E-PAPER
ADVERTISEMENT
Hometechnology
Android Spyware: Hackers exploit zero-day vulnerability to attack Samsung Galaxy phones via WhatsAppThe LANDFALL spyware is capable of stealing all sensitive documents, photos, videos, messages, contact details, microphone recordings, location tracking, and even call logs as well.
Rohit KVN
Last Updated IST
<div class="paragraphs"><p> LANDFALL spyware exploits a zero-day vulnerability on Samsung phones to target people via WhatsApp.</p></div>

LANDFALL spyware exploits a zero-day vulnerability on Samsung phones to target people via WhatsApp.

Credit: Reuters File Photo)

Millions of Android-powered Samsung Galaxy phones are under risk of getting hacked, say the security researchers from Unit 42 of Palo Alto Networks, an internet security firm.

ADVERTISEMENT

Cyber threat actors have exploited a previously unknown zero-day vulnerability (CVE-2025-21042) in Samsung’s Android image processing library.

For the uninitiated, zero-day means a software security vulnerability, where the concerned experts (in this case, engineers at Samsung and Google's Android) were previously unaware of its existence, but some hackers may have exploited it to attack systems.

Also Read:WhatsApp brings passkeys security for E2EE of backup cloud data

Hackers sent out malicious image files (DNG file format) laced with LANDFALL spyware on WhatsApp Messenger to several Samsung Galaxy phones.

This particular spyware is similar to the NSO Group's Pegasus, which was used to target high-profile people, human rights activists and journalists worldwide.

It is a zero-click spyware and can install on any device, where the user has turned on the autodownload feature for multimedia content while connected to a Wi-Fi router or cellular data on.

There is no official word on how many people have been affected, but as per the report, people using Galaxy S22, S23, S24, and Galaxy Z series phones with Android 13, 14, and 15 versions are vulnerable to LANDFALL spyware.

It should be noted that Samsung had fixed a vulnerability in April 2025 for this particular spyware, but bad actors have uncovered a new flaw in Samsung’s image processing library to infiltrate the Galaxy phones.

The LANDFALL spyware is capable of stealing all sensitive documents, photos, videos, messages, contact details, microphone recordings, location tracking, and even call logs as well.

There is no information on who developed the LANDFALL spyware, but it is said to be used for surveillance of specific targets in the Middle East.

Here are tips on how to safeguard yourself from such threats:

1) Turn off the autodownload feature on all messenger apps on your phone

2) Do not click URLs sent on messenger apps from unknown people

3) Always download apps from the Google Play Store

4) Whenever the company rolls out a new software patch, update your phone to the latest software version immediately

5) Install a good anti-virus on your phone

Also Read:Google Maps gets booster dose of Gemini AI and more features

Get the latest news on new launches, gadget reviews, apps, cybersecurity, and more on personal technology only on DH Tech.

ADVERTISEMENT
(Published 10 November 2025, 18:51 IST)
TechnologyTechnology NewsWhatsAppDH TechAndroidSamsungcyber securityspyware
India
Opinion
Karnataka
India Politics
Sports
Entertainment
Technology
World
Specials
Sign up for Newsletters
The Printers Mysore Ltd
Prajavani
Sudha
Mayura
Epaper
Classifieds
Contact
About
Privacy Policy
Terms
Disclaimer
Grievance Redressal