The Türkiye-affiliated espionage group Marbled Dust (Sea Turtle) has been exploiting a zero-day vulnerability, CVE-2025-27920, in Output Messenger to infiltrate systems linked to the Kurdish military in Iraq. Leveraging the directory traversal flaw, the group deployed malicious payloads and a custom GoLang backdoor, gaining covert access to sensitive communications and credentials.
What’s new on HivePro
Get through updates and upcoming events, and more directly in your inbox