Two third-party software development kits integrated by hundreds of thousands of Android apps have been caught holding unauthorized access to users’ data associated with their connected social media accounts. OneAudience and Mobiburn are data monetization services that pay developers to integrate their SDKs into the apps which then collect users’ behavioral data and then use it with advertisers for targeted marketing. Facebook has already removed the apps from its platform for violating its policies and issued cease and desist letters against both One Audience and mobiburn.
Source: https://thehackernews.com/2019/11/sdk-twitter-facebook-android.html