Security experts from North Carolina State University warn that some Android devices are preinstalled with software that contain security vulnerabilities. Devices from HTC, Samsung and Motorola use pre-loaded applications that do not properly enforce Android security policy, allowing attacker to delete user files, send SMS to costly premium services or even listen conversations.
Majority of such applications are programs that intend to make the device more user-friendly.
„The problem is that these pre-loaded apps are built on top of the existing Android architecture in such a way as to create potential backdoors that can be used to give third-parties direct access to personal information or other phone features“ - said Xuxian Jiang, co-author of the study.

Source: Secunia
05.12.2011