• Skip to primary navigation
  • Skip to main content
  • Skip to primary sidebar
  • Skip to footer
  • Jobs
  • Career
    • Cyber Security Training
    • Work from Home
    • Cyber Security Analyst
    • Remote Work – Six Ways to Keep Your Data Safe When Working Remotely
  • Field Guide
  • Newsletter Signup
  • Deals
  • News
AskCyberSecurity.com

AskCyberSecurity.com

Cyber Security News & Information

  • Home
  • Data Privacy
    • Gamers
    • Government Cyber Security
      • Legislation
      • Standards
        • What are the risks of computer security?
        • Medical Cyber Security
    • Social Media
  • Security
    • Data Breaches
    • Scams
    • Malware
  • Software
    • Apps
    • Web Browsers
  • Glossary
    • Cyber Security Acronyms
  • About Ask Cyber Security
    • Authors
    • Contact Us
  • VPN
    • How Do I Know If My VPN is Working?
    • Best Free VPN iPhone
    • Why Use a VPN?
    • NordVPN vs IPVanish
    • Private Internet Access Download
    • Best VPN for Streaming
      • TikTok VPN
    • VPN Porn
    • Computer Security Software – What You Really Need
  • Tutorials
  • ChatGPT
    • Does ChatGPT Save Data?
AskCyber Home » News » Malware » Malware Found in CamScanner App

Malware Found in CamScanner App

2019-08-28 by Michelle Dvorak

CamScanner Malware Android

Malware Found in CamScanner Android App

Malware was found in a free Android app found on the Google Play Store. Hackers can remotely steal data or from banking apps after a device is infected with malware. CamScanner is a productivity app with over 100 million downloads. The app which lets users copy notes and paper documents was found to contain malware that compromises the device it is installed on. The malware may even be used to steal from banking apps installed on the same device. CamScanner is sometimes called CamScanner — Phone PDF Creator and CamScanner-Scanner to scan PDFs.

Cyber security researchers at Kaspersky found malicious code in the app’s module that serves advertisements. The malware was discovered after users left negative reviews on Google Play after their devices began to exhibit strange behavior.

CamScanner mobile
CamScanner mobile

CamScanner is available for Android devices as well as iPhones and iPad. The malware was found only on the Android version. There is no information about the iPhone and iPad apps. CamScanner is a legitimate Android app with over 100 million downloads from the Google Play app Store. It is also available from websites.

CamScanner Trojan Malware

Like many other apps, CamScanner contains advertisements to earn money for its developers. It also offers in-app purchases. However, the advertising code library bundled with the free version of CamScanner contained malicious module that compromised devices.

Kaspersky researchers found malware known as Trojan-Dropper.AndroidOS.Necro.n, in CamScanner ad library which is a Trojan Dropper. This type of malware extracts and runs another malicious module from an encrypted file downloaded with the app or an update. The newly dropped malware, in turn, is a Trojan Downloader that downloads and launches a payload from malicious servers.

These downloaded processes run in the background on the infected phone and work at the behest of the hackers. They can be used to do anything from popping up more advertisements, steal money from mobile banking or payment apps, open multiple web browser tabs, or charge for bogus subscriptions.

If you also have mobile banking apps installed on an infected device, hackers can compromise them with a Trojan malware.

Protect your device from malware, spyware, adware, and other cyberattacks with a quality antivirus app. Periodically scan your smartphone, tablet, or laptop for malware or newly installed apps. Many paid versions of Android antivirus apps scan devices automatically on a regular schedule.

What is CamScanner?

CamScanner lets you use your smartphone or tablet camera as a scanner. CamScanner takes a photo of any document like receipts, notes, presentation handouts, and business cards and saves it in Adobe pdf format Docs can be Sync docs across smartphones, tablets and computers. Optical character recognition (OCR) is used to search scanned documents. CamScanner can also export documents to an Evernote, Google Drive, Box, Dropbox, OneDrive.

I have CamScanner installed, what should I do?

