These reports seem to imply that advanced mobile security should not be a high priority but they fail to differentiate between malicious code infecting consumer mobile devices versus enterprise devices, attacks other than malware or BYOD devices used for work purposes.
Even with the 0.03% value, a hypothetical enterprise, Acme Corporation, with 10,000 users would see about three employees on average (per week) with advanced malicious code on their smartphones (10,000 x 0.03%). The problem becomes even bigger when factored into the average number of attacks on enterprise mobility beyond advanced malware.
At SEP Mobile, for instance, we have consistently seen at least 23% of employees at enterprises being exposed to network-based threats during their first month of deploying SEP Mobile. After three months, the average rises to 40%. At Acme Corporation, 2,300 of their employees on average would face network-based threats in addition to the advanced attacks addressed in the Verizon study.