Apple has found an answer to the previously reported hack on its iTunes App Store that provided a free in-app purchase to users.
Revealed on Friday as a method developed by Russian hacker ZonD80, which controls In-AppStore.com, the hack allows users of iOS3.0 and higher devices to accomplish free in-app purchases in three simple steps. The process includes the installation of CA and in-appstore.com certificates and changing the DNS record in Wi-Fi settings to provide their Apple ID and password, without the needed skills of an expert.
As a prominent software developer, Apple has now implemented a quick solution to stop the workaround by blocking the IP address of the web server used by ZonD80 in performing his deed. The tech giant also filed a copyright claim against the hacker’s video.
PayPal has demonstrated its support for Apple to find a way out of the problem by inhibiting users from providing contributions to the maintenance of the service.
Apple has acknowledged the issue and is now on a corrective measure. “The security of the App Store is incredibly important to us and the developer community. We take reports of fraudulent activity very seriously and we are investigating,” the company said in a statement.
There is still no definite answer whether Apple will refund to app developers who lost a sizable amount due to the hacking incident, as the firm failingly commented on the issue.