A good antivirus app can help protect your phone by regularly checking for malicious code. Only the free version of CamScanner is infected with malware. The paid version does not show advertisements and therefore does not have the malicious malware bundled with it. Google already removed the free version of the app from Google Play but the paid version is still for sale and is safe to use.
If you have or ever had the free version of CamScanner on your phone, it may be infected with malware.

  1. On an Android device, go to settings then go to apps to see if you have CamScanner installed
  2. If you do, then uninstall it
  3. When a new version is released on the Play Store, reinstall a fresh copy

CamScanner App – How to Protect Your Phone

If you have automatic updates enabled for your device and apps, then you may have accepted an update of CamScanner that has the malware.

  1. If you already have CamScanner on your device you want to use an antivirus app to check for any malicious software, suspicious apps, spyware, or adware. If you have antivirus software, run it to manually check your phone, laptop, or tablet for malware regularly
  2. Remove any unused apps from your phone
  3. Always download apps from official app stores like iTunes or the Google Play Store. Although it is not foolproof, the odds of a safe download are much better on an official app site than they are when downloading from in-game advertisements or review websites
  4. When installing any new app, pay attention to the permissions requested by the app. If it seems strange that an app needs access to certain data on your phone, for example when a game prompts for access to photos or call history, then deny permission or uninstall the app

Filed Under: Malware Tagged With: Google Play

About Michelle Dvorak

Michelle writes about cyber security, data privacy focusing on social media privacy as well as how to protect your IoT devices. She has worked in internet technology for over 20 years and owns METRONY, LLC. Michelle earned a B.S. in Engineering from Rensselaer Polytechnic Institute. Michelle published a guide to Cyber Security for Business Travelers


LinkedInTwitterFacebook

Primary Sidebar

Subscribe to Our Free Newsletter

We Don't Share or Sell Your Info

Web Browsers

Where Are My Saved Passwords in Chrome?

Google Removes 70 Malicious Browser Add-ons from Chrome Web Store

Firefox 75 Reports Your Browser Settings to Mozilla

Categories

Cyber Security Field Guide

Computer Security While TravelingGet Our Cyber Security Field Guide - Available on Amazon!

Recent Posts

Security Marketing Manager – Remote

Sr. Associate, Cybersecurity Architect – Pfizer

Strategic Customer Success Manager – Cybersecurity – Opportunity for Working Remotely

Top 20 Passwords Leaked on Dark Web

ISU Cybersecurity Leader Job Opening

Cyber Security News

Top 20 Passwords Leaked on Dark Web

… [Read More...] about Top 20 Passwords Leaked on Dark Web

Apple Warns of Actively Exploited Zero-Day Flaw

… [Read More...] about Apple Warns of Actively Exploited Zero-Day Flaw

IRS Stops Facial Recognition System for Online Access

… [Read More...] about IRS Stops Facial Recognition System for Online Access

National Cybersecurity Alliance Announces Data Privacy Week

… [Read More...] about National Cybersecurity Alliance Announces Data Privacy Week

More Cyber Security News

Tags

amazon Android Apple bitcoin China chrome CISA credit card DarkSide DHS DOJ Equifax Europe Facebook facial recognition FBI Firefox FTC games GDPR Google Government hacker identity theft India iPhone Iran IRS LinkedIn Microsoft North Korea PayPal phishing phishing email ransomware REvil Russia smartphone T-Mobile TikTok tutorial VPN WhatsApp WiFi Windows

Government

CBP Looks to Access Airline Passenger Data

FTC Releases Cyber Threat Video Playlist

Malware Found on US Government Funded Phones

UK NCA Reaches Out to Youth to Deter Cybercrimes

More Posts from this Category

Footer

Menu

  • Home
  • About
  • Authors
  • Newsletter Signup
  • PRIVACY POLICY

Search

Why Use a VPN?

NordVPN vs IPVanish VPN Review

NAVIGATION

  • Data Breaches
  • Data Privacy
  • Gamers
  • Scams
  • Malware

MEMBER NJCCIC

New Jersey Cybersecurity & Communications Integration Cell

STAY CONNECTED

  • Facebook
  • Instagram
  • Pinterest
  • YouTube
  • Twitter
  • RSS

Copyright © 2023 · AskCyberSecurity.com · METRONY, LLC

Go to mobile version