“Following last week’s launch of a hack that allowed users to obtain In App Purchase content free of charge by routing their purchase requests through a server run by a Russian hacker, Apple began taking steps to thwart the method,” Eric Slivka reports for MacRumors.
“One of the suggestions for a method by which Apple could improve the security of In App Purchasing was to include a unique identifier in validation receipts, and we’ve received word that developers are now seeing something along those lines coming from receipts issued by Apple since late yesterday,” Slivka reports. “The receipts carry a new field called “unique_identifer” that appears to include the Unique Device Identifier (UDID) for the device making the In App Purchase. ”
Read more in the full article here.
Apple attempts to take down servers related to In-App Purchase hack – July 16, 2012
Apple iOS in-app purchases hacked; allows users to download anything for free – July 13, 2012