Unity Technology has implemented a fix for a vulnerability that permitted third-party code execution in Android mobile games, which some experts indicated last week could pose a risk to cryptocurrency users.
On Friday, Unity announced that security patches were implemented to address a vulnerability found in its gaming engine last June.
The community director of Unity Technologies, Larry “Major Nelson” Hryb, shared a security update advisory indicating that the vulnerability could enable local code execution and “access to confidential information on end-user devices utilizing Unity-built applications.”
He specified that no evidence of any exploitation of the vulnerability existed, “nor has there been any impact on users or customers.”
Cointelegraph was among the first media outlets to report the security vulnerability on Friday.
Sources informed Cointelegraph that the bug affects projects dating back to 2017, targeting the Android mobile platform while also impacting games running on Windows, macOS, and Linux.
“Unity is providing a patch to app developers to resolve this issue, and developers should update their apps immediately,” a Google representative told Cointelegraph at that time.
Unity urges developers to download the updated editor
Unity recommended developers download the updated Unity Editor before their next build and rebuild any released games with the patched editor and republish them to allow users to update.
Related: Unity Android flaw could drain gamers’ crypto wallets: How to protect yourself
Mobile gamers were encouraged to keep devices updated, enable automatic updates, and ensure antivirus software is current.
GMO Flatt security researcher “RyotaK,” who reported on the vulnerability, stated that it allowed malicious applications installed on the same device to hijack permissions granted to Unity applications, which could then be exploited remotely to execute arbitrary code.
Microsoft addresses vulnerabilities in Unity-made games
Microsoft also issued a security alert on Friday indicating that Windows game development teams were updating any game or application that might be affected by the vulnerability, noting that console games were not impacted.
Windows Defender has been updated to provide added protection, and anti-malware systems on Android have been enhanced, according to Neowin.
In the interim, game developers such as Obsidian Entertainment have temporarily removed multiple games from all digital storefronts while they implement the fix, according to GameRant.
Unity stands as an industry-leading platform offering tools for creators to develop and expand real-time games and apps across various platforms. It powers over 70% of the top thousand mobile games.
Magazine: Pudgy Penguins’ ‘masterpiece’ Pudgy Party tops 500K downloads: Web3 Gamer
