Cyber Resilience

Threat actor · all actors

Aquatic PandaG0143 state

🇨🇳 CN

aka Aquatic Panda

Last updated: 2026-07-03

1attributed CVEs
49ATT&CK techniques
1.2IDF score (tooling uniqueness)
0exclusive CVEs
2026years active

About this actor

[Aquatic Panda](https://attack.mitre.org/groups/G0143) is a suspected China-based threat group with a dual mission of intelligence collection and industrial espionage. Active since at least May 2020, [Aquatic Panda](https://attack.mitre.org/groups/G0143) has primarily targeted entities in the telecommunications, technology, and government sectors.(Citation: CrowdStrike AQUATIC PANDA December 2021)

Source: MITRE ATT&CK

Activity timeline

Profile

CVERiskCVSSEPSSPublishedProducts
CVE-2026-20929 5.57.50.01142026-01-13see CVE

Mitigating controls (NIST 800-53)

ControlTechniques coveredCoverage
SI-431 / 4963%
CM-630 / 4961%
AC-228 / 4957%
AC-328 / 4957%
AC-628 / 4957%
CM-226 / 4953%
SI-323 / 4947%
AC-521 / 4943%
CM-720 / 4941%
SI-720 / 4941%
CM-518 / 4937%
IA-218 / 4937%
CA-716 / 4933%
RA-513 / 4927%
SI-1013 / 4927%

Co-occurring actors

Similar actors

Similar TTPs

Overlapping CVEs

Same nation-state