fighting in-app purchase hacks
Post on 18-Aug-2015
1.685 Views
Preview:
TRANSCRIPT
● Open Source Company● 400 Million Installs via 4,000+ games● Data Sharing Network
Games Unite
About Us
Hackers search games for important files and variables
containing the current game score, currency
balance, and level progression.
File Overwriting
They change these values to their
benefit.
File Overwriting
0101011101100101010101011101101111000011101100011010101111000101101010101010101011110
Certain programs that make this possible are
found online.
More details on IAP hacks here
Fake In-Game Purchases
This way, a file that contains the balance
of 225 coins is difficult to find and edit.
Preventing Hacking 1
SOOMLA does this for you when you
use SOOMLA Store in your game!
Preventing Hacking 1
The receipt is usually validated
with the App Store or Google Play to
make sure the purchase is ok.
Preventing Hacking 2
Hacking software intercepts requests to the App Store or
Google Play and emulates their
behavior.
Preventing Hacking 2
Compare the transactions from
Google and Apple to the transactions that happened in a game.
Preventing Hacking 2
Find if any purchases appear in a game’s
log but are not accounted for with a
receipt.
Preventing Hacking 2
Economy ExhaustionPurchases of all
virtual items in an economy in a short
period of time.
Fraud Indicators
2
Punish the Hackers
Increase the difficulty of the game for the hackers
Disable the hackers from sharing their scores
Punish the Hackers
“Brick the Game”Inform the hackers that they are blocked from the game
because they were identified as hackers.
Encourage them to play fair by resetting the game.
Further Reading
● iOS Receipt Validation (SOOMLA Blog
● Android Receipt Validation (SOOMLA Blog)
● Setting up Google Play Purchase Verification
top related