But Windows also has some security features to mitigate the potential attacks which is not actually available or effective on Android due to its inherent architecture.
How do you mean? Android is built on Linux inhering it's security features (sandboxing, permission model, SELinux, Encryption).
As the article says no platform is completely immune to attacks so we can't simply rule out the security of the funds by linking it with the second most attacked platform.
Yeah I do not, my question was people use HW on Windows which is 1st most attacked, why not on Android?
As I said one click on an unknown click will give complete access of our Android to someone which allows the attacker to provide endless ways from simple ones like tricking the user to authorize the transaction to intense ones like social engineering, and blackmailing which will become an eventual loss.
One misclick can't give complete access to your Android, only downloading malicious apps and giving them dangerous permissions can — such as accessibility, device admin, installing unknown apps and if device is rooted then that'll be Super User. Android will warn you before you allow such permissions.
Stay away from dodgy sites, stick to Google play to download apps, read reviews, be mindful what permissions you give and if they are really necessary, encrypt your data (new phones come with 'on' by default), use lock, don't connect to unsecure networks and you will be good.
Android, Windows both have large user base, so they get attacked the most but weakest link is always the user.