Researchers have disclosed significant security weaknesses in popular antivirus software applications that could be abused to deactivate their protections and take control of allow-listed applications to perform nefarious operations on behalf of the malware. The twin attacks are aimed at circumventing the protected folder feature offered by antivirus programs to encrypt files and disabling their real-time protection by simulating mouse “click” events (aka “Ghost Control”) The researchers didn’t name the vendors who were affected. The findings are a reminder that security solutions that are explicitly designed to safeguard digital assets from malware attacks can suffer from weaknesses themselves.
Source: https://thehackernews.com/2021/06/malware-can-use-this-trick-to-bypass.html