So I don't know how Android "reacts" when you install app from Play Store and it's stealing your data.
I mean, an app can ask for certain rights (maybe even for good reasons!) and you'll grant them; then it's free to do whatever it wants.
So no, I am not certain about the security of mobiles.
Well.. since you are giving them the permissions, that's nothing an AV software should block, unfortunately.
But the same applies to a desktop computer.
If you run an executable, it can create outgoing connections without being blocked. And if it is establishing an encrypted connection with TLS, there is nothing an AV can do to determine whether it is 'normal' or malicious traffic
Malicious applications on a desktop computer can even do more harm than malicious apps on a mobile.
On a desktop computer, malware gains access to each file in the user context (basically everything except for system files and folders).
On an android, the malware does not get access to any data from a different application since android enforces application encapsulation. Each application is being run in a different user context.
Only data on the SD card can be accessed by any application. That's btw also the reason why one should never store sensitive data on the external memory.
But I'd not trust them, whether there's proof or not.
A bit of paranoia is necessary in this (Bitcoin) world.
The only 'one' i am completely trusting is Mr. Mathematics. He never lies.
All right, you made my day
What did i do or say?
Well.. it doesn't matter. Better be HappyFish instead of NeuroticFish