As we noted previously, a Russian hacker known as ZonD, discovered a method to authenticate in-app buying without payment. Their method doesn't need a jailbroken idevice, only a Wi-Fi net connection to change your DNS proxy server.
So how exactly does Apple really feel in relation to fake in-app purchases? Check inside to see the action.
Harrison — Apple consultant, provided an answer for The Loop:
"The security of the App Store is incredibly important to us and the developer community. We take reports of fraudulent activity very seriously and we are investigating."
That can be extremely specific statement. It doesn't immediately recognize the in-app buy piracy or the security process of Apple's authorization servers. Exactly the "fraudulent activity" and "Apps security of the Apple's app store" and also the Apple's cryptical statements should be anticipated. Right now, Apple is in a troublesome situation, where they need to reassure their app developers, even though they can't protect in-app buying.
Quite interesting, this can be a case exactly where Apple's closed method was a detriment for app developers. As an alternative to cracking app buying, Russian hacker known as ZonD, found a method to bypass Apple's security authorization.
|installed in-app certificates|
The actual analysis raises a number of questions in regards to what Apple will perform now? Will probably Apple can make an update for the app store, may they track those who bypass their authorization server to pirate in-app purchases, and definately will there be effects for the app developer driving the pirate server?
What do you think? Share your opinions below!