Chris Riotta reports:
Turkish-linked cyber spies used a zero-day exploit housed in a popular chat software to target Kurdish military operations in Iraq, Microsoft Threat Intelligence reported Monday.
Microsoft’s cybersecurity research arm said the threat actor tracked as “Marbled Dust” exploited unpatched user accounts in the Output Messenger Server Manager application, allowing the group to collect user data from targets in Iraq. Researchers said Marbled Dust likely conducted reconnaissance to confirm Kurdish military use of the app before launching the attack.
Marbled Dust is a Turkish-affiliated espionage group that typically targets organizations in Europe and the Middle East, according to the report.
Read more at GovInfoSecurity.