Landfall Spyware Targets Samsung Galaxy Phones

Cyber Security News by CyberSum.net

Published on November 7, 2025 at 03:00 PM

2 sources

Security researchers at Palo Alto Networks’ Unit 42 uncovered the Landfall spyware, which exploited a zero-day vulnerability in Samsung Galaxy phones. The spyware, first detected in July 2024, relied on a security flaw patched in April 2025. The attacks, likely driven by espionage, targeted individuals in a specific region. Landfall spyware shares overlapping digital infrastructure with a known surveillance vendor, Stealth Falcon. The spyware enables broad device surveillance, including accessing photos, messages, contacts, and location tracking. The campaign remained active and undetected for months, highlighting the sophistication of the attack.

Also Read

Lazarus Group Espionage Campaign Targets Aerospace and Defense

Security researchers at ENKI have uncovered a sophisticated espionage campaign by the Lazarus Group targeting aerospace and defense organizations. The campaign, active since March 2025, uses phishing operations with malicious Word documents disguised as legitimate communications. The documents deploy a new variant of the Comebacker backdoor, which features advanced encryption and persistence mechanisms. The campaign's focus on specific organizations indicates a targeted espionage effort, with security teams advised to implement robust defenses against macro-based malware and spear phishing attempts.

By Cyber Security News by CyberSum.netNovember 12, 2025 at 03:00 AM