LetsDefend Monitoring Alert

Windows OLE Zero-Click RCE Exploitation Detected (CVE-2025-21298)

Feb, 04, 2025, 04:18 PM

Event ID: 314

Event Time: Feb, 04, 2025, 04:18 PM

Rule Name: SOC336 - Windows OLE Zero-Click RCE Exploitation Detected (CVE-2025-21298)

Alert Type: Malware

MITRE Technique:
T1566 - Initial Access - Phishing,
T1059.001 - Execution - Command and Scripting Interpreter: PowerShell,
T1574.002 - Privilege Escalation - Hijack Execution Flow: DLL Side-Loading,

Severity: Critical

Security Analyst

2025 © LetsDefend

45305 Catalina ct. Suite 150, Sterling VA 20166