Breaking 19:41 World Cup 2026 stars shine as Messi, Mbappé and Haaland deliver memorable performances 19:22 Trump reveals key details of US-Iran negotiations and nuclear inspection framework 19:00 Elon musk surpasses the trillion-dollar milestone: understanding the scale of unprecedented wealth 17:00 Oracle Cuts 21,000 Jobs as AI-Driven Restructuring Reshapes Global Tech Workforce 16:32 Atlanta Stadium Set to Host Morocco’s Crucial World Cup 2026 Qualification Match 16:05 Wildfires spread across western united states amid extreme heat and drought conditions 13:57 Trump says Ford and General Motors could produce missiles and defense weapons 13:13 Israeli military expands control in Gaza and plans “Green City” project in Rafah 12:30 Growing tensions raise questions about the future of the US-Israel alliance 11:48 US ambassador’s remarks spark debate over presidential influence on diplomatic appointments 11:30 United States targets ISIS financing networks with new international sanctions 11:11 Trump calls for intensive inspections to ensure Iran’s nuclear compliance 10:43 Pezeshkian says progress in negotiations depends on US commitment 10:36 United States debates ways to share artificial intelligence wealth amid inequality concerns 10:15 Study warns that hundreds of AI-powered iOS apps may expose user data 07:45 Marco Rubio seeks gulf support for U.S.–Iran reset amid regional concerns 07:00 Iran and United States establish working groups to advance peace negotiations

Unity fixes critical Android game vulnerability threatening crypto users

Monday 06 October 2025 - 16:50
By: Dakir Madiha
Unity fixes critical Android game vulnerability threatening crypto users

Unity Technologies has released patches addressing a critical security flaw in its engine that posed risks to Android users, particularly those managing cryptocurrency wallets. The vulnerability, tracked as CVE-2025-59489, affected games and applications built with Unity 2017.1 and later.

Vulnerability details

The flaw originates from an “untrusted search path” issue, allowing attackers to manipulate how and where a Unity game loads code. Discovered and responsibly disclosed by researcher RyotaK of GMO Flatt Security Inc., the bug enables a malicious app on the same device to send crafted commands via Android intents. These commands could force a Unity game to load a malicious shared library (.so file), executing code with the game’s privileges.

Since many Android games request broad permissions, such an exploit could allow attackers to access data or interfere with other apps, including crypto wallets.

Industry response and mitigation

Unity has provided updated editor builds and a patching tool. Developers are advised to recompile projects with patched Unity versions or use the Unity Application Patcher for apps that cannot be rebuilt from source. Unity confirmed there is no evidence that the vulnerability has been exploited so far.

Other platform providers and distributors have also responded. Valve (Steam) added protections to detect exploit attempts, while Microsoft updated Defender to flag potential attacks. Google and other companies are coordinating mitigation measures. Some game publishers have patched affected titles or temporarily removed them from distribution to apply fixes.

For users, the immediate advice is to update Android games as patches become available, remove untrusted apps, avoid installing unknown APKs, and, for crypto wallet users, maintain a separate secure environment.

A wake-up call for the ecosystem

The incident underscores how vulnerabilities in widely used engines can have far-reaching impacts, potentially threatening areas like cryptocurrency management that might seem unrelated. The swift response across platforms demonstrates the seriousness with which game developers and security teams treat systemic security risks.

Keywords:



Latest News États-Unis (United States)
  • Fajr
  • Sunrise
  • Dhuhr
  • Asr
  • Maghrib
  • Isha

Newsletter

Subscribe now to the Walaw website newsletter to receive all the latest updates

Email address

Read more

Study warns that hundreds of AI-powered iOS apps may expose user data Technology Study warns that hundreds of AI-powered iOS apps may expose user data
Turkish intelligence chief meets Libyan commander Saddam Haftar in Benghazi News in brief Turkish intelligence chief meets Libyan commander Saddam Haftar in Benghazi
Chevron and Microsoft bet on natural gas to power artificial intelligence data centers Technology Chevron and Microsoft bet on natural gas to power artificial intelligence data centers
DGSSI warns of major data breach affecting Moroccan entities and Fortinet systems worldwide Technology DGSSI warns of major data breach affecting Moroccan entities and Fortinet systems worldwide

This website, walaw.press, uses cookies to provide you with a good browsing experience and to continuously improve our services. By continuing to browse this site, you agree to the use of these cookies.