[U25]Let's Make Windows Defender Angry: Antivirus can be an oracle! === :::info - **Date:** Oct.29th 17:10-17:50 - **Speaker:** Ryo_Ichikawa - **Category:** U25 - Main Track > The technology called anti-virus has become an integral part of the computers we use every day. It is no exaggeration to say that anti-virus software is installed on almost every personal computer today.<br>But what happens if such anti-virus software carries security risks? We used the behavior of Windows Defender, one of the most famous anti-virus software, to complete the verification code for our sample application. The conditions required for this attack are that Windows Defender is enabled and that the targeted application is implemented in a generic way.<br>This attack method is considered to be potentially applicable to a large number of applications, and the only general defense is the extremely unrealistic method of turning off the antivirus function.<br>In this talk, we will explain the principle of this attack method and some cases that may occur in real applications, and discuss what general application developers and anti-virus software vendors should be aware of. ::: ###### tags: `CODEBLUE2019`,`CODEBLUE`