Since June, researchers have found and reported several dozen serious flaws in antivirus products from vendors such as Kaspersky Lab, ESET, Avast, AVG Technologies, Intel Security (formerly McAfee) and Malwarebytes.
Malwarebytes is not an antivirus program but the writer lumps it into that grouping.
Antivirus vendors don't seem too concerned about the potential for widespread attacks against their consumer products. For the most part, researchers agree that such attacks are unlikely for now because typical cybercriminal gangs have other, more popular, targets to attack such as Flash Player, Java, Silverlight, Internet Explorer or Microsoft Office.
Malware writers would much rather target a large audience through social engineering
where they can use sophisticated but less technical means than proof-of-concept viruses
. Social engineering has become on of the most prolific tactics for distribution of malware, identity theft and fraud