Lets talk piracy, jerks and utter opsec failure. Here comes another installment of "jcase tracks a pirate". Some of your might remember the epic first installment from years ago before XDA had to censor it. It was hilarious.
Many of you know I've been in the hospital with my daughter, she is doing well but still on oxygen. While here at the hospital yesterday, a well known developer released an xposed module that acted as a crack for TimePIN. This is ridiculous, as I was freely giving away licenses to anyone who asked (this is now coming to a stop for, as I am a bit overwhelmed with life right now).
When apps are cracked, they not only potentially hurt the income of the developer, but they also waste the developer's time. In this case his module caused odd queries to my licensing server, as well as a spike in crash reports to the Google Play server, which appears to be related to xposed tampering with TimePIN.
Now lets track this guy. First, we have a new XDA account, that has absolutely no posting history. Obvious puppet account. Next we have secondary information linking this account to directly to a well known Xposed module developer (for now I am going to leave out the details of this link, for now). The link here is very solid. Strike one.
The account that this one is related to, is a developer that develops on Xposed. His modules match the style of coding used, as well used the same version of tools to build and sign them. Strike two.
Know how apps are signed with certificates? This can point to a specific developer. If you are going to make cracks, sign with a leaked key like the Superuser key or one of the AOSP keys. This less than bright developer signed it with his debug key. I was able to get friends at companies maintaining large databases of apps and app signatures to run a check for me. The crack's certificate matched a build of an application containing the dev's name. You are out!
This is a developer that complained about someone using his Apache licensed, opensource code in a paid app on the market. He complained about the xposed repo allowing cracks for pandora (I can't find one on the repo). He talked about how much he appreciates donations, every penny.
This developer goes by the name Nottach on XDA, he is known for roms and the popular Xposed module NottachXposed. +Gaelan Bolger
I'm not sure why you did this to me, or how I am related to your pandora rant, but not only do you completely fail at opsec, you are an asshole. You had no reason to target me in your rant about some pandora cracking module. Thank you.