The phising part is neither in the TV announcement nor in the link I provided...
What they mentioned on the air was the bank app being corrupted.
A different kettle of fish.
Of course they don't know exactly how many accounts have been affected, that is why they use "potentially" millions. But this is specific to an android app for only one Australian bank.
If it were some phishing scheme, they would not target just users of a particular bank app.
And here's another link that confirms indirectly that they can do whatever with the camera and microphone on you device, even on an iphone.
FBI could force us to turn on iPhone cameras and microphones, says Apple | Technology | The Guardian