LANDFALL: New Commercial-Grade Android Spyware in Exploit Chain Targeting Samsung Devices

Commercial-grade LANDFALL spyware exploits CVE-2025-21042 in Samsung Android’s image processing library. The spyware was embedded in malicious DNG files.

unit42.paloaltonetworks.com

582

Mr Robot

Mr Robot @zalepentester

30 Dec 2017

Samsung Browser SOP bypass MSF module working Client Side (CVE-2017-17692) youtu.be/sfaBW6nct4k #exploit #0day #SamsungExploit #Android #infoSec