Antivirus software can be hijacked to wipe data

Many popular pieces of antivirus software such as Microsoft, SentinelOne, TrendMicro, Avast, and AVG can be exploited for their data deletion capabilities, a top cybersecurity researcher has claimed.

In a Proof-of-Concept document (opens in new tab) dubbed “Aikido”, Or Yair, who works for cybersecurity firm SafeBreach, explained how the exploit works via what is known as a time-of-check to time-of-use (TOCTOU) vulnerability.

Source: www.techradar.com