Recently, Unity have found a security issue that affects all projects made on all versions of the engine since 2017.1:
Applications that were built using affected versions of the Unity Editor are susceptible to an unsafe file loading and local file inclusion attack, depending on the operating system.
It means, that thousands of games and game assets are affected. And the majority of them WILL NOT BE FIXED, since they are abandoned or on low maintenance mode. So, playing Unity games may be a security issue now.
https://unity.com/security/sept-2025-01
#Unity@GameDEV
#Security@GameDEV
Applications that were built using affected versions of the Unity Editor are susceptible to an unsafe file loading and local file inclusion attack, depending on the operating system.
It means, that thousands of games and game assets are affected. And the majority of them WILL NOT BE FIXED, since they are abandoned or on low maintenance mode. So, playing Unity games may be a security issue now.
https://unity.com/security/sept-2025-01
#Unity@GameDEV
#Security@GameDEV
π±12β€2π2π₯1π1
Almost everyone who contacted the Discord support team during the last couple of years, is affected:
Discord was using a 3rd party support service and they leaked almost everything they could, including photos and documents provided.
They pretend that only a few people were affected, but it seems that everyone who contacted their support got the warning.
In the meantime EU is still trying to implement Chat Control 2.0 with extra backdoors to your files and messages.
#Security@GameDEV
#Discord@GameDEV
#SocialNetworks@GameDEV
Discord was using a 3rd party support service and they leaked almost everything they could, including photos and documents provided.
They pretend that only a few people were affected, but it seems that everyone who contacted their support got the warning.
In the meantime EU is still trying to implement Chat Control 2.0 with extra backdoors to your files and messages.
#Security@GameDEV
#Discord@GameDEV
#SocialNetworks@GameDEV
π8π±8
GameDev Pulse
A dude with a made-up role is complaining that people aren't buying his crap... #Microsoft@GameDEV #AI@GameDEV
LMAO, do you know that Microsoft found out and confirmed, that AI helpers tend to install you malware and turn off your security?
(If they get special commands from reading your emails with Cross-Prompt Injection or XPIA)
https://www.youtube.com/watch?v=sXz3Ftlyp44
#Security@GameDEV
#AI@GameDEV
(If they get special commands from reading your emails with Cross-Prompt Injection or XPIA)
https://www.youtube.com/watch?v=sXz3Ftlyp44
#Security@GameDEV
#AI@GameDEV
YouTube
Does anyone want an 'agentic' Windows?
Black Friday Mega Sale β Get the Wolfbox MF200 Air Duster and Save Up to 30%!(Nov 20βDec 2οΌ
Amazon |Code:WBMFSAVE5β https://www.amazon.com/dp/B0FPMPBSLL?maas=maas_adg_878555AC7868C23FC40829F0744AE48D_afap_abs&ref_=aa_maas&tag=maas
Official Site | Code: WBBESTGEARβ¦
Amazon |Code:WBMFSAVE5β https://www.amazon.com/dp/B0FPMPBSLL?maas=maas_adg_878555AC7868C23FC40829F0744AE48D_afap_abs&ref_=aa_maas&tag=maas
Official Site | Code: WBBESTGEARβ¦
β6π1π1
There's a CVE-2025-55182:
Pre-authentication remote code execution vulnerability exists in React Server Components versions 19.0.0, 19.1.0, 19.1.1, and 19.2.0 including the following packages: react-server-dom-parcel, react-server-dom-turbopack, and react-server-dom-webpack. The vulnerable code unsafely deserializes payloads from HTTP requests to Server Function endpoints.
But that's not the crazy part: hackers created several forked tools for fake CVE inspection, that actually steals the data of users and loads you malware.
Do not launch GitHub repos mindlessly!
#Hackers@GameDEV
#Security@GameDEV
Pre-authentication remote code execution vulnerability exists in React Server Components versions 19.0.0, 19.1.0, 19.1.1, and 19.2.0 including the following packages: react-server-dom-parcel, react-server-dom-turbopack, and react-server-dom-webpack. The vulnerable code unsafely deserializes payloads from HTTP requests to Server Function endpoints.
But that's not the crazy part: hackers created several forked tools for fake CVE inspection, that actually steals the data of users and loads you malware.
Do not launch GitHub repos mindlessly!
#Hackers@GameDEV
#Security@GameDEV
β6π3
Okay, a new way to fight cheaters in your game: STOP SELLING IT!
#VR@GameDEV
#Security@GameDEV
#WTF@GameDEV
#VR@GameDEV
#Security@GameDEV
#WTF@GameDEV
π20
Rainbow Six Siege has been hacked in several attempts by different groups.
First ones got access to the game server admin panel: they banned people and gave away $300m+ worth of goods for free. It seems that hackers banned Ubisoft employees while Ubisoft banned "people with suspicious amounts of currency". Most of these bans are rolled back now.
Then a few more groups seemingly got the full access to all the sources of the game. This still has to be confirmed, since Ubisoft is only discussing the admin access. They temporarily shut down the marketplace and secondary ban system that has been breached.
The security issue is not coming from Ubisoft, it's MongoBleed: MongoDB Zlib Vulnerability (CVE-2025-14847), affecting millions of servers worldwide.
#Ubisoft@GameDEV
#Security@GameDEV
#Hackers@GameDEV
First ones got access to the game server admin panel: they banned people and gave away $300m+ worth of goods for free. It seems that hackers banned Ubisoft employees while Ubisoft banned "people with suspicious amounts of currency". Most of these bans are rolled back now.
Then a few more groups seemingly got the full access to all the sources of the game. This still has to be confirmed, since Ubisoft is only discussing the admin access. They temporarily shut down the marketplace and secondary ban system that has been breached.
The security issue is not coming from Ubisoft, it's MongoBleed: MongoDB Zlib Vulnerability (CVE-2025-14847), affecting millions of servers worldwide.
#Ubisoft@GameDEV
#Security@GameDEV
#Hackers@GameDEV
1π«‘8π4π±2π₯1
GameDev Pulse
Rainbow Six Siege has been hacked in several attempts by different groups. First ones got access to the game server admin panel: they banned people and gave away $300m+ worth of goods for free. It seems that hackers banned Ubisoft employees while Ubisoftβ¦
The same exploit seemingly allowed hackers to wipe Escape From Tarkov accounts, including some media people, who lost their data while streaming.
#Security@GameDEV
#Hackers@GameDEV
#Security@GameDEV
#Hackers@GameDEV
π«‘8π₯1