Unity SpeedTree Website Compromised to Skim Customer Data
Summary
Hide ▲
Show ▼
Unity Technologies' SpeedTree website was compromised with malicious code designed to skim sensitive information from customers. The malicious code was active between March 13 and August 26, 2025, and affected 428 individuals. The compromised data includes names, addresses, email addresses, payment card numbers, and access codes. Affected customers are being notified and offered free credit monitoring and identity protection services. This incident follows a recent high-severity vulnerability in the Unity Editor that could allow attackers to execute malicious code on devices running applications built with Unity.
Timeline
-
13.10.2025 17:30 1 articles · 1d ago
Malicious Code on Unity SpeedTree Website Skims Customer Data
Between March 13 and August 26, 2025, the Unity SpeedTree website's checkout page was compromised with malicious code designed to skim sensitive information from customers. The incident affected 428 individuals, and the compromised data includes names, addresses, email addresses, payment card numbers, and access codes. Affected customers are being notified and offered free credit monitoring and identity protection services.
Show sources
- Malicious Code on Unity Website Skims Information From Hundreds of Customers — www.securityweek.com — 13.10.2025 17:30
Information Snippets
-
The malicious code was active on the SpeedTree website's checkout page between March 13 and August 26, 2025.
First reported: 13.10.2025 17:301 source, 1 articleShow sources
- Malicious Code on Unity Website Skims Information From Hundreds of Customers — www.securityweek.com — 13.10.2025 17:30
-
The compromised data includes names, addresses, email addresses, payment card numbers, and access codes.
First reported: 13.10.2025 17:301 source, 1 articleShow sources
- Malicious Code on Unity Website Skims Information From Hundreds of Customers — www.securityweek.com — 13.10.2025 17:30
-
428 individuals were affected by the data skimming incident.
First reported: 13.10.2025 17:301 source, 1 articleShow sources
- Malicious Code on Unity Website Skims Information From Hundreds of Customers — www.securityweek.com — 13.10.2025 17:30
-
Affected customers are being offered free credit monitoring and identity protection services.
First reported: 13.10.2025 17:301 source, 1 articleShow sources
- Malicious Code on Unity Website Skims Information From Hundreds of Customers — www.securityweek.com — 13.10.2025 17:30
-
A high-severity Unity Editor vulnerability was disclosed shortly after the SpeedTree incident, allowing attackers to load arbitrary libraries and execute malicious code.
First reported: 13.10.2025 17:301 source, 1 articleShow sources
- Malicious Code on Unity Website Skims Information From Hundreds of Customers — www.securityweek.com — 13.10.2025 17:30