Samsung Security Snafu: Galaxy Devices Hit by Zero-Day Vulnerability Exploit

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added a Samsung mobile devices flaw to its Known Exploited Vulnerabilities catalog. The flaw, CVE-2025-21042, was used to deploy LANDFALL spyware in the Middle East. Samsung Galaxy users can rest easy now that the zero-day exploit has been patched.

3P
Published: November 11, 2025 9:24 amAdded: November 11, 2025 at 1:26 amAssembled by: The Editor
Pro Dashboard

Hot Take:

Who knew that Samsung Galaxy phones were also great at zero-click espionage? It’s like having a secret agent in your pocket that you didn’t even know about! Move over James Bond, the new spy in town is a DNG file!

Key Points:

  • CISA added a Samsung mobile devices flaw, CVE-2025-21042, to its Known Exploited Vulnerabilities catalog.
  • The flaw was exploited by LANDFALL spyware in targeted attacks in the Middle East.
  • The spyware used zero-click exploits via DNG image files sent through WhatsApp.
  • Sophisticated evasion techniques and C2 infrastructure linked to known actors were noted.
  • Federal agencies ordered to patch the vulnerability by December 1st, 2025.

Membership Required

 You must be a member to access this content.

View Membership Levels
Already a member? Log in here
The Nimble Nerd
powered by the NSA, er,  GDPR Cookie Compliance
Confessional Booth of Our Digital Sins

Okay, deep breath, let's get this over with. In the grand act of digital self-sabotage, we've littered this site with cookies. Yep, we did that. Why? So your highness can have a 'premium' experience or whatever. These traitorous cookies hide in your browser, eagerly waiting to welcome you back like a guilty dog that's just chewed your favorite shoe. And, if that's not enough, they also tattle on which parts of our sad little corner of the web you obsess over. Feels dirty, doesn't it?