{"id":6373,"date":"2019-09-02T13:47:14","date_gmt":"2019-09-02T10:47:14","guid":{"rendered":"https:\/\/www.kaspersky.com.tr\/blog\/?p=6373"},"modified":"2022-05-05T14:26:44","modified_gmt":"2022-05-05T11:26:44","slug":"camscanner-malicious-android-app","status":"publish","type":"post","link":"https:\/\/www.kaspersky.com.tr\/blog\/camscanner-malicious-android-app\/6373\/","title":{"rendered":"K\u00f6t\u00fc ama\u00e7l\u0131 Android uygulamas\u0131, Google Play ma\u011fazas\u0131nda 100 milyondan fazla kez indirildi."},"content":{"rendered":"

Kaspersky ara\u015ft\u0131rmac\u0131lar\u0131, cep telefonu tabanl\u0131 ve OCR (optik karakter tan\u0131ma) \u00f6zellikli bir PDF olu\u015fturucu olan ve Google Play ma\u011fazas\u0131ndan indirilme say\u0131s\u0131 100 milyonu ge\u00e7en CamScanner ad\u0131ndaki uygulamada k\u00f6t\u00fc ama\u00e7l\u0131 yaz\u0131l\u0131m buldu. \u00c7e\u015fitli kaynaklarda uygulama, CamScanner \u2014 Phone PDF Creator ve CamScanner-Scanner to scan PDFs gibi k\u0131smen farkl\u0131 adlarla da an\u0131l\u0131yor.<\/p>\n

Google Play gibi resmi uygulama ma\u011fazalar\u0131, yaz\u0131l\u0131m indirme konusunda genellikle g\u00fcvenli b\u00f6lge olarak g\u00f6r\u00fcl\u00fcr. Ancak ne yaz\u0131k ki hi\u00e7bir yer tamamen g\u00fcvenli de\u011fildir ve k\u00f6t\u00fc ama\u00e7l\u0131 yaz\u0131l\u0131m da\u011f\u0131t\u0131c\u0131lar\u0131 da zaman zaman uygulamalar\u0131n\u0131 Google Play ma\u011fazas\u0131na gizlice sokman\u0131n bir yolunu bulmaktad\u0131r<\/a>.<\/p>\n

Burada sorun, Google gibi g\u00fc\u00e7l\u00fc bir \u015firketin bile milyonlarca uygulamay\u0131 kapsaml\u0131 bir \u015fekilde kontrol edemiyor olmas\u0131d\u0131r. Uygulamalar\u0131n \u00e7o\u011funun d\u00fczenli olarak g\u00fcncellendi\u011fi, dolay\u0131s\u0131yla Google Play moderat\u00f6rlerinin i\u015flerinin asla bitmedi\u011fi de unutulmamal\u0131d\u0131r.<\/p>\n

Asl\u0131nda CamScanner uzunca bir s\u00fcre herhangi bir k\u00f6t\u00fc niyeti olmayan, kurallara uygun bir uygulamayd\u0131. Gelir kayna\u011f\u0131 olarak reklamlar\u0131 kullan\u0131yordu ve hatta uygulama i\u00e7i sat\u0131n alma dahi s\u00f6z konusuydu. Fakat bir noktada bu durum de\u011fi\u015fti ve uygulama son s\u00fcr\u00fcmlerinde, i\u00e7inde k\u00f6t\u00fc ama\u00e7l\u0131 mod\u00fcl yer alan bir reklam kitapl\u0131\u011f\u0131 ile birlikte gelmeye ba\u015flad\u0131.<\/p>\n\n

