Apple Now Including Unique Identifiers for In App Purchase Receipts to Combat Hack - MacRumors
Skip to Content

Apple Now Including Unique Identifiers for In App Purchase Receipts to Combat Hack

by

in app purchase iconFollowing last week's launch of a hack that allowed users to obtain In App Purchase content free of charge by routing their purchase requests through a server run by a Russian hacker, Apple began taking steps to thwart the method. The hacker has, however, continued to develop his method to skirt around Apple's roadblocks.

One of the suggestions for a method by which Apple could improve the security of In App Purchasing was to include a unique identifier in validation receipts, and we've received word that developers are now seeing something along those lines coming from receipts issued by Apple since late yesterday. The receipts carry a new field called "unique_identifer" that appears to include the Unique Device Identifier (UDID) for the device making the In App Purchase.

As one developer noted to us, apps are no longer supposed to be collecting the UDID and thus it is unclear whether Apple's use of the identifier for this purpose is simply a first step toward a broader implementation of unique receipt identifiers for increased security or if Apple is attempting to identify those users and devices who are sharing their receipts with the Russian hacker to allow the method to function.

Popular Stories

HomePod mini and Apple TV Sage

New Apple TV and HomePod Mini Are 'Nearly Ready' to Launch, New Siri Remote Also Rumored

Sunday May 31, 2026 8:47 am PDT by
New models of the Apple TV 4K and HomePod mini are "nearly ready to go," according to the latest word from Bloomberg's Mark Gurman. Subscribe to the MacRumors YouTube channel for more videos. Both devices have been ready "for months," but Apple is holding off on launching them until the more personalized version of Siri is available, he said. "I am told the hardware for the next Apple TV...
Read Full Article136 comments
Apple Foldable Thumb

First 'Confirmed' iPhone Ultra Color Allegedly Revealed in Leaked Image

Monday June 1, 2026 4:39 am PDT by
Apple is expected to launch its first foldable iPhone later this year. Rumors suggest the "iPhone Ultra" will come in two color options, and a leaker shared an image today that allegedly shows one of them. Posted on Weibo by the Chinese leaker known as Ice Universe, the image purportedly offers a first glimpse of Apple's foldable in white. The device is believed to have entered early mass...
Read Full Article86 comments
Meta Ray Ban Glasses

Apple Glasses Reportedly Launching in 'Late 2027' With These Features

Sunday May 31, 2026 9:21 am PDT by
Apple is now aiming to release its first smart glasses in "late 2027," according to the latest word from Bloomberg's Mark Gurman. Meta Ray-Bans He previously said that Apple planned to begin shipping the glasses by early 2027, but he said the product has faced development delays. The glasses will feature "oval-shaped cameras, unique colors, and multiple frame styles," according to Gurman....
Read Full Article108 comments

Top Rated Comments

N
Nabby
181 months ago
Mulitple devices/replacement devices

How will this impact those of us that have an iPad and an iPhone? Will we be required to pay for the app 1 time, but the in-app stuff twice?? :confused::confused::confused:
Score: 12 Votes (Like | Disagree)
roland.g Avatar
roland.g
181 months ago
Maybe a UK judge can require the hacker to include the text "this receipt is a copy of a legitimate and cool receipt" for the next 6 months on all receipts and on his website.
Score: 11 Votes (Like | Disagree)
D
daxomni
181 months ago
It's a shame that Apple even needs to do this. The world we live in today...
Yes. The world we live in today is almost unbearable. All these wars of opportunity complete with extrajudicial killings funded by casino capitalism. While a naive self-absorbed population frets endlessly about... pirated software? What a shame indeed.
Score: 8 Votes (Like | Disagree)
iSee Avatar
iSee
181 months ago
I thought we won the cold war! But now Russia is crushing our corrupt capitalist country, just like they said they would!!! ;)
Score: 5 Votes (Like | Disagree)
M
Mjmar
181 months ago
It's a shame that Apple even needs to do this. The world we live in today...
Score: 5 Votes (Like | Disagree)
Rudy69 Avatar
Rudy69
181 months ago
As one developer noted to us, apps are no longer supposed to be collecting the UDID and thus it is unclear whether Apple's use of the identifier for this purpose is simply a first step toward a broader implementation of unique receipt identifiers for increased security or if Apple is attempting to identify those users and devices who are sharing their receipts with the Russian hacker to allow the method to function.
They might allow developers to use it to check if the purchase is valid. There's a huge difference between that and developers using it to track users and possibly logging these IDs on their own servers
Score: 5 Votes (Like | Disagree)
Read All Comments