Researchers at cybersecurity company Kaspersky found malware on the Android version of CamScanner. The famous document scanning app has had over 100 million downloads on the Play Store, and was pulled from the store by Google after notification from the Russian company. The digital security lab decided to investigate the app after a series of negative user reviews on its page, published mostly in the last month. The iPhone (iOS) version was not mentioned in the report, and is still available for download from the App Store.
WhatsApp 'fake' already reaches 25 million in the world; understand
CamScanner turns paper into PDF using cell phone camera Photo: Reproduction / Paulo Alves
Want to buy a cell phone, TV and other discounted products? Meet the Compare TechTudo
CamScanner was originally a legitimate app, with its revenue from advertising and internal purchases. However, in recent versions, the app has included an advertising library that contains a malicious module. The security firm's assumption that developers have partnered with an unscrupulous advertiser, knowing it or not.
The module, identified by Kaspersky as Trojan-Dropper.AndroidOS.Necro.n, has already been observed by the company in pre-installed apps on Chinese smartphones. The trojan extracts and executes another malicious module contained in the mutter.zip encrypted file included in the application features.
The extracted malware one Trojan Downloader It downloads more malicious modules, depending on what their creators are up to at the moment. The code can be used in different ways for example by displaying intrusive advertisements on infected applications or by subscribing users to paid subscriptions.
According to the researchers, the latest CamScanner update appears to be free of malicious code. Keep in mind, however, that different devices may run different versions of the app, and that some phones may still issue malware.
Kaspersky researchers discovered malware in the famous CamScanner app Photo: Reproduo / CamScanner
To protect yourself from malware, it is always important to keep antivirus software installed on your smartphone. O TechTudo has prepared a list of the best options of 2019 for Android. Also, checking the app developer, ratings, and comments can help circumvent suspicious programs on your phone.
Also essential is to avoid alternative APK stores, while always prioritizing the Google Play Store, the platform may even let apps pass with malicious code, as in the case above, but it still has a more rigorous verification process than unofficial competitors.
How to Remove Virus on an Android Phone