New 'Landfall' Spyware Exploits Samsung Zero-Day via WhatsApp DNG Images

The recently discovered 'Landfall' spyware has exploited a zero-day vulnerability (CVE-2025-21042) in Samsung devices through malicious DNG images sent via WhatsApp. This attack is particularly concerning due to its zero-click nature, allowing for device compromise without any user interaction. The exploit is part of a broader trend targeting DNG image processing libraries, with similar vulnerabilities identified in Samsung (CVE-2025-21043) and Apple (CVE-2025-43300 combined with CVE-2025-55177 in WhatsApp) devices. This shift towards exploiting DNG files highlights a new attack vector that cybersecurity professionals must address. The zero-click capability of these exploits underscores the need for robust security measures, including regular patching of image processing libraries and implementing additional controls like sandboxing. End-users should ensure their devices and applications are up-to-date and exercise caution with unsolicited messages. This incident also emphasizes the importance of securing communication platforms like WhatsApp, which have been frequent targets of such exploits. The broader implication is that attackers are increasingly focusing on less scrutinized file formats and zero-click exploits to bypass traditional security measures. Cybersecurity professionals must stay vigilant and proactive in identifying and mitigating these emerging threats.