Antivirus software can be hijacked to wipe data

Many popular antivirus software such as Microsoft, SentinelOne, TrendMicro, Avast and AVG can be exploited due to their data deletion capabilities, a leading cybersecurity researcher claimed.

In a Proof of Concept document (opens in new tab) dubbed “Aikido,” Or Yair, who works for cybersecurity firm SafeBreach, explained how the exploit works through what’s known as a time-of-check to time-of-use (TOCTOU) vulnerability.

Leave a Comment