Landfall Spyware Exploits Samsung Galaxy Zero-Day Vulnerability

Landfall Spyware Exploits Samsung Galaxy Zero-Day Vulnerability

First seen 10 Nov 2025, 11:52 UTC Globalsecuritymag.FrGbhackersBgrIrishstarDeccanherald+34 49% similarity 36.2

Article Content

Browse articles
ThreatCluster

Landfall, a sophisticated Android spyware, targeted Samsung Galaxy phones for nearly a year, exploiting a zero-day vulnerability (CVE-2025-21042) in Samsung's image-processing library. The campaign, uncovered by Palo Alto Networks' Unit 42, likely affected users in the Middle East, allowing attackers to install surveillance software without user interaction. The vulnerability was first detected in July 2024 and was patched in April 2025.

ThreatCluster AI

Community

Browse all →