Kaspersky \u00fcr\u00fcnleri bu mod\u00fcl\u00fc, \u00c7in mal\u0131 ak\u0131ll\u0131 telefonlara \u00f6nceden y\u00fckl\u00fc olarak gelen baz\u0131 uygulamalarda g\u00f6rd\u00fc\u011f\u00fcm\u00fcz Trojan-Dropper.AndroidOS.Necro.n olarak alg\u0131lamaktad\u0131r. Ad\u0131ndan da g\u00f6r\u00fcld\u00fc\u011f\u00fc \u00fczere mod\u00fcl, bir Trojan Dropper\u2019d\u0131r. Yani mod\u00fcl, uygulaman\u0131n kayna\u011f\u0131nda bulunan \u015fifreli bir dosyadan ba\u015fka bir k\u00f6t\u00fc ama\u00e7l\u0131 mod\u00fcl \u00e7\u0131kar\u0131p \u00e7al\u0131\u015ft\u0131rmaktad\u0131r. \u00c7\u0131kar\u0131lan bu k\u00f6t\u00fc ama\u00e7l\u0131 yaz\u0131l\u0131m da, o noktada geli\u015ftiricilerinin neyin pe\u015finde oldu\u011funa g\u00f6re daha da k\u00f6t\u00fcc\u00fcl mod\u00fcller indiren bir Trojan \u0130ndiricisidir.<\/p>\n

\u00d6rne\u011fin, bu k\u00f6t\u00fc ama\u00e7l\u0131 kodu i\u00e7eren bir uygulama, izinsiz reklamlar g\u00f6sterebilir ve kullan\u0131c\u0131lar\u0131 \u00fccretli aboneliklere kaydettirebilir.<\/p>\n

Baz\u0131 CamScanner kullan\u0131c\u0131lar\u0131, uygulaman\u0131n \u015f\u00fcpheli davrand\u0131\u011f\u0131n\u0131 fark etmi\u015f ve uygulaman\u0131n Google Play sayfas\u0131nda g\u00f6r\u00fc\u015flerini uygulaman\u0131n engellenmesine y\u00f6nelik uyar\u0131larla birlikte belirtmi\u015ftir.<\/p>\n

Kaspersky ara\u015ft\u0131rmac\u0131lar\u0131, uygulaman\u0131n yeni bir s\u00fcr\u00fcm\u00fcn\u00fc incelemi\u015f<\/a> ve s\u00f6z konusu k\u00f6t\u00fc ama\u00e7l\u0131 mod\u00fcl\u00fc bulmu\u015ftur. Bulgular\u0131m\u0131z\u0131 Google yetkililerine ilettik ve uygulama Google Play ma\u011fazas\u0131ndan hemen kald\u0131r\u0131ld\u0131.<\/p>\n

CamScanner uygulamas\u0131n\u0131n geli\u015ftiricileri, son g\u00fcncelleme ile k\u00f6t\u00fc ama\u00e7l\u0131 koddan kurtulmu\u015fa benziyorlar. Yine de, uygulaman\u0131n s\u00fcr\u00fcmlerinin cihazlara g\u00f6re farkl\u0131l\u0131k g\u00f6sterdi\u011fi ve baz\u0131lar\u0131nda hala k\u00f6t\u00fc ama\u00e7l\u0131 kod bulunabilece\u011fi dikkate al\u0131nmal\u0131d\u0131r.<\/p>\n

Bu durumdan \u00e7\u0131karabilece\u011fimiz ders, resmi bir ma\u011fazadan, hatta bu konuda iyi bir \u015f\u00f6hrete sahip olan ve hatta milyonlarca olumlu g\u00f6r\u00fc\u015fe ve geni\u015f, sad\u0131k bir kullan\u0131c\u0131 kitlesine sahip bir ma\u011fazadan indirilse dahi her uygulaman\u0131n bir gecede k\u00f6t\u00fc ama\u00e7l\u0131 bir yaz\u0131l\u0131ma d\u00f6n\u00fc\u015febilece\u011fidir. Her uygulama, k\u00f6kl\u00fc bir de\u011fi\u015fiklikten sadece bir g\u00fcncelleme kadar uzakt\u0131r. B\u00f6yle bir duruma asla d\u00fc\u015fmemek i\u00e7in, Android uygulamalara y\u00f6nelik g\u00fcvenilir bir antivir\u00fcs program\u0131<\/a> kullan\u0131n ve arada s\u0131rada telefonunuzu tarat\u0131n. Kaspersky Internet Security for Android<\/a> program\u0131n\u0131n \u00fccretli s\u00fcr\u00fcm\u00fc taramalar\u0131 otomatik olarak ger\u00e7ekle\u015ftirir.)<\/p>\n\n","protected":false},"excerpt":{"rendered":"

