Cybersecurity firms report Iranian group MuddyWater is using a new Rust-based remote access tool, dubbed RustyWater, in spear-phishing attacks against diplomatic, financial, maritime, and telecom targets in the Middle East via malicious Word documents.