Saurik (Jay Freeman) was forced to make a tough decision involving the Cydia Store on Thursday after receiving troubling news from concerned developers in the jailbreak community.

As it would seem, a severe bug discovered in the platform by Andy Wiik could have enabled arbitrary Cydia Store package purchases via users’ PayPal accounts if they were logged into a Cydia account with a linked PayPal account and browsing potentially malicious third-party repositories in the app.

To resolve this issue as quickly as possible, Saurik disabled purchases in the Cydia Store. Consequently, you can no longer purchase packages from default repositories such as BigBoss, but you can still access the add-ons you bought previously.

Notably, you can still use and browse Cydia and make purchases from third-party repositories like Packix, Chariz, and Dynastic Repo, which are considered “trusted” and handle payments through their own custom methods – PayPal included.

To be precise, absolutely no personal data was leaked. This means you shouldn’t need to change your PayPal account password. Now that Cydia Store purchases have been officially disabled, future discrepancies shouldn’t transpire.

Source: iphonehacks