Threat Post

Zero-Day Disclosed in Unity Web Player

A zero-day vulnerability has been disclosed in the popular Unity Web Player browser plugin. The flaw allows an attacker crossdomain access to websites and services using the victim’s credentials. Some ...
PC World

Researcher warns popular gaming plug-in puts millions of web users at risk from data thieves

UPDATE, 5:45 PDT: Unity Technologies said it had identified the codepaths leading to the vulnerabilities and that it planned to release fixes on Friday. “Updates about progress on the release will be ...
eTeknix

Unity Plug-In Leaves Millions of PCs Vulnerable to Data Theft

Jouko Pynnönen, a security researcher from Finland, has uncovered a security flaw within the Unity Web Player plug-in that could make hundreds of millions of gamers vulnerable to having their data ...