Cybercriminals may take advantage of the oversight to place their malicious code straight from the building stage by poisoning the supply chain. Cyber criminals were able to affect over 250 OEMs (original equipment manufacturer) and infect 7.4 million devices in March 2018. Backdoors can come with built-in malware and backdoors due to insufficient verification and vetting, experts say. Cybersecurity expert: “Cyber criminals may be able to take advantage”” of the threat by using a cyber-security tool.”
Source: https://www.bleepingcomputer.com/news/security/android-security-a-peek-behind-the-scenes/