A Turkish-linked espionage group has been exploiting a zero-day vulnerability in the Output Messenger app to conduct surveillance on Kurdish military personnel based in Iraq, according to a Microsoft Threat Intelligence report. This operation highlights ongoing cyber activities targeting regional military forces. Separately, Turkey's intelligence service reportedly thwarted a remote attack involving pager devices in Lebanon last year, shortly after similar attacks by Israel caused casualties among Hezbollah members. Multiple critical zero-day vulnerabilities have been identified in widely used technology products, including a Fortinet FortiVoice flaw (CVE-2025-32756), a Siemens OZW Web Server vulnerability allowing unauthenticated remote code execution, and a Samsung MagicINFO 9 Server flaw (CVE-2025-4632) with a 9.8 CVSS score that is actively exploited to deploy Mirai malware. Additionally, a high-severity Google Chrome vulnerability (CVE-2025-4664) is being exploited to steal sensitive data such as account credentials. Users of affected systems and devices are advised to apply updates promptly to mitigate risks.