Breaking 16:40 UBS holds $5,600 gold target and calls 17% pullback a buying opportunity 16:20 Rescue operation underway as debris in Iran identified as U.S. F-15E 15:50 AI-powered cyberattacks reach a "pivotal moment," experts warn 15:20 Wedbush holds $600 Tesla target despite disappointing Q1 deliveries 14:50 China's Tianlong-3 rocket fails on maiden flight 13:50 Analysts warn Iran could become a North Korea-style garrison state 13:20 Tether gives investors two weeks to commit to $500 billion valuation round 13:10 Coinbase commits $150 million to protect Bitcoin from quantum computing threats 12:50 Erste Group cuts Toyota to "hold" on tariff drag and slowing US sales 12:40 Arm shares slide as investors lock in gains after AI-driven rally 11:50 Iranian drones strike Kuwait's Mina al-Ahmadi refinery again, sparking fires 11:50 Morocco launches sovereign AI platform to boost industrial transformation 11:35 Tesla posts record sales in South Korea and Australia as oil crisis accelerates EV shift 11:20 European Q1 earnings set to rise 4% as energy sector surges 10:50 Japan warns speculators as yen nears 160 amid escalating Iran conflict 10:20 Anthropic maps 171 emotion-like patterns inside Claude that shape its behavior 09:50 Container ship Safeen Prestige sinks in Strait of Hormuz after weeks ablaze 09:20 Airlines face bankruptcy risk as fuel costs soar amid Middle East conflict 08:50 Fossils in China push back origins of complex animal life by millions of years 08:20 Artemis II crew captures iPhone footage in zero gravity on lunar journey 07:50 JWST finds "forbidden" exoplanet with unexpectedly metal-poor atmosphere 17:50 Global fuel prices surge as Iran conflict disrupts oil markets 16:50 LVMH posts worst quarterly stock drop in its history as Arnault loses $56 billion

Unity fixes critical Android game vulnerability threatening crypto users

Monday 06 October 2025 - 16:50
By: Dakir Madiha
Unity fixes critical Android game vulnerability threatening crypto users

Unity Technologies has released patches addressing a critical security flaw in its engine that posed risks to Android users, particularly those managing cryptocurrency wallets. The vulnerability, tracked as CVE-2025-59489, affected games and applications built with Unity 2017.1 and later.

Vulnerability details

The flaw originates from an “untrusted search path” issue, allowing attackers to manipulate how and where a Unity game loads code. Discovered and responsibly disclosed by researcher RyotaK of GMO Flatt Security Inc., the bug enables a malicious app on the same device to send crafted commands via Android intents. These commands could force a Unity game to load a malicious shared library (.so file), executing code with the game’s privileges.

Since many Android games request broad permissions, such an exploit could allow attackers to access data or interfere with other apps, including crypto wallets.

Industry response and mitigation

Unity has provided updated editor builds and a patching tool. Developers are advised to recompile projects with patched Unity versions or use the Unity Application Patcher for apps that cannot be rebuilt from source. Unity confirmed there is no evidence that the vulnerability has been exploited so far.

Other platform providers and distributors have also responded. Valve (Steam) added protections to detect exploit attempts, while Microsoft updated Defender to flag potential attacks. Google and other companies are coordinating mitigation measures. Some game publishers have patched affected titles or temporarily removed them from distribution to apply fixes.

For users, the immediate advice is to update Android games as patches become available, remove untrusted apps, avoid installing unknown APKs, and, for crypto wallet users, maintain a separate secure environment.

A wake-up call for the ecosystem

The incident underscores how vulnerabilities in widely used engines can have far-reaching impacts, potentially threatening areas like cryptocurrency management that might seem unrelated. The swift response across platforms demonstrates the seriousness with which game developers and security teams treat systemic security risks.

Keywords:



Latest News États-Unis (United States)
  • Fajr
  • Sunrise
  • Dhuhr
  • Asr
  • Maghrib
  • Isha

Newsletter

Subscribe now to the Walaw website newsletter to receive all the latest updates

Email address

Read more

AI-powered cyberattacks reach a "pivotal moment," experts warn Technology AI-powered cyberattacks reach a "pivotal moment," experts warn
All 7 AI models tested conspired to prevent shutdown of peers, study finds Technology All 7 AI models tested conspired to prevent shutdown of peers, study finds
Microsoft plans $5.5 billion investment in Singapore by 2029 Technology Microsoft plans $5.5 billion investment in Singapore by 2029
Microsoft closes its worst quarter since 2008 amid AI spending fears Technology Microsoft closes its worst quarter since 2008 amid AI spending fears

This website, walaw.press, uses cookies to provide you with a good browsing experience and to continuously improve our services. By continuing to browse this site, you agree to the use of these cookies.