World

2 min read

Sophisticated Spyware Targets Samsung Phones for Nearly a Year

Nov 07, 2025

Sophisticated Spyware Targets Samsung Phones for Nearly a Year

Researchers at Unit 42, the threat intelligence arm of Palo Alto Networks, have revealed a sophisticated spyware known as Landfall that targeted Samsung Galaxy phones for nearly a year. The campaign leveraged a zero-day exploit in Samsung Android software to steal a raft of personal data, and it was active from July 2024 to April 2025. The underlying vulnerability, catalogued as CVE-2025-21042, has since been patched by Samsung. According to Unit 42, Landfall was used to target individuals in the Middle East for surveillance. "We believe that the attacks were likely targeted at specific groups, and the malware was designed to steal sensitive information," said a spokesperson for Unit 42. "The fact that the vulnerability was exploited for nearly a year highlights the importance of timely patching and updates for mobile devices." The discovery of Landfall has raised concerns about the growing threat of commercial spyware and its potential impact on global security. "The use of zero-day exploits to steal sensitive information is a serious concern, and it's essential that manufacturers and users take steps to protect themselves," said a cybersecurity expert. "The fact that this vulnerability was exploited for so long is a wake-up call for the industry to prioritize security and transparency." Landfall is not an isolated incident, and the use of commercial spyware has become a growing concern in recent years. In 2022, a report by the Citizen Lab revealed that a sophisticated spyware known as Pegasus was used to target journalists and activists in several countries. The use of commercial spyware has also been linked to human rights abuses and surveillance. The discovery of Landfall has led to calls for greater transparency and accountability in the tech industry. "The fact that this vulnerability was exploited for so long is a clear indication that the industry needs to do more to prioritize security and transparency," said a spokesperson for a human rights organization. "We urge manufacturers to take immediate action to protect their users and to provide greater transparency about the security of their products." The current status of the investigation into Landfall is unclear, but Unit 42 has promised to continue monitoring the situation and providing updates as more information becomes available. In the meantime, Samsung has issued a patch for its phones, and users are advised to update their devices as soon as possible to protect themselves from potential threats.

Multi-Source Journalism

This article synthesizes reporting from multiple credible news sources to provide comprehensive, balanced coverage.

AI Analysis

Pro 🧠

Get instant insights, key points & analysis

Discussion

Join 0 others in the conversation

Comments

Likes

Views

Share Your Thoughts

Your voice matters in this discussion

Press Enter to add line breaks Tap to expand

Keep it respectful and constructive Be respectful

Start the Conversation

Be the first to share your thoughts and engage with this article. Your perspective matters!

More Stories

Discover more articles

Tech 2 months, 1 week ago

WhatsApp Cracks Down on "Zero-Click" Hack Vulnerability

WhatsApp has patched a "zero-click" security bug that allowed hackers to remotely compromise Apple devices of targeted users without their interaction, using a combination of the fixed flaw and a previously patched iOS vulnerability. This sophisticat

Hoppi

1 ❤️ 0

Tech 2 weeks, 5 days ago

WhatsApp Wins Permanent Block Against Notorious Spyware Maker NSO Group

A US federal judge has granted WhatsApp's request for a permanent injunction blocking Israeli spyware maker NSO Group from targeting the messaging app's users, effectively banning them from ever using WhatsApp again. The ruling also significantly red

Hoppi

0 ❤️ 0

Tech 2 weeks, 5 days ago

WhatsApp Secures Permanent Block Against Notorious Spyware Maker NSO Group

A US federal judge has granted WhatsApp's request for a permanent injunction against Israeli spyware maker NSO Group, effectively blocking the company from targeting the messaging app's users in the future. The ruling also significantly reduces the f

Hoppi

0 ❤️ 0

World 2 weeks, 2 days ago

Federal Judge Blocks NSO Group from Targeting WhatsApp Users with Pegasus Spyware

A US federal judge has permanently barred Israeli spyware maker NSO from targeting WhatsApp users with its Pegasus app, granting a permanent injunction sought by Meta in a 2019 lawsuit. The ruling, which sets a precedent for the use of surveillance s

Hoppi

0 ❤️ 0

Tech 12 hours, 18 minutes ago

Samsung Galaxy Phones Hit by Sophisticated Spyware Exploit

A newly discovered Android spyware, dubbed Landfall, exploited a previously unknown security flaw, tracked as CVE-2025-21042, to hack Samsung Galaxy phones over a nearly year-long period. The zero-day vulnerability, patched by Samsung in April 2025,

Byte_Bear

0 ❤️ 0

Tech 3 weeks, 3 days ago

Android Malware Revives 12-Year-Old "Pixnapping" Attack to Steal Sensitive App Data

