One of the most popular document scanning apps, CamScanner is back on the Google Play Store after removing the malicious aspect of its app for Android users. The company took it down following reports of malicious adware on present hidden in the app’s code. The iOS version wasn’t removed as only the Android version was affected.
The new version 5.12.5 is now available for download and that it is now safe to use. You can now download and use it, CamScanner tweeted about it.
Back in August, Google experts had discovered a malware, rooted through the app, which was capable of stealing confidential data from your device, which claims to detect such malware issues in apps on the Play Store and remove them, didn’t catch this issue on CamScanner, but eventually had to remove the app from its store.
Reason for removal:
This module identified as Trojan-Dropper.AndroidOS.Necro.n is a Trojan dropper, meaning it can extracts and runs another malicious module from an encrypted file included in the app’s resources, reads the analysis published by Kaspersky. This “dropped” malware, in turn is a Trojan Downloader that downloads more malicious modules depending on what its creators are up to at the moment. For example, an app with this malicious code may show intrusive ads and sign users up for paid subscriptions.
After Google removed the CamScanner app from the Play Store, the developers of the app eliminated the malicious code from the application with the latest update. Researchers warn that versions of the app vary for different devices, and some of them may still contain the malware. The paid version if the app doesn’t include the 3rd-party advertising library, this means that it doesn’t contain the malware and for this reason, Google hasn’t removed it from the Play Store, said by Kaspersky.
CamScanner was quick to acknowledge that the module was present in the advertisement SDK. The infected app carries version number 5.11.7. The SDK was provided by third-party called AdHub. It was trying to create unauthorized ad clicks. The company removed the entire ad SDKs were not certified by Google Play with the new release. The malware was only found in the Android version whereas the iOS version is not infected in any way.
Download from here.
More information about tech search here.