CamScanner just lately needed to depart the Play Retailer after safety researchers discovered that it distributed malware between June and July this 12 months. In the present day, its developer launched a press release saying that it fell sufferer to an commercial SDK offered by AdHub that loaded the malicious module into its product. It has since lower ties with the community and eliminated the malware.
The agency pinpoints the introduction of malware to CamScanner 5.11.7, although we discovered that variations starting from 5.11.three to five.12.zero have been additionally unsafe – see our earlier protection for a extra detailed breakdown. Fortunately, no person knowledge appears to have leaked. The malware solely centered on click on fraud, producing unauthorized promoting revenue. The corporate has since taken authorized motion in opposition to the advert community that injected the malicious code into the app.
I concern that CamScanner’s introduction of aggressive ads again in April may need correlated with the malware – plainly its new commercial associate did not have the most effective in thoughts for it.
If you wish to give CamScanner sans rogue advert community one other probability, you may obtain the most recent secure model over at APK Mirror. It was uploaded by the developer itself – we have double-checked that it is freed from malware. If you happen to’d reasonably look ahead to a re-release within the Play Retailer, you may not be out of luck, both. CamScanner tells us that it is “speaking with Google positively.”
You’ll be able to learn CamScanner’s full assertion beneath:
Pricey CamScanner Android Customers，
Our CamScanner Workforce has just lately detected that the commercial SDK offered by a third-party named AdHub, built-in in Android Model 5.11.7, has been reported for holding a malicious module that produces unauthorized promoting clicks.
Injection of any suspicious codes violates the CamScanner Safety Coverage! We are going to take speedy authorized actions in opposition to Adhub! Happily, after rounds of safety examine, now we have not discovered any proof displaying the module may trigger any leak of doc knowledge.
We’ve eliminated all of the adverts SDKs not licensed by Google Play and a brand new model can be launched. In the meantime, chances are you’ll contact [email protected] for a direct improve or faucet HERE to obtain the brand new model.
We’d admire your endurance and understanding.