Researchers have revived a 12-year-old attack called Pixnapping that can steal sensitive information from Android devices, including two-factor authentication codes and data from popular apps like Google Maps and Signal. The attack works by allowing

Hoppi

1 ❤️ 0

AI Insights 6 days, 13 hours ago

Windows Vulnerabilities Under Active Exploitation: Global Infrastructure at Risk

Two critical Windows vulnerabilities, including a previously unknown 0-day exploit that has been actively exploited since 2017, are being targeted in widespread attacks across the globe. The zero-day vulnerability, now tracked as CVE-2025-9491, has b

Pixel_Panda

1 ❤️ 0

Tech 1 week, 6 days ago

"MPs Demand Action from Tech Giants to End Mobile Phone Thieves' Free Ride"

MPs have accused tech giants, including Apple, Samsung, and Google, of not doing enough to prevent mobile phone thefts, citing a lack of technical measures to make stolen phones less valuable. The issue is particularly prevalent in London, where 80,0

Hoppi

2 ❤️ 0

Tech 1 month ago

South Korea's Digital Defenses Under Siege: Hackers Strike Again Every Month

South Korea's reputation for digital innovation is being threatened by a series of high-profile hacks, highlighting the country's fragile cybersecurity defenses. A fragmented system of government ministries and agencies has hindered coordinated respo

Hoppi

1 ❤️ 0

Tech 3 weeks, 3 days ago

"Android Users Exposed: Hackers Steal 2FA Codes and Private Messages"

A new Android attack called "Pixnapping" can steal sensitive information, including 2FA codes and location timelines, from devices in under 30 seconds. This vulnerability affects various models, including Google Pixel phones and Samsung Galaxy S25, d

Hoppi

2 ❤️ 0

AI Insights 1 week, 5 days ago

Chinese Smishing Triad Targets Americas with 48-Hour Phishing Attacks

A recent surge in 48-hour attacks by Chinese organized gangs has compromised millions of smartphone users in the Americas, with malicious texts claiming undelivered packages, unpaid fines, or security checks. These scams, driven by the notorious Smis

Hoppi

0 ❤️ 0

Entertainment 3 weeks, 3 days ago

Android Hackers Strike Gold: 2-Factor Codes Stolen in Under 30 Seconds

Android users are in for a security scare as a new attack called "Pixnapping" can steal sensitive info like two-factor authentication codes and private data from screens in under 30 seconds. The malicious app exploits Android's programming interfaces

Hoppi

0 ❤️ 0

AI Insights 1 day ago

Russian Hackers Unleash Devastating Wiper Malware on Ukraine

Russian state-controlled hackers, known as Sandworm, have unleashed a series of devastating cyberattacks on Ukraine, utilizing destructive wiper malware to target sensitive data and infrastructure. The attacks, which began in April and continued thro

Cyber_Cat

1 ❤️ 0

World 3 weeks ago

Nation-State Hackers Infiltrate F5 Network, Exposing Thousands of Customers to Risk

A major cybersecurity breach at F5, a US-based software maker, has left thousands of global networks vulnerable to hacking by a nation-state group. The compromised network segment controls updates for BIG IP, used by 48 top corporations worldwide, in

Hoppi

0 ❤️ 0

Tech 2 months, 1 week ago

WhatsApp Cracks Down on "Zero-Click" Hack Vulnerability

WhatsApp has patched a "zero-click" security bug that allowed hackers to secretly infiltrate Apple devices without user interaction, exploiting a vulnerability in conjunction with a previously fixed iOS and Mac flaw. This sophisticated attack, which

Hoppi

1 ❤️ 0

World 3 weeks ago

Nation-State Hackers Infiltrate F5 Network, Exposing Thousands of Global Networks to Risk

A major cybersecurity breach at F5, a US-based software company, has left thousands of global networks vulnerable to hacking by a nation-state group. The attackers, believed to have been inside F5's network for years, gained control over critical sys

Hoppi

0 ❤️ 0

Tech 2 months, 1 week ago

FBI Issues Warning: Billion-Dollar Hacker Targets Unsecured Apps

InnovationCybersecurityFBI Billion Dollar Hacker WarningDo Not Install This AppByZak Doffman,Contributor.Forbes contributors publish independent expert analyses and insights. Zak Doffman writes about security, surveillance and privacy.Follow AuthorAu

Hoppi

1 ❤️ 0

World 3 weeks, 2 days ago

Nation-State Hackers Wreak Havoc on F5 Network, Thousands at Risk

A major software maker, F5, has disclosed a breach by a sophisticated nation-state hacking group, which had been secretly operating within their network for an extended period. The hackers gained control of F5's update system and accessed sensitive i

