Olympus has confirmed that nearly 2,000 of its Stylus Tough 6010 digital cameras have shipped with a worm installed on the included microSD card.
Once the card is inserted into a Windows computer via a USB port the worm spreads if the autorun feature is turned on or if the application is accessed.
Olympus has apologised for the error and set up a web site for customers to check the serial number of their cameras against the malware infected list.
The incident is the latest in a string of similar problems. Samsung shipped a number of Wave smartphones earlier this month with a Trojan embedded in the microSD card, and analysts have warned that companies may face increasing legal liability if standards are not tightened.
"With such a long history of incidents like this, more companies need to wake up to the need for better quality control to ensure that they don't ship virus-infected gadgets," said Graham Cluley, senior technology consultant at Sophos.
"At the same time, consumers should ensure that autorun is disabled, and scan any device for malware before they use it on their computer."
British Airways blames 'global systems outage' for IT meltdown
Mark Zuckerberg mercilessly trolled by Harvard student newspaper after return to university he dropped out of 12 years ago
'Unauthorised user' blamed by Harvard for insulting Mark Zoinkerberg
Android under attack from 'Judy', Google Play Store malware that has infected up to 36.5 million users
Yet more Android malware discovered on the Google Play Store
Airport believes new system will be more reliable than GPS or Google Maps