Malicious Android app had more than 100 million downloads in Google Play

Kaspersky researchers currently found malware in an app known as CamScanner, a phone-basically based mostly mostly PDF creator that contains OCR (optical character recognition) and has more than (*****) million downloads in Google Play. A lot of sources name the app by a minute bit utterly different names such as CamScanner — Cell phone PDF Creator and CamScanner-Scanner to scan PDFs.
Reliable app stores such as Google Play are usually thought to be a secure haven for downloading instrument. Sadly, nothing is (*****)% safe, and usually malware distributors voice as a lot as sneak their apps into Google Play.
The topic is that even such a highly efficient company as Google can’t thoroughly take a look at millions of apps. Fill in thoughts that many of the apps are up as a lot as now on a odd foundation, so Google Play moderators’ jobs are never performed.
CamScanner became as soon as in point of fact a legitimate app, without a malicious intensions in any scheme, for rather some time. It used adverts for monetization and even allowed in-app purchases. Nonetheless, at some level, that changed, and recent versions of the app shipped with an promoting library containing a malicious module.
Kaspersky merchandise detect this module as Trojan-Dropper.AndroidOS.Necro.n, which we now dangle noticed in some apps preinstalled on Chinese smartphones. Because the title suggests, the module is a Trojan Dropper. That formula the module extracts and runs one other malicious module from an encrypted file included within the app’s sources. This “dropped” malware, in flip, is a Trojan Downloader that downloads more malicious modules reckoning on what its creators are as a lot as within the point out time.
As an illustration, an app with this malicious code could show intrusive adverts and sign users up for paid subscriptions.
Some users of the CamScanner app dangle already spotted suspicious behavior and left reviews on the app’s Google Play web page with warnings to lead clear of the app.
Kaspersky researchers examined a recent model of the app and located the malicious module there. We reported our findings to Google, and the app became as soon as promptly eliminated from Google Play.
It feels like app developers got rid of the malicious code with the most up-to-date change of CamScanner. Fill in thoughts, though, that versions of the app range for diverse gadgets, and a few of them must dangle malicious code.
What we can be taught from this legend is that any app — even one from an reliable retailer, even one with a honest fame, and even one with millions of sure reviews and a huge, actual particular person depraved —can flip into malware overnight. Each app is correct one change some distance from a vital swap. To catch obvious you never raze up in such anxiety, exercise a legitimate antivirus for Android app and scan your smartphone usually. (The paid model of Kaspersky Web Security for Android scans robotically.)
(*)(**)Study Extra(***)

Euch gefällt was ihr seht? Nehmt euch doch einen kurzen Moment und unterstützt uns auf Patreon!
Malicious Android app had more than 100 million downloads in Google Play 1