Hoppi

1 ❤️ 0

Business 1 week, 1 day ago

Cellebrite Phone Hacking Tools Expose Vulnerabilities in Select Google Pixel Models

A leaked Cellebrite briefing has revealed that several Google Pixel models, including the Pixel 6, 7, 8, and 9 series, are vulnerable to phone hacking using the company's law enforcement tools, despite enhanced security features offered by alternativ

Cyber_Cat

0 ❤️ 0

Business 1 week ago

Cellebrite Phone Hacking Tool Exposes Vulnerable Google Pixel Models

A leaked Cellebrite briefing has revealed that several Google Pixel models, including the Pixel 6, 7, 8, and 9 series, are vulnerable to phone hacking using the company's law enforcement tools. The briefing, obtained by an anonymous individual, indic

Pixel_Panda

0 ❤️ 0

AI Insights 3 weeks, 1 day ago

GrapheneOS Breaks Free from Pixel's Security Shackles: Android's New Hope

GrapheneOS, a privacy-focused Android fork, is expanding its reach beyond Google Pixel phones by partnering with a major Android OEM to bring its secure operating system to Snapdragon-powered flagship devices. This move marks a significant shift from

Hoppi

1 ❤️ 0

Tech 1 week, 2 days ago

LG Uplus Joins South Korean Telco Breach Wave, Raises Industry Concerns

LG Uplus, one of South Korea's largest telecom operators, has confirmed a suspected data breach to the national cybersecurity watchdog, KISA, amid a wave of high-profile hacks in the country. This incident marks the third major cybersecurity breach a

Hoppi

0 ❤️ 0

AI Insights 1 month ago

Industrial Routers Exposed: Unsecured Devices Used to Blast Phishing SMS Attacks

Researchers have uncovered a widespread phishing campaign using vulnerable cellular routers, manufactured by Milesight IoT Co., Ltd., to blast SMS-based phishing messages since 2023. These industrial-grade devices, used for connecting traffic lights

Hoppi

1 ❤️ 0

Politics 1 month, 3 weeks ago

Update your Samsung phone ASAP to patch this zero-day flaw exploited in the wild

Samsung has issued a critical patch to address a zero-day vulnerability in its Android smartphones, which has been exploited in the wild. The flaw, tracked as CVE-2025-21043, allows remote attackers to execute arbitrary code and affects devices runni

Hoppi

6 ❤️ 0

Welcome to Crene

Sophisticated Spyware Targets Samsung Phones for Nearly a Year

Share & Engage Share

Share this article

AI Analysis

Discussion

Share Your Thoughts

Start the Conversation

More Stories

WhatsApp Cracks Down on "Zero-Click" Hack Vulnerability

WhatsApp Wins Permanent Block Against Notorious Spyware Maker NSO Group

WhatsApp Secures Permanent Block Against Notorious Spyware Maker NSO Group

Federal Judge Blocks NSO Group from Targeting WhatsApp Users with Pegasus Spyware

Samsung Galaxy Phones Hit by Sophisticated Spyware Exploit

Android Malware Revives 12-Year-Old "Pixnapping" Attack to Steal Sensitive App Data

Windows Vulnerabilities Under Active Exploitation: Global Infrastructure at Risk

"MPs Demand Action from Tech Giants to End Mobile Phone Thieves' Free Ride"

South Korea's Digital Defenses Under Siege: Hackers Strike Again Every Month

"Android Users Exposed: Hackers Steal 2FA Codes and Private Messages"

Chinese Smishing Triad Targets Americas with 48-Hour Phishing Attacks

Android Hackers Strike Gold: 2-Factor Codes Stolen in Under 30 Seconds

Russian Hackers Unleash Devastating Wiper Malware on Ukraine

Nation-State Hackers Infiltrate F5 Network, Exposing Thousands of Customers to Risk

WhatsApp Cracks Down on "Zero-Click" Hack Vulnerability

Nation-State Hackers Infiltrate F5 Network, Exposing Thousands of Global Networks to Risk

FBI Issues Warning: Billion-Dollar Hacker Targets Unsecured Apps

Nation-State Hackers Wreak Havoc on F5 Network, Thousands at Risk

Cellebrite Phone Hacking Tools Expose Vulnerabilities in Select Google Pixel Models

Cellebrite Phone Hacking Tool Exposes Vulnerable Google Pixel Models

GrapheneOS Breaks Free from Pixel's Security Shackles: Android's New Hope

LG Uplus Joins South Korean Telco Breach Wave, Raises Industry Concerns

Industrial Routers Exposed: Unsecured Devices Used to Blast Phishing SMS Attacks

Update your Samsung phone ASAP to patch this zero-day flaw exploited in the wild