A Türkiye-linked advanced persistent threat (APT) group known as Marbled Dust has exploited a zero-day vulnerability (CVE-2025-27920) in Output Messenger, a communication app used in India, to conduct espionage targeting Kurdish military users operating in Iraq. The attackers deployed Golang backdoors on Kurdish servers to facilitate stealthy surveillance. This cyber operation represents a targeted effort to infiltrate Kurdish military communications in the region. Separately, China-linked APTs have exploited another vulnerability (CVE-2025-31324) in SAP systems, breaching 581 critical systems worldwide. In the broader cybersecurity landscape, 265 cyber attacks were recorded across 33 countries in the week leading to May 13, 2025, with India being the most affected country, accounting for 22.3% of incidents. The most active threat actor during this period was NoName057(16), responsible for 70 attacks.