From theregister.co.uk
An Android PDF maker with more than 100 million downloads from the official Play Store has been caught silently installing malware on victims’ phones.
Kaspersky’s eggheads Igor Golovin and Anton Kivva claim CamScanner, an application that turns images into PDFs to share and edit, contains a library that quietly fetches and runs spyware and other software nasties. According to the pair on Tuesday, the trojan, known as Necro.n, was most likely snuck into the app under the guise of an advertising package.