Comment: Symlink Race Bugs Discovered In 28 Antivirus Products

One of the first thing that most malware does is to disable AV. Expect to see this in the wild very soon.

I usually advise against the installation of any additional antivirus product instead of Windows Defender or Apple’s built-in AV, as they are all relatively easy to bypass for the seasoned attacker, for example by using in-memory attacks so there are no files for the AV to scan…:

Original article here