There are a lot of pieces that make up this story. The linked post from Apple Insider focuses on the continuing threat inherent in fragmented and slow-to-update operating systems, such as Android and Windows. For example:

Last July, a U.S. Government report titled “Threats to Mobile Devices Using the Android OS” warned that Android “continues to be a primary target for malware attacks due to its market share and open source architecture,” and stated that this “makes it more important than ever to keep mobile OS patched and up-to-date.”

A year later, Google still reports that more than 53.4 percent of active Android users accessing Google Play are still using an “Ice Cream Sandwich,” “Gingerbread” or other editions of Android prior to 4.2 that still “have a number of security vulnerabilities that were fixed in later versions.”

A good read with lots of follow-up links.

In addition, here’s a link to the Malcovery blog post that broke the story, as well as this post by Krebs On Security that lays things out in a bit more detail.