Alert: NCSC advises UK organisations to take action following conflict in the Middle East – NCSC Blog
In response to the evolving events in the Middle East, the NCSC is advising that UK organisations review their cyber security posture. – Read More
NCSC Blogs
Exploitation of Cisco Catalyst SD-WAN – NCSC Blog
Agencies strongly encourage immediate investigation of potential compromise of Cisco Catalyst SD-WAN. – Read More
Improving your response to vulnerability management – NCSC Blog
How to ensure the ‘organisational memory’ of past vulnerabilities is not lost. – Read More
Can you help the NCSC with the next phase of EASM research? – NCSC Blog
Organisations with experience in external attack surface management can help us shape future ACD 2.0 services. – Read More
Cloud Security Posture Management: silver bullet or another piece in the cloud puzzle? – NCSC Blog
CSPM tools are big business. Could they be the answer to your cloud configuration problems? – Read More
One small step for Cyber Resilience Test Facilities, one giant leap for technology assurance – NCSC Blog
CRTFs are helping organisations to make informed, risk-based decisions on the adoption of technology products. – Read More
NCSC issues warning over hacktivist groups disrupting UK organisations and online services – NCSC Blog
Russian‑aligned hacktivist groups continue to target UK organisations with disruptive cyber attacks – Read More
Pro-Russia hacktivist activity continues to target UK organisations – NCSC Blog
The NCSC encourages local government and critical infrastructure operators to harden their ‘denial of service’ (DoS) defences – Read More
Designing safer links: secure connectivity for operational technology – NCSC Blog
New principles help organisations to design, review, and secure connectivity to (and within) OT systems. – Read More
The Government Cyber Action Plan: strengthening resilience across the UK – NCSC Blog
With GCAP, the UK government is taking decisive steps towards a safer, more resilient future. – Read More
Cyber deception trials: what we’ve learned so far – NCSC Blog
An update on the NCSC’s trials to test the real-world efficacy of cyber deception solutions. – Read More
Prompt injection is not SQL injection (it may be worse) – NCSC Blog
There are crucial differences between prompt and SQL injection which – if not considered – can undermine mitigations. – Read More
Updating our guidance on security certificates, TLS and IPsec – NCSC Blog
The NCSC has updated 3 key pieces of cryptographic guidance. Here, we explain the changes. – Read More
Building trust in the digital age: a collaborative approach to content provenance technologies – NCSC Blog
Joint NCSC and Canadian Centre for Cyber Security primer helps organisations understand emerging technologies that can help maintain trust in their public-facing information. – Read More
What makes a responsible cyber actor: introducing the Pall Mall industry consultation on good practice – NCSC Blog
Calling vulnerability researchers, exploit developers and others in the offensive cyber industry to share their views. – Read More