Is this article describing two unrelated problems ?
The first part states there is at least one compromised ad-support library that is used in a number of apps available on the official Apple Store. It doesn't say where developers get this kind of library - i.e. from "official" sites or from potentially compromised sites. The second part of the article then refers to one known source of compromised development software, but how is this related to the bad library ?