Breaking 12:20 Meta acquires Moltbook, a social network built for AI agents 11:50 Oil rebounds above $89 after historic $38 swing amid Iran war turmoil 11:20 MOTHRA telescope in Chile aims to reveal faint cosmic web structures 10:50 Global markets swing as Iran war sends mixed signals to investors 10:20 Volkswagen plans 50,000 job cuts in Germany as profits plunge 09:50 Dubai gold trades at rare discount as war disrupts global bullion flows 08:20 United Nations warns of humanitarian crisis in Cuba amid fuel shortages 07:50 Artificial intelligence tools accelerate drug and protein research breakthroughs 07:00 Porsche operating profit collapses after costly retreat from electric strategy 23:00 U.S. lawmakers warn of potential ground troop deployment in Iran 22:45 North Korea backs Iran's appointment of new Supreme Leader 22:00 Brazilian drugmaker EMS plans international expansion after buying Sanofi’s Medley unit 20:30 War in Iran: about 140 U.S. troops injured, Pentagon says 19:15 Bank of America strengthens technology banking team with four senior hires 16:20 G7 weighs oil reserve release as Iran war sends markets swinging 15:20 US LNG exporters gain windfall as Iran conflict disrupts global gas supply 14:30 Ukraine-Russia peace talks postponed amid global focus on Iran conflict 14:20 Volkswagen profits plunge as tariffs and China competition hit 2025 results 13:50 Bitcoin climbs above $70,000 as markets react to Iran war de escalation signals 13:45 Italy expresses solidarity with Türkiye after missile fired from Iran

Unity fixes critical Android game vulnerability threatening crypto users

Monday 06 October 2025 - 16:50
By: Dakir Madiha
Unity fixes critical Android game vulnerability threatening crypto users

Unity Technologies has released patches addressing a critical security flaw in its engine that posed risks to Android users, particularly those managing cryptocurrency wallets. The vulnerability, tracked as CVE-2025-59489, affected games and applications built with Unity 2017.1 and later.

Vulnerability details

The flaw originates from an “untrusted search path” issue, allowing attackers to manipulate how and where a Unity game loads code. Discovered and responsibly disclosed by researcher RyotaK of GMO Flatt Security Inc., the bug enables a malicious app on the same device to send crafted commands via Android intents. These commands could force a Unity game to load a malicious shared library (.so file), executing code with the game’s privileges.

Since many Android games request broad permissions, such an exploit could allow attackers to access data or interfere with other apps, including crypto wallets.

Industry response and mitigation

Unity has provided updated editor builds and a patching tool. Developers are advised to recompile projects with patched Unity versions or use the Unity Application Patcher for apps that cannot be rebuilt from source. Unity confirmed there is no evidence that the vulnerability has been exploited so far.

Other platform providers and distributors have also responded. Valve (Steam) added protections to detect exploit attempts, while Microsoft updated Defender to flag potential attacks. Google and other companies are coordinating mitigation measures. Some game publishers have patched affected titles or temporarily removed them from distribution to apply fixes.

For users, the immediate advice is to update Android games as patches become available, remove untrusted apps, avoid installing unknown APKs, and, for crypto wallet users, maintain a separate secure environment.

A wake-up call for the ecosystem

The incident underscores how vulnerabilities in widely used engines can have far-reaching impacts, potentially threatening areas like cryptocurrency management that might seem unrelated. The swift response across platforms demonstrates the seriousness with which game developers and security teams treat systemic security risks.

Keywords:



Latest News États-Unis (United States)
  • Fajr
  • Sunrise
  • Dhuhr
  • Asr
  • Maghrib
  • Isha

Newsletter

Subscribe now to the Walaw website newsletter to receive all the latest updates

Email address

Read more

Microsoft unveils Project Helix, next generation Xbox with PC gaming support Technology Microsoft unveils Project Helix, next generation Xbox with PC gaming support
Codelco and Microsoft partner to explore AI in mining operations Technology Codelco and Microsoft partner to explore AI in mining operations
Helion reaches 150 million degrees in private fusion milestone Technology Helion reaches 150 million degrees in private fusion milestone
L’UE approuve le rachat de Wiz par Google pour 32 milliards de dollars Technology L’UE approuve le rachat de Wiz par Google pour 32 milliards de dollars

This website, walaw.press, uses cookies to provide you with a good browsing experience and to continuously improve our services. By continuing to browse this site, you agree to the use of these cookies.