Reborn in Rust: MuddyWater Evolves Tooling with RustyWater Implant

**CloudSEK TRIAD identified a MuddyWater spearphishing campaign targeting Middle East diplomatic, maritime, financial, and telecom sectors that uses a malicious Word document with embedded macros to drop a Rust-based implant (RustyWater/Archer RAT) capable of anti-analysis, registry persistence, async HTTP C2, process injection, and modular post-compromise extension; the report provides technical analysis, IOCs (SHA256 hashes and IPs), MITRE mappings, and mitigation recommendations.**