http://www.eweek.com/security/antivirus-software-cloud-use-exposes-customers-to-data-exfiltration Blackhat presentation: https://www.blackhat.com/docs/us-17/thursday/us-17-Kotler-The-Adventures-Of-Av-And-The-Leaky-Sandbox-wp.pdf
Also of note from the Blackhat presentation. Plus any security solution accessing the below noted cloud based bulk scanning services are vulnerable. VoodooShield, Zemana AM, are a few I know Wilders folks use:
It's me or they are just saying something quite obvious? If someone hacks VT and you upload VT files "your data" might be stolen... Ok
Another point of security interest is Win 10 native SmartScreen which does cloud base analysis. Whereas Window Defender was not vulnerable, its cloud scanning feature is a newer development introduced in ver. 1607.
A must read in the context of this thread topic pertaining to Zemana over at Malwaretips here: https://malwaretips.com/threads/insight-into-zemanas-strange-cloud-scanning.72797/