• Home
  • Apps
  • News
  • Hacker Shows How to Steal In-App Purchases on iOS (Please Don’t Steal From Developers!)

Hacker Shows How to Steal In-App Purchases on iOS (Please Don’t Steal From Developers!)

Hacker Shows How to Steal In-App Purchases on iOS (Please Don’t Steal From Developers!)

Earlier today, a story began making the rounds about how a hacker discovered how to steal in-app purchases on iOS devices. While I’d like to say I was shocked to see how many sites provided detailed instructions on how to steal from developers, the sad truth is that I’m actually not shocked at all! Unfortunately, this sort of thing happens all the time.

The story (no, we’re not linking to it. Sorry!) has gotten a number of responses. Unfortunately, most of those responses are little more than thoughtless knee-jerk mentions of how Apple’s clearly lagging behind in security, and how they need to fix this immediately. Because it’s clearly Apple’s issue, right? Wrong.

First of all, the problem doesn’t lie with Apple’s in-app purchasing system. It has more to do with how developers implement in-app purchasing. An app that has properly implement in-app purchasing cannot be hacked using the method that circulated this morning. As Matthew Panzarino points out, Apple has provided detailed and publicly available instructions for how to properly implement in-app purchases.

This isn’t about who’s fault this is: the people who are really responsible are the ones who would shamelessly steal from developers just because they can. The bigger issue to address is the fact that hacks like these pose risks for both developers and users alike.

As developer Steve Troughton-Smith points out on Twitter, methods like the one circulating this morning pose a serious potential threat to the account security of anyone who uses them. The hack intercepts the purchase before it gets to Apple, which could let the hacker responsible steal your iTunes account information.

Aside from the security risk, the biggest issue of all deals with the harm that stealing content causes to the development community. Most developers aren’t rich. They make a living off of their apps and content. When you steal their content, you might as well be stealing from their wallet.

Even worse, when users steal from developers, it reduces their incentive to continue working on improving their apps, or make new ones. Why would they put hard work into something that isn’t profitable for them? Stealing from developers puts the entire app ecosystem at risk, and robs every user of potential new apps and innovations.

Plenty of sites have just told you how to steal from developers – just so they could sit back and collect some page views! Your responsibility is to do the right thing. Don’t steal from developers. For that matter, don’t steal at all! Just because you can steal something doesn’t mean you should.


  1. 389073 855851Merely wanna state that this really is very beneficial , Thanks for taking your time to write this. 570937

  2. 430880 717956Spot on with this write-up, I really suppose this web website needs rather more consideration. most likely be once far more to learn considerably more, thanks for that info. 257767

  3. 417238 596514As far as me being a member here, I wasnt aware that I was a member for any days, really. When the article was published I received a notification, so that I could participate within the discussion of the post, That would explain me stumbuling upon this post. But were certainly all members in the world of tips. 389

  4. 993867 38007I think one of your ads triggered my internet browser to resize, you may want to put that on your blacklist. 596532

  5. 24432 576209Wow, cool post. Id like to write like this too – taking time and real effort to make a excellent article but I procrastinate too considerably and never appear to get started. Thanks though. 936348

  6. 327846 268217Some genuinely marvellous function on behalf of the owner of this internet site, utterly outstanding content. 386875

Leave a Reply

Your email address will not be published.