Tom's Guide
Last week, the cybersecurity team at Palo Alto Networks' Unit 42 published a report that detailed their discovery of a vulnerability on the best Samsung phones. The bug, tracked as CVE-2025-21042, exploits a flaw in the image processing library that left users vulnerable to a zero-day exploit for months.
Called “Landfall,” the exploit was patched by Samsung in April. However, it does appear that it had been left open since mid-2024, leaving select users vulnerable to malicious image files that could have been embedded in WhatsApp messages. These malicious DNG files may have been labeled as .jpeg files to make them appear more legitimate too. Landfall, as a zero-day flaw, would not have required any interaction from the user in order to infect the device.
The impacted devices include the
Fast Company Lifestyle
The Mercury News
WKOW 27
Space War
WMBD-Radio
PC World
KMBC
Just Jared
Raw Story