Many critical systems are still being maintained, and the cloud provides some security cover. But experts say that any lapses in protections like patching and monitoring could expose government systems.
New ‘Landfall’ spyware exploited a Samsung 0-day delivered through WhatsApp messages
LANDFALL — a commercial-grade Android spyware exploiting a now-patched Samsung zero-day (CVE-2025-21042) through weaponized DNG images sent via WhatsApp, enabling zero-click compromise of Samsung Galaxy devices.
This isn’t an isolated incident. LANDFALL is part of a larger DNG exploitation wave. Within months, attackers weaponized image parsing vulnerabilities across Samsung (CVE-2025-21042, CVE-2025-21043) and Apple (CVE-2025-43300 chained with WhatsApp CVE-2025-55177 for delivery)
It seems like DNG image processing libraries became a new attack vector of choice – suspiciously consistent across campaigns. Samsung had two zero-days in the same library, while a parallel campaign hit iOS – all exploiting the same file format. Should we expect more?
submitted by /u/Megabeets
[link] [comments]
In Cozying Up to Trump, Leaders Hedge Their Reliance on Moscow and Beijing
President Trump has made it easier for countries that are close to Russia and China to build ties with the United States. Those countries are embracing the opportunity.
A new Chinese AI model claims to outperform GPT-5 and Sonnet 4.5 – and it’s free
The plot of the US-China AI arms race just thickened – again.
U.S. Allies to Gain Access To Military GPS User Equipment
U.S. allies are to have access to the market for Military Global Positioning System (GPS) User Equipment (MGUE) under a memorandum of understanding (MoU) by U.S. Space Force Space Systems […]
Friday Squid Blogging: Squid Game: The Challenge, Season Two
The second season of the Netflix reality competition show Squid Game: The Challenge has dropped. (Too many links to pick a few—search for it.)
As usual, you can also use this squid post to talk about the security stories in the news that I haven&…
Majority of Brazil’s Supreme Court votes to reject Bolsonaro’s appeal, upholding 27-year sentence
submitted by /u/FreedomsPower [link] [comments]
LANDFALL spyware exploited Samsung zero-day CVE-2025-21042 in Middle East attacks
A now-patched Samsung Galaxy flaw, tracked as CVE-2025-21042, was exploited as a zero-day to deploy LANDFALL spyware in targeted attacks in Middle East. Samsung patched a flaw exploited as a zero-day, tracked as CVE-2025-21042 (CVSS score of 8.8), to deploy LANDFALL spyware on Galaxy devices in Middle East attacks. “Unit 42 researchers have uncovered a […]
Takeaways from the 2025 general election, in charts
After voters swung toward Republican Donald Trump during last fall’s presidential election, states like Virginia and New Jersey swung back towards Democratic candidates at nearly the same velocity as 2024’s shift, an Associated Press analysis of electi…
DC Mayor Bowser is not the target of Justice Department investigation, officials say
The Justice Department is scrutinizing a trip that Washington, D.C., Mayor Muriel Bowser took to Qatar, but the mayor is not a target of the investigation, a person familiar with the matter told The Associated Press, The probe into a trip Bowser took w…