I'm pretty sure virtually none of the spam mails in my spamfilter were sent from a phone. Nor do phones have the bandwidth to carry out DDoS attacks or host phishing sites. Nor do many people do onlinebanking on their phone (though that number is certainly on the rise).
So yes, while malware exists on android, I doubt the total damages caused by it are more than a drop in the bucket when compared to windows malware.
Goole said "Well less than 0.5% have ever had a problem", you quote a blog that turns that into "up to five million have ever had malware" which shows some ignorance of statistics, and then you turn that into "about five million are infected with malware now".
Pretty much all botnets target consumer devices and thus have ip addresses that are common for consumer devices. I'm not sure I buy that a mobile IP is worth more than a Comcast one, especially factoring in the available bandwidth.
That is certainly true. But in terms of scale even a claimed
5 million compromised android phones just barely registers while desktop botnets of six times that size are discovered.
The bandwidth constraints imposed by most users draconic data plans and the realities of limited battery life further put a fairly low cap on what a mobile botnet can do in this day and age. (both of which admittedly will hopefully change sooner rather than later...)
So yes, while malware exists on android, I doubt the total damages caused by it are more than a drop in the bucket when compared to windows malware.