"Yet again, the fix would be proper vetting of code in Google Play and other app stores"
Why? The fix would surely be to patch the bug, that way you fix the hole wherever the exploit comes from, including direct download. Lock the door, don't rely on a security guard on the front gate whilst leaving the back open.
"About one in 200 phones contain an unwanted or malicious application in what could be an indication of the potential effectiveness of Beniamini's attack"
Somebody really needs to go on a stats or deductive reasoning for beginners course.