I would assume if they could show that they depended on the promise made by the "supplier (google)" when they purchased the fraudulent good, the supplier would be liable for damages as well. Sort of like if I sold someone "aircraft grade aluminum" and then delivered compacted used soda cans and they actually did try to build a plane from it resulting in a crash.
That's assuming that someone associated with the developers actually did something wrong. For all we know, it could have been a mistake, a misinterpretation of some activity by Google's algorithms etc. - we'll never know because the lack of transparency gives Google advantage, and they're not legally required to provide any information on that.
That's why I think it's in the best interests of everyone to support alternatives like Librem, so that no single entity can make such kind of decisions.
