Iran's MuddyWater spies wade into 100+ government networks
Iran-linked MuddyWater breached over 100 MENA government and diplomatic entities using phishing, weaponized Word macros, FakeUpdate loader, and Phoenix backdoor.
SilentSync RAT Delivered via Two Malicious PyPI Packages Targeting Python Developers
Two malicious PyPI packages delivered the SilentSync RAT, enabling remote command execution, file exfiltration, screen capture, and browser credential theft on Windows.