A newly discovered spyware named ‘LandFall’ has been deployed by a threat actor through an exploited zero-day vulnerability in Samsung’s Android image processing library. The spyware is introduced via malicious images sent over WhatsApp, demonstrating the effective combination of social engineering and software vulnerabilities in carrying out cyber attacks.
Such vulnerabilities are particularly concerning as they can allow attackers to bypass security controls and gain unauthorized access to user data. The use of WhatsApp as a vector highlights the evolving landscape of cybersecurity threats, where common communications platforms are targeted. It emphasizes the importance of staying updated on security patches and being vigilant about suspicious content received in messaging applications, as even benign-looking images can harbor malicious payloads.
👉 Pročitaj original: BleepingComputer
