Aikido - Turning EDRs to Malicious Wipers Using 0-day Exploits

Explore a 36-minute conference talk from RSA Conference that reveals how security researchers exploited the file deletion capabilities of Endpoint Detection and Response (EDR) systems to create a next-generation wiper malware. Learn how this innovative attack method operates with unprivileged user permissions yet can erase nearly any file on a system, including critical system files. Discover the technique's ability to avoid detection by leveraging the EDR's own functionality rather than directly interacting with target files. Gain insights into this potentially devastating security vulnerability presented by Or Yair, a Security Researcher from SafeBreach.