokeswoman said. “We take reports of fraudulent activity very seriously and we are investigating.”

Amusingly, 9to5Mac also reports that ZonD80 is imploring users to “not pirate AppStore apps” even though his program is designed to do exactly that. 9to5Mac also issues a battle cry to iOS developers to help patch this apparent flaw in the App Store in order to make sure developers keep getting paid for their work. (As an editorial aside: Please don’t steal app developers’ content.)

position=left

Via: 9to5Mac

Prateek Panda

Prateek is the Founder of TheTechPanda. He's passionate about technology startups and entrepreneurship and enjoys speaking to new founders every day. Prateek has also been consistently regarded as one of the top marketing experts in the region.

Recent Posts

Quantum leap or quantum sleep? Why the future of superfast computing is still loading…

Is quantum computing truly just five years away from real-world applications or will we be…

1 day ago

How India’s own cloud can empower MSMEs, EdTech & Health Tech with safer data ecosystems

How India’s own cloud can empower MSMEs, EdTech & Health Tech with safer data ecosystems…

3 days ago

New tech on the block: Blockchain, cybersecurity, ecommerce, cryptocurrency, data management, no code, cloud & workplace tools

The Tech Panda takes a look at recent tech launches. Blockchain: A platform is designed…

4 days ago

Your AI is now mine: A subtle but alarming new contest between cyber attackers & defenders

AI might be assisting today’s cyber defenders to accelerate and improve threat detection, but the…

4 days ago

The AI-driven CFO: How Artificial Intelligence is redefining financial leadership in the tech era

The Chief Financial Officer (CFO) is no longer the only one responsible for budgets and…

7 days ago

From Roblox to Python: How game development educates kids on AI principles

AI is no longer in the distant future, discussed only in university classrooms or interactive…

1 week ago