Landfall Spyware Exploits Samsung Galaxy Zero-Day Vulnerability

Landfall Spyware Exploits Samsung Galaxy Zero-Day Vulnerability

First seen 23 Nov 2025, 12:25 UTC VarindiaCybernewsFeeds.FeedburnerScworldIn.Mashable+9 72% similarity 56.5

Article Content

Browse articles
ThreatCluster

A sophisticated spyware named 'Landfall' targeted Samsung Galaxy phones for nearly a year, exploiting a zero-day vulnerability in Samsung's image-processing library. Discovered by Palo Alto Networks' Unit 42, the campaign primarily affected users in the Middle East and utilized maliciously crafted images sent via WhatsApp to compromise devices without user interaction. The vulnerability, tracked as CVE-2025-21042, was patched by Samsung in April 2025.

ThreatCluster AI

Community

Browse all →