Bgr
Landfall Spyware Exploits Samsung Galaxy Zero-Day Vulnerability
First seen 10 Nov 2025, 11:52 UTC
•



+34
•49% similarity
•36.2
Share:
Export
Ask AI about this cluster
Analyzing cluster data...
Referenced clusters:
Something went wrong. Please try again.
Cluster AI
Ask questions about this threat cluster with AI-powered analysis.
Get Researcher $29.99/moArticle Content
Browse articles
Landfall, a sophisticated Android spyware, targeted Samsung Galaxy phones for nearly a year, exploiting a zero-day vulnerability (CVE-2025-21042) in Samsung's image-processing library. The campaign, uncovered by Palo Alto Networks' Unit 42, likely affected users in the Middle East, allowing attackers to install surveillance software without user interaction. The vulnerability was first detected in July 2024 and was patched in April 2025.
ThreatCluster AI