Mobile Malware, AI Security, Regulatory Compliance – 11/08/2025

This compliance intelligence digest highlights critical alerts regarding ‘Landfall’ malware targeting Samsung devices and ‘Ransomvibing’ affecting Visual Studio extensions. Key regulatory updates include the FDA’s response to Alvotech’s biosimilar application and California’s upcoming workshop on climate risk reporting. Microsoft’s AI expansion in the UAE also raises third-party security concerns, while forward-thinking compliance strategies for 2026 emphasize fairness and transparency.

Top 5 Critical Compliance Alerts

• ‘Landfall’ Malware Targets Samsung Galaxy Users: New malware can secretly record conversations, track device locations, capture photos, and collect contacts on compromised Samsung devices. Read more
• ‘Ransomvibing’ Infests Visual Studio Extension Market: A malicious VS Code extension encrypts and exfiltrates data, raising concerns about supply chain security and AI-generated threats. Read more

Regulatory Updates

• FDA Issues Complete Response Letter for Alvotech’s Simponi® (golimumab) Biosimilar AVT05: The FDA issued a complete response letter (CRL) for Alvotech’s biosimilar application. Read more
• California Air Resources Board to Hold Another Public Workshop: The California Air Resources Board will hold a third workshop on greenhouse gas emissions (SB 253) and climate risk reporting (SB 261) mandates. Read more

Third-Party Risk & Due Diligence

• Microsoft Backs Massive AI Push in UAE, Raising Security Concerns: Microsoft’s partnership with Emirates tech company G42 to build a 5-gigawatt AI campus using Nvidia GPUs raises security concerns. Read more

Policy & Governance Updates

• 2026 Compliance Predictions Companies Can’t Afford to Ignore: Embedding fairness, transparency, and accountability into decision-making will provide a competitive advantage in navigating future challenges. Read more