Oxford and Cambridge researchers are the latest to join a chorus of voices sounding the alarm on a new attack vector named Intra-Library Collusion (ILC) An ILC attack relies on threat actors using libraries to deliver malicious code, instead of standalone Android apps packed with all the malicious commands. The advantage for malware authors is that investigators analyzing a compromised devices would see the breadth of malicious activities, but would exclude certain apps as the infection’s source because they do not possess all the permissions needed to execute the attack.
Source: https://www.bleepingcomputer.com/news/security/intra-library-collusion-attacks-open-the-door-for-a-whole-new-kind-of-android-malware/