Simple three-step hack lets iOS users unlock in-app content for free

By on

A new three-step hack promises iPhone and iPad users a simple way to install premium in-app purchases from the App Store -- for free. Remarkably, the hack doesn't require jailbreaking or the installation of any software. Instead, iOS users are instructed to visit a website to install a security certificate and then directed to change their DNS settings. Afterward, users can fire up their favorite apps and pilfer as much in-app content as they want.

It appears only some apps are protected from this method while many are not. Developers who have fully employed Apple's purchasing recommendations are said to be immune to this crafty hack.

ZonD80, the pseudonym of the Russian developer responsible for the exploit, runs the blog. The website details instructions, encourages donations and hosts a rather spine-tingling terms of service agreement. makes it clear users who try this do so at their own peril -- but hey, what TOS looks reasonable these days, anyway?

According to 9to5Mac, ZonD80's exploit works on all iOS devices running 3.0 or higher. They also verified that the exploit actually works as advertised. The hack does its thing by circumventing the official App Store certificate with a custom CA security cert. The certificate can be installed via Safari. Users also must configure their wireless DNS settings to point to ZonD80's DNS server(s). From then on, when purchasing in-app DLC over a wi-fi connection, users will be greeted by a special dialogue box to "LIKE" which finalizes the transaction.

Unsurprisingly, Apple and PayPal have already taken action. Apple quickly banned ZonD80's DNS server from connecting to the App Store while PayPal is refusing to process donations to the project. Despite these difficulties, ZonD80 is currently seeking transparent proxies in order to circumvent Apple's IP ban.

Add New Comment

TechSpot Members
Login or sign up for free,
it takes about 30 seconds.
You may also...
Get complete access to the TechSpot community. Join thousands of technology enthusiasts that contribute and share knowledge in our forum. Get a private inbox, upload your own photo gallery and more.