Samsung Zero-Click Flaw Exploited to Deploy LANDFALL Android Spyware via WhatsApp

A now-patched security flaw in Samsung Galaxy Android devices was exploited as a zero-day to deliver a "commercial-grade" Android spyware dubbed LANDFALL in targeted attacks in the Middle East.

The activity involved the exploitation of CVE-2025-21042 (CVSS score: 8.8), an out-of-bounds write flaw in the "libimagecodec.quram.so" component that could allow remote attackers to execute arbitrary code, according to Palo Alto Networks Unit 42. The issue was addressed by Samsung in April 2025.

"This vulnerability was actively exploited in the wild before Samsung patched it in April 2025, following reports of in-the-wild attacks," Unit 42 said . Potential targets of the activity, tracked as CL-UNK-1054, are located in Iraq, Iran, Turkey, and Morocco based on VirusTotal submission data.

See Full Page

Interests (0)

Settings

Samsung Zero-Click Flaw Exploited to Deploy LANDFALL Android Spyware via WhatsApp

Microsoft is removing one of the best features of Phone Link

Beto: 'Maybe The Real Electoral Victory Was The 3 Electoral Races I've Lost Along The Way'

Trump admin fights order to pay SNAP benefits: 'Makes a mockery of separation of powers'

Palm Springs smokes Claremont in CIF first round

Reese Witherspoon Reflects On Hosting First ‘SNL’ Episode Post-9/11: ‘Zero Stars. Do Not Recommend.’ | Reese Witherspoon, Saturday Night Live | Celebrity News and Gossip | Entertainment, Photos and Vi

Merced County SNAP recipients detail struggle as food budget shrinks

Trump, 79, Slams ‘Stench’ of Political Rival, 85, in Vile Rant

High School Football: Sacramento vs. Nevada Union

Ivanka Trump Stuns In Plunging Mini Dress At Birthday Outing: Photos

Faith and Family: Kathleen Carlton Johnson

From Log4j to IIS, China's Hackers Turn Legacy Bugs into Global Espionage Tools

Hidden Logic Bombs in Malware-Laced NuGet Packages Set to Detonate Years After Installation

Enterprise Credentials at Risk – Same Old, Same Old?

Mamdani Responds to Trump's National Guard Threats

Nancy Pelosi won't seek reelection, ending her storied career in the US House

IRS Direct File won't be available next year. Here's what that means for taxpayers

SNAP Benefits Lapse Leaves Millions in Uncertainty

Cowboys Defensive End Marshawn Kneeland Dies at 24

Trump Administration Seeks Pause on SNAP Funding Ruling

Novo Nordisk Exec Faints in Oval Office With Trump

Supreme Court Upholds Trump Administration's Passport Policy

Supreme Court to Review Kim Davis's Appeal on Marriage Ruling

Cornell University research funds to be restored in deal with Trump administration

Interests (0)

Settings

Samsung Zero-Click Flaw Exploited to Deploy LANDFALL Android Spyware via WhatsApp

Related News

Landfall spyware used in 0-day attacks on Samsung phones • The Register

Commercial spyware “Landfall” ran rampant on Samsung phones for almost a year

'Landfall' spyware abused zero-day to hack Samsung Galaxy phones

Microsoft is removing one of the best features of Phone Link

Beto: 'Maybe The Real Electoral Victory Was The 3 Electoral Races I've Lost Along The Way'

Trump admin fights order to pay SNAP benefits: 'Makes a mockery of separation of powers'

Palm Springs smokes Claremont in CIF first round

Reese Witherspoon Reflects On Hosting First ‘SNL’ Episode Post-9/11: ‘Zero Stars. Do Not Recommend.’ | Reese Witherspoon, Saturday Night Live | Celebrity News and Gossip | Entertainment, Photos and Vi

Merced County SNAP recipients detail struggle as food budget shrinks

Trump, 79, Slams ‘Stench’ of Political Rival, 85, in Vile Rant

High School Football: Sacramento vs. Nevada Union

Ivanka Trump Stuns In Plunging Mini Dress At Birthday Outing: Photos

Faith and Family: Kathleen Carlton Johnson