I hve to wonder if there are “Americans” that are hacking the bank records of the eastern europeans?

Someone has to explain how malware gets into google play store? Or at least gets’s hacked on the users phone. Seems to me that there should be a permission for 3rd party servers such that the domains and subdomains are registered in the store..