First iOS, Now Mac OS X In-App Purchases Hacked

An anonymous reader writes "Last week Russian developer Alexey Borodin hacked Apple's In-App Purchase program for all devices running iOS 3.0 or later, allowing iPhone, iPad, and iPod touch users to circumvent the payment process and essentially steal in-app content. Apple [Friday] announced a temporary fix and that it would patch the holes with the release of iOS 6. While Cupertino was distracted, Borodin came in and pulled off the same scheme on the Mac."

Overreacting

[mwvdlee]

allowing iPhone, iPad, and iPod touch users to circumvent the payment process and essentially steal in-app content

You mean the users (well... only one user) can actually copy and delete it from the application vendors' hardware? Wow, that is bad!

Re:Overreacting

[Jeremy+Erwin]

my dear sir, i do believe that qualifies as a cliche. Congratulations, you've take the fisrt step into a smaller world. I find your ideas interesting, and I would like to subscribe to your newsletter. Most cordially, 2054

Re:Overreacting

[ThunderBird89]

I am not a developer, true, I'm more of a legal expert.
But let's imagine I'm a dev, and my product was "stolen", to put it this way. I check my hard drive, yep, source still there, binaries present, everything's accounted for. The problem isn't that something is gone, the problem is that there's now two of it, one not under my control. Nothing was taken per se, and hurting my commercial interests is quite another thing, not covered by theft.
So yes, the way you put it, "everything is great. Right.". What's not "totally fine" is what you don't emphasize: not paying for it (assuming I wanted payment in the first place), but that is not covered by the meaning of 'theft'.

Re:Overreacting

[fredprado]

Reality says otherwise. GoG is selling games without DRM even if many people pirate them. The MAFIAA earns billions of dollars a year selling goods even with 'rampant piracy'. A lot of indies have been successful selling games that have been pirated a LOT.

The term 'Theft' does not apply to IP by any law code of any country in the world. So no, you are just wrong. Using the wrong word to define something serves only the purpose of propagating lies. You may do it from ignorance or malice but either way you are to be shunned for it.

Meh

Apple has recommended all along that you verify receipts to make sure they're not fake. Some apps don't, and can be hacked. How surprising.

Fuck 'em if they can't take being screwed back

[Powercntrl]

With a few rare exceptions, most games with in-app purchases are designed so that your progress in the game is directly proportional to how much you're willing to spend. In several games, no amount of patience or skill will allow you to progress. And in some games, progress itself is an illusion, with no obvious indication that your "missions" are being randomly generated and there is no way to ever "beat" the game.

It's extremely shady on Apple's part to allow developers to label apps that require in-app purchases as "free". The way I see it, this is karma.

I'm all for developers getting paid for their work. If they really want to nickel and dime you for every bell and whistle in the app or make you insert a coin each time you lose a life, that's their prerogative - but Apple needs to make it a lot clearer what you're downloading, since in-app-purchases mean "free" no longer means what it used to.