Breaking 16:00 Sabrina Carpenter, Justin Bieber and David Guetta headline a powerful Coachella 2026 edition 15:00 Macron seeks to support de-escalation with Saudi crown prince amid Middle East tensions 14:30 US says it is clearing Strait of Hormuz amid tensions with Iran 13:30 Oscars set for major shake-up with move to streaming and new venue 13:00 US denies agreement to unfreeze Iranian assets as peace talks begin in Islamabad 13:00 SpaceX valuation debate shifts toward AI peers ahead of record IPO 12:30 Markets rise 6% weekly, ending six-week losing streak after easing geopolitical tensions 12:20 Iran says US agreed to unfreeze $6 billion as White House denies claim 12:00 Microsoft pauses carbon credit purchases, shaking removal market 11:50 Amazon expands 20 minute delivery service to US and Europe 11:45 From Boston to Denver, US drivers reduce travel as Iran war drives fuel prices higher 11:40 Morgan Stanley says Tesla nears 10 billion mile self driving milestone 11:20 Iran admits it cannot locate all mines in Strait of Hormuz 11:15 Drone crash near US diplomats in Baghdad raises security tensions 10:45 Artemis Astronauts return safely to earth after historic lunar test mission 10:40 JPMorgan bullish S&P 500 call tested as Iran ceasefire wavers 10:30 Taylor Swift and Travis Kelce reportedly set wedding date and location 10:20 Andreessen calls AI the killer app driving crypto demand 09:45 UK pauses plan to transfer chagos islands after US opposition 09:15 OpenAI addresses third-party security issue without data breach 08:42 Software stocks fall as Anthropic withholds powerful AI model

Unity fixes critical Android game vulnerability threatening crypto users

Monday 06 October 2025 - 16:50
By: Dakir Madiha
Unity fixes critical Android game vulnerability threatening crypto users

Unity Technologies has released patches addressing a critical security flaw in its engine that posed risks to Android users, particularly those managing cryptocurrency wallets. The vulnerability, tracked as CVE-2025-59489, affected games and applications built with Unity 2017.1 and later.

Vulnerability details

The flaw originates from an “untrusted search path” issue, allowing attackers to manipulate how and where a Unity game loads code. Discovered and responsibly disclosed by researcher RyotaK of GMO Flatt Security Inc., the bug enables a malicious app on the same device to send crafted commands via Android intents. These commands could force a Unity game to load a malicious shared library (.so file), executing code with the game’s privileges.

Since many Android games request broad permissions, such an exploit could allow attackers to access data or interfere with other apps, including crypto wallets.

Industry response and mitigation

Unity has provided updated editor builds and a patching tool. Developers are advised to recompile projects with patched Unity versions or use the Unity Application Patcher for apps that cannot be rebuilt from source. Unity confirmed there is no evidence that the vulnerability has been exploited so far.

Other platform providers and distributors have also responded. Valve (Steam) added protections to detect exploit attempts, while Microsoft updated Defender to flag potential attacks. Google and other companies are coordinating mitigation measures. Some game publishers have patched affected titles or temporarily removed them from distribution to apply fixes.

For users, the immediate advice is to update Android games as patches become available, remove untrusted apps, avoid installing unknown APKs, and, for crypto wallet users, maintain a separate secure environment.

A wake-up call for the ecosystem

The incident underscores how vulnerabilities in widely used engines can have far-reaching impacts, potentially threatening areas like cryptocurrency management that might seem unrelated. The swift response across platforms demonstrates the seriousness with which game developers and security teams treat systemic security risks.

Keywords:



Latest News États-Unis (United States)
  • Fajr
  • Sunrise
  • Dhuhr
  • Asr
  • Maghrib
  • Isha

Newsletter

Subscribe now to the Walaw website newsletter to receive all the latest updates

Email address

Read more

Microsoft pauses carbon credit purchases, shaking removal market Environment Microsoft pauses carbon credit purchases, shaking removal market
Software stocks fall as Anthropic withholds powerful AI model Technology Software stocks fall as Anthropic withholds powerful AI model
Big Tech workforce stalls despite over 100,000 layoffs since 2022 Technology Big Tech workforce stalls despite over 100,000 layoffs since 2022
Orange Maroc showcases ai and 5g innovations at Gitex Africa 2026 Technology Orange Maroc showcases ai and 5g innovations at Gitex Africa 2026

This website, walaw.press, uses cookies to provide you with a good browsing experience and to continuously improve our services. By continuing to browse this site, you agree to the use of these cookies.