Researchers: Antivirus software could have been disabled in one of two ways. In one method, a “ghost control” could simulate mouse events. In the other method, attackers could circumvent anti-ransomware protections by controlling whitelisted applications, such as Notepad. Researchers say they discovered the vulnerabilities a year ago and informed the potentially affected software providers and offered their assistance to resolve any security issues before they were exploited by attackers. The researchers say they proved that these vulnerabilities existed for many antivirus programs.”]
Source: https://www.cuinfosecurity.com/researchers-describe-antivirus-flaws-a-16786