SDK plug-ins steal personal privacy information such as short messages and address books from users' mobile phones without users' permission. The applications of these embedded SDK plug-ins include daily recycling, radish mall, borrowing and so on.

According to CCTV reports, on 20 19 1 1, the Shanghai Consumer Protection Committee entrusted a third-party company to conduct special testing on some SDK plug-ins in mobile phone software, but found some hidden mysteries of SDK.

On October 20 19 1 1 year 10, Shanghai Consumer Protection Committee entrusted a third-party company to conduct special inspection on some SDK plug-ins in mobile phone software, and found that some SDK had hidden dangers. They will read the IMEI, IMSI, operator information, phone number, SMS record, address book, application installation list and sensor information of the device.

The SDK in these apps is only the first step to read user privacy information. After reading, the data will be quietly transferred to the designated server for storage. The SDK of Beijing Cai Zhao Want Want Information Technology Co., Ltd. is even suspected of stealing more private information from users through recipes, parents' help, dynamic wallpaper and other software. Because SDK can collect users' short messages and application installation information, once users have the verification code of online transactions, it is very likely to cause serious economic losses.