A couple of days ago we reported for you that a Russian hacker discovered a way that allows you to purchase anything you want from any app without needing to pay it which is similar to iAP cracker. Today and as Apple promised, Apple has just started blocking Russian servers that authenticate in-app purchase content for free, the only thing I loved in the Russian exploit that you don’t need to have a Jailbreak in order to use iAP way.
According to a new report from the folks at TheNextWeb which says that Apple is blocking IP addresses that host the rogue in-appstore.com domain by issuing takedown notices to hosting companies. PayPal has also intervened to block a private account through which donations had been collected, citing violation of its terms of service.
That’s not all but also the Russian hacker Alexey V. Borodin decided to move the servers to another country in an attempt to evade Apple’s legal requests…
Blocking the original ‘attack’ route, Borodin sidestepped the authentication issue by migrating the service to a new server. Apple was able to pressure the host of the original server — which was located in Russia — into dropping Borodin’s service, but according to the Russian hacker, the new server is hosted in an offshore country in an attempt to evade Apple’s legal requests.
Also Apple asked YouTube to remove the video made by the Russian hacker which guide users how to use iAP for free and YouTube already closed the video forever
Borodin says his service had already processed more than 30,000 individual in-app payment requests, illegally of course. Though the hacker is adamant his hack is purely meant to force Apple into bolstering the APIs and security of the in-app purchasing mechanism, it’s evidently putting users at great risk, especially now that the proxy server handling the requests is located in an offshore country.
So whom do you think will win this war ?! The Russian hacker or Apple ?!
