APT Group Exploits Zero-Day Vulnerability in Output Messenger to Target Kurdish Military in Iraq

Since April 2024, a group linked to Türkiye, known as Marbled Dust (alias Sea Turtle, Teal Kurma, SILICON, and Cosmic Wolf), has exploited a zero-day vulnerability (CVE-2025-27920) in Output Messenger to spy on Kurdish military targets in Iraq. This vulnerability allowed the group to collect user data.