Cyber Resilience

Threat actor · all actors

AxiomG0001 state

🇨🇳 CN

aka Axiom, Group 72

Last updated: 2026-07-03

0attributed CVEs
22ATT&CK techniques
0.0IDF score (tooling uniqueness)
0exclusive CVEs
years active

About this actor

[Axiom](https://attack.mitre.org/groups/G0001) is a suspected Chinese cyber espionage group that has targeted the aerospace, defense, government, manufacturing, and media sectors since at least 2008. Some reporting suggests a degree of overlap between [Axiom](https://attack.mitre.org/groups/G0001) and [Winnti Group](https://attack.mitre.org/groups/G0044) but the two groups appear to be distinct based on differences in reporting on TTPs and targeting.(Citation: Kaspersky Winnti April 2013)(Citation: Kaspersky Winnti June 2015)(Citation: Novetta Winnti April 2015)

Source: MITRE ATT&CK

Activity timeline

No activity events recorded.

Profile

CVERiskCVSSEPSSPublishedProducts
No attributed CVEs.

Mitigating controls (NIST 800-53)

ControlTechniques coveredCoverage
SI-416 / 2273%
CM-614 / 2264%
AC-612 / 2255%
CM-212 / 2255%
SC-711 / 2250%
AC-210 / 2245%
AC-310 / 2245%
AC-410 / 2245%
CM-79 / 2241%
SI-39 / 2241%
CA-78 / 2236%
CM-58 / 2236%
AC-57 / 2232%
CM-87 / 2232%
IA-27 / 2232%

Co-occurring actors

None.

Similar actors

Similar TTPs

Same nation-state