Cybersecurity researchers have uncovered a sophisticated Android spyware campaign called LANDFALL that exploits a zero-day vulnerability in Samsung Galaxy devices to deliver surveillance tools via malicious images in WhatsApp messages. The campaign demonstrates the widespread use of DNG image processing vulnerabilities across mobile platforms, highlighting targeted intrusion activities mainly in the Middle East. #CVE-2025-21042 #SamsungGalaxy #LANDFALL #StealthFalcon #Variston
Keypoints
- LANDFALL is an Android spyware campaign exploiting a zero-day vulnerability in Samsung devices.
- The malware is delivered through malformed DNG images sent via WhatsApp.
- The spyware enables extensive surveillance, including mic, location, calls, photos, and messages.
- The campaign targets Samsung Galaxy models, with suspected activity in the Middle East.
- Samsung patched related vulnerabilities in April and September 2025, mitigating the threat.
Read More: https://gbhackers.com/samsung-0-day-vulnerability/