Olympus has confirmed that nearly 2,000 of its Stylus Tough 6010 digital cameras have shipped with a worm installed on the included microSD card.
Once the card is inserted into a Windows computer via a USB port the worm spreads if the autorun feature is turned on or if the application is accessed.
Olympus has apologised for the error and set up a web site for customers to check the serial number of their cameras against the malware infected list.
The incident is the latest in a string of similar problems. Samsung shipped a number of Wave smartphones earlier this month with a Trojan embedded in the microSD card, and analysts have warned that companies may face increasing legal liability if standards are not tightened.
"With such a long history of incidents like this, more companies need to wake up to the need for better quality control to ensure that they don't ship virus-infected gadgets," said Graham Cluley, senior technology consultant at Sophos.
"At the same time, consumers should ensure that autorun is disabled, and scan any device for malware before they use it on their computer."
Attack revealed bugs and potential security flaws that were later exploited in real-world cyber attacks
5G products could start appearing from 2019 - but networks may take some time catching up
Spending will rise as companies continue to adopt technologies like 3D printing, AI and VR
Software-defined networking can centralise management of your global network, improving security and helping to optimise applications