Apple Mac App Store has piracy vulnerability

Careless coding and a lax review process by Apple could make it pretty simple to steal certain select applications from the brand new Mac App Store that launched yesterday. 

BY THE NUMBERS: Apple: Mac App Store hit 1 million download mark in 24 hours

The problem is that if an application - so far it's just the Angry Birds puzzle video game - doesn't check whether the Mac App Store receipt data entered to activate it actually corresponds to that app, it will activate it anyway so long as it's a valid receipt for any application.

This is not a problem for applications that make the check properly. It could be avoided altogether if Apple's review process before approving applications for sale included verification that the check is done right, says blogger John Gruber in his Daring Fireball blog.

Apple actually recommends how to set up the receipt checks properly, but it is up to individual developers to follow through.

According to online instructions, in order to carry out the theft, a person has to first obtain a copy of the application somehow plus a valid Mac App Store receipt for anything. They then plug in the receipt data and if the application doesn't check that the receipt refers specifically to the application itself, the data will activate the app.

Apple hasn't issued a statement yet about the weakness.

Read more about anti-malware in Network World's Anti-malware section.

Tags AppleNetworkingwirelesssoftwaremobile apps

Keep up with the latest tech news, reviews and previews by subscribing to the Good Gear Guide newsletter.

Tim Greene

Network World

Comments

Comments are now closed.

Latest News Articles

Most Popular Articles

Follow Us

GGG Evaluation Team

Kathy Cassidy

STYLISTIC Q702

First impression on unpacking the Q702 test unit was the solid feel and clean, minimalist styling.

Anthony Grifoni

STYLISTIC Q572

For work use, Microsoft Word and Excel programs pre-installed on the device are adequate for preparing short documents.

Steph Mundell

LIFEBOOK UH574

The Fujitsu LifeBook UH574 allowed for great mobility without being obnoxiously heavy or clunky. Its twelve hours of battery life did not disappoint.

Andrew Mitsi

STYLISTIC Q702

The screen was particularly good. It is bright and visible from most angles, however heat is an issue, particularly around the Windows button on the front, and on the back where the battery housing is located.

Simon Harriott

STYLISTIC Q702

My first impression after unboxing the Q702 is that it is a nice looking unit. Styling is somewhat minimalist but very effective. The tablet part, once detached, has a nice weight, and no buttons or switches are located in awkward or intrusive positions.

Resources

Best Deals on GoodGearGuide

Latest Jobs

Don’t have an account? Sign up here

Don't have an account? Sign up now

Forgot password?