“The other post more than likely broke rule 1 because it linked the site directly. To anyone that didn’t see the post the BigBoss repo was (supposedly) hacked by either an individual or group of people and they have a repo out there with all of BigBoss’s packages (paid and free). Their proof.log shows that they have the original MD5 sums,” the news of the hack was spread through Reddit post.
“The website and companion repo are using Saurik’s recent “Competition vs Community” as a motivation for their acts,” iDownloadBlog reports, but security experts are skeptical. I strongly suggest you to avoid the ripBigBoss repo, despite Kim Jong-Cracks announced that all the apps published are not infected. I remind you that it is quite easy for hackers to trojanize legitimate applications initially present in the BigBoss store.
“This article mentions malware being potentially injected into the BigBoss repository; we do not believe this to be the case, Saurik said in a statement to iDB. “Packages in Cydia repositories are cryptographically verified from the repository package index. I have an index of all historic changes to the package indices for default repositories, and have verified that the content on BigBoss did not change in ways that the repository administrators did not expect.”
Security Affairs – (cydia, BigBoss)