It’s not like the switch to scoped storage would mitigate much of it. You can still do all kinds of nasty things when you, for example, have access to the photo library part of the MediaStore content provider. Like adding your tracking ID to the metadata of a picture that other app would then look for. Or, you could just create a “photo” and write your arbitrary data in place of the file contents. Users won’t ever notice there’s a broken image at the end of their camera roll.
Will this change make it look more suspicious when apps request access to photos instead of storage? Yes, sure. Will most users care about it and deny access to apps that aren’t supposed to have it? Of course not.