Researchers Demonstrate How EDR and Antivirus Can Be Weaponized Against Users


Different endpoint detection and response (EDR) and antivirus (AV) systems contain high severity security flaws that have been publicly revealed. These flaws might be leveraged to make the products data wipers.

According to SafeBreach Labs researcher Or Yair, “This wiper runs with the permissions of an unprivileged user yet has the capacity to erase practically any file on a system, including system files, and make a computer utterly unbootable.” It accomplishes all of that without adding any code to the target files, making it completely undetected.

Read More…