We see a large number of Potential Malware Infected Clients in Web Security Services Overview Dashboard when running SEP Mobil This was caused by a network security test in the SEP Mobile agent that probes mitm.it.  These probes are observed by Web Security Services and trigger detections based on url classification, resulting in a large number of Potential Malware Infected Clients in Web Security Services Overview Dashboards.

Sep Mobile 

Web Security Services

The SEP Mobile Management Console now disables this probe for devices that are protected with Web Security Services. The suppression of this probe is delivered to the endpoint agent via AppConfig and does not require an update of the SEP Mobile app itself.

A fix has been ported into the latest SEP Mobile Management Console. So with the fix configured in the Management Console backend, when the devices check-in to the Management Console it should download the new appconfig containing the fix.