Call: 888-685-1337
Local: 806-350-8324
Your Computer Guru * Home & Business

 

AVGater Uses Vulnerability To Infect PCs using Installed Antivirus

Tue, 11/14/2017 - 12:17 -- ray wilson


Florian Bogner, a security auditor from Austria has discovered a vulnerability in many popular antivirus titles that allows a hacker to use the AV quarantine folder to infect a more sensitive area of a computer such as C:\Windows.

Using a phishing email, a hacker can then use a Windows feature called NTFS file junction point to restore malware that the antivirus software already moved into quarantine.

Bogner has contacted popular Antivirus companies like Trend Micro, Kaspersky and Malwarebytes and they have already released updates.

For individuals, it is advised to immediately update Antivirus software and for businesses, it’s advised to disable the ability to restore quarantined files.