CamScanner Android App, a Mobile scanner has now been removed from the Google Play Store after it was found with an advertising malware. Before being removed, CamScanner had over 100 million downloads on Playstore.
Kaspersky researchers discovered that the latest versions 5.11.7 of the CamScanner Android App consign with a malware Trojan-Dropper module that had the potential to show intrusive ads and signed users up for paid subscriptions provided by a third-party named AdHub.
Researchers at Kaspersky said that the CamScanner Android App was a clean, legitimate app for quite some time. The app showed ads for monetization and also allowed in-app purchases. However, with the latest version of CamScanner 5.11.7, the app was found to come with an advertising library that contained a malicious module.
This module, known as Trojan-Dropper.AndroidOS.Necro.n has been previously recognized in some preinstalled apps on Chinese smartphones. Kaspersky says that the module can extract and run another malicious module from an encrypted file that includes in the app’s resources. The name “Trojan-Dropper” itself defines that it is a Trojan Download that downloads more malicious modules.
After Kaspersky reported the malware to Google, the CamScanner Android App was removed from Google Play Store. After the CamScanner app was reported, the app developers removed the malicious code with the latest update, but the versions may vary for different devices and some may still contain the malware.
The CamScanner Android App could not be found on the Play Store, but some older and stable versions of the app such as CamScanner HD and CamScanner (License) can still be found and we recommend not downloading them. If you have CamScanner downloaded on your Android device already, you should delete it until a fixed version gets listed on the Play Store.
But the CamScanner app for iOS is just fine and malware-free and is available for download in the App Store.
Notice from CamScanner Android App Developer team,
You May Also Like: