APT / THREAT GROUP
AnDROid
1
aliases
Intelligence Profile
Ransomware
Threat Analysis
AnDROid is a known-sophistication threat actor of undetermined national origin, engaged in cyber operations with a primary motivation of unknown activity patterns.
Intelligence Reports Mentioning AnDROid
New "Bad Epoll" Linux Kernel Flaw Lets Unprivileged Users Gain Root, Hits Android
The Hacker News· Jul 3, 2026
NetNut proxy network disrupted, 2 million infected devices cut off
BleepingComputer· Jul 3, 2026
Google loses final appeal to overturn €4.1 billion EU fine
BleepingComputer· Jul 2, 2026
AI-Generated Browser Ransomware Abuses Chromium API on Windows, Linux, macOS, Android
The Hacker News· Jul 1, 2026
RustDuck Botnet Rebuilds in Rust to Hijack Routers and Servers for DDoS
The Hacker News· Jun 30, 2026
Top Google Security Staff Warn Search Data Could Be Hacked if EU Rules Change
Wired Security· Jun 29, 2026
Eight-Year-Old Samsung KNOX Flaw Exposed Millions of Galaxy Devices to Kernel Attacks
SecurityWeek· Jun 23, 2026
Google Sets Sept. 30 Deadline for Android Developer Verification in Four Countries
The Hacker News· Jun 22, 2026
Quick Facts
TypeAPT / Threat Group
Aliases1
Also Known As
AnDROid
Research Links
Data sourced from Malpedia, Ransomware.live, RansomLook, and CTIWATCH OSINT collection. Actor attribution is based on available intelligence and may be incomplete.