Samsung has issued a security update to patch a critical zero-day vulnerability (CVE-2025-21043) affecting Android devices, which has been exploited to execute arbitrary code by remote attackers. The flaw exists in the libimagecodec.quram.so library, crucial for image processing on Samsung devices. Notably, the vulnerability may have been used in targeted attacks against WhatsApp users, drawing parallels to a recent iOS vulnerability. As government spyware remains a significant threat to civil society, including journalists and human rights defenders, the incident underscores the urgent need for robust cybersecurity measures across platforms to safeguard users against sophisticated attacks.