Slashdot Mirror

← Back to Stories (view on slashdot.org)

Russian Hacker Sidesteps Apple iOS In-App Purchases

Posted by Soulskill on from the price-is-right dept.

An anonymous reader tips news that a Russian developer has posted a video showing how in-app purchases for some iOS software can be acquired without payment. The hack does't require the device to be jailbroken, and can be accomplished even by users who aren't technically proficient. The method involves three steps: "The installation of CA certificate, the installation of in-appstore.com certificate, and the changing of DNS record in Wi-Fi settings. After the quick process, users are presented with the message pictured above when installing in-app purchases, opposed to Apple’s usual purchase confirmation dialog." 9to5mac notes that this doesn't affect all apps, since some of them make use of Apple's method for validating receipts.

6 of 142 comments (clear)

  1. Thanks Slashdot! by CajunArson · · Score: 5, Informative

    Before even the first 50 apple flame posts are up for this story, the loophole will be closed. The first rule of the free app hack is that YOU DO NOT TALK ABOUT THE FREE APP HACK.

    --
    AntiFA: An abbreviation for Anti First Amendment.
    1. Re:Thanks Slashdot! by chinton · · Score: 5, Insightful
      I thought the first rule would have been "if you don't want to pay for something it doesn't give you the right to take it".

      I've got a hack for getting free jewelry. It involves a crowbar and the brittleness of the glass they use to make those display cases.

    2. Re:Thanks Slashdot! by nitio · · Score: 5, Insightful

      Not true. YMMV but consider that most likely what you bought is a license to run the software (not the software itself) therefore the software in question - and the data - are still owned by the company that sold you the license. Copyright and all that shit

      Capcom goes a long way to this with DLC characters in their fighting game that are bundled with the disc but you have to pay to have that data already present unlocked. As sad as it is, it's not illegal for them to do that neither is legal for you to hack and make it available just because you have the data in a device you own.

      You know what the best alternative is? Pay the extra or don't pay from the beginning. Simple as that.

      --
      http://stoploudness.org/
  2. I'm gonna buy by Culture20 · · Score: 5, Funny

    a wheelbarrow of smurfberries!

  3. Re:More apps should validate receipts by billcopc · · Score: 5, Interesting

    Disclaimer: app developer here.

    It's been around for a while, yes, but it does require a bit more coding, and since a staggering number of these shady freemium apps are written by copy-paste coders, they've probably been using the non-verified method, because to their eyes it does what they want.

    They might fix it if this workaround becomes too mainstream, but even then, an updated binary would be required in most cases. The cat is out of the bag. Anything going over the network can now be spoofed. Even the verification could be spoofed if so desired. I hope all the Zyngas of the world had their fun while it lasted.

    --
    -Billco, Fnarg.com
  4. Man in the Middle... by Anonymous Coward · · Score: 5, Interesting

    In other news... Russian Hackers clear a lot of bank accounts...

    Let me get this straight:
    You install a new certificate and point your DNS setting to a foreign server under the control of someone you should not trust.
    In other words: Any communication afterwards can be intercepted and even SSL encrypted sessions will look fine.
    Why spent a lot of work for some malware when good old STUPID provides the same setup for your man-in-the-middle attack.

    Most users who do this (farmville players...) will not change this back and also use their iPad for stuff like online banking.