Kaspersky ara\u015ft\u0131rmac\u0131lar\u0131, Google Play ma\u011fazas\u0131ndan indirilme say\u0131s\u0131 100 milyonu ge\u00e7en bir metin tan\u0131ma uygulamas\u0131 olan CamScanner’\u0131n i\u00e7inde k\u00f6t\u00fc ama\u00e7l\u0131 yaz\u0131l\u0131m buldu.<\/p>\n","protected":false},"author":2706,"featured_media":6374,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"footnotes":""},"categories":[1287,1351],"tags":[1087,105,1997,183,241,1998,599],"class_list":{"0":"post-6373","1":"post","2":"type-post","3":"status-publish","4":"format-standard","5":"has-post-thumbnail","7":"category-news","8":"category-threats","9":"tag-adware","10":"tag-android","11":"tag-camscanner","12":"tag-google-play","13":"tag-trojan","14":"tag-ucretli-abonelik","15":"tag-uygulamalar"},"hreflang":[{"hreflang":"tr","url":"https:\/\/www.kaspersky.com.tr\/blog\/camscanner-malicious-android-app\/6373\/"},{"hreflang":"en-in","url":"https:\/\/www.kaspersky.co.in\/blog\/camscanner-malicious-android-app\/16595\/"},{"hreflang":"en-ae","url":"https:\/\/me-en.kaspersky.com\/blog\/camscanner-malicious-android-app\/13987\/"},{"hreflang":"ar","url":"https:\/\/me.kaspersky.com\/blog\/camscanner-malicious-android-app\/6469\/"},{"hreflang":"en-us","url":"https:\/\/usa.kaspersky.com\/blog\/camscanner-malicious-android-app\/18535\/"},{"hreflang":"en-gb","url":"https:\/\/www.kaspersky.co.uk\/blog\/camscanner-malicious-android-app\/16598\/"},{"hreflang":"es-mx","url":"https:\/\/latam.kaspersky.com\/blog\/camscanner-malicious-android-app\/15241\/"},{"hreflang":"es","url":"https:\/\/www.kaspersky.es\/blog\/camscanner-malicious-android-app\/19148\/"},{"hreflang":"it","url":"https:\/\/www.kaspersky.it\/blog\/camscanner-malicious-android-app\/17856\/"},{"hreflang":"ru","url":"https:\/\/www.kaspersky.ru\/blog\/camscanner-malicious-android-app\/23463\/"},{"hreflang":"x-default","url":"https:\/\/www.kaspersky.com\/blog\/camscanner-malicious-android-app\/28156\/"},{"hreflang":"fr","url":"https:\/\/www.kaspersky.fr\/blog\/camscanner-malicious-android-app\/12160\/"},{"hreflang":"pt-br","url":"https:\/\/www.kaspersky.com.br\/blog\/camscanner-malicious-android-app\/12256\/"},{"hreflang":"pl","url":"https:\/\/plblog.kaspersky.com\/camscanner-malicious-android-app\/11106\/"},{"hreflang":"de","url":"https:\/\/www.kaspersky.de\/blog\/camscanner-malicious-android-app\/19992\/"},{"hreflang":"ja","url":"https:\/\/blog.kaspersky.co.jp\/camscanner-malicious-android-app\/23979\/"},{"hreflang":"nl","url":"https:\/\/www.kaspersky.nl\/blog\/camscanner-malicious-android-app\/24160\/"},{"hreflang":"ru-kz","url":"https:\/\/blog.kaspersky.kz\/camscanner-malicious-android-app\/18960\/"},{"hreflang":"en-au","url":"https:\/\/www.kaspersky.com.au\/blog\/camscanner-malicious-android-app\/23287\/"},{"hreflang":"en-za","url":"https:\/\/www.kaspersky.co.za\/blog\/camscanner-malicious-android-app\/23198\/"}],"acf":[],"banners":"","maintag":{"url":"https:\/\/www.kaspersky.com.tr\/blog\/tag\/android\/","name":"android"},"_links":{"self":[{"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/posts\/6373","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/users\/2706"}],"replies":[{"embeddable":true,"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/comments?post=6373"}],"version-history":[{"count":4,"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/posts\/6373\/revisions"}],"predecessor-version":[{"id":6736,"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/posts\/6373\/revisions\/6736"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/media\/6374"}],"wp:attachment":[{"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/media?parent=6373"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/categories?post=6373"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/tags?post=6373"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}