Software supply chain attacks: check your dependencies – NCSC Blog
Attackers are compromising open-source packages to spread malware. Cyber defenders are asked to review dependencies to reduce risks – Read More
NCSC Blogs
Designing secure access with ZTNA – NCSC Blog
New guidance explains how to design Zero Trust Network Access architectures aligned with zero trust principles and not built on old trust assumptions. – Read More
Thinking carefully before adopting agentic AI – NCSC Blog
When it comes to using agentic AI, make sure you can walk before you run. – Read More
10 questions to ask when using AI models to find vulnerabilities – NCSC Blog
Using Artificial Intelligence to find vulnerabilities can bring added security considerations. – Read More
Preparing for a ‘vulnerability patch wave’ – NCSC Blog
Organisations must act now to prepare for a wave of patches that will address decades of technical debt. – Read More
Could your choice of metrics be harming your SOC? – NCSC Blog
Poor metrics can render a well-intentioned security operation centre entirely ineffective. – Read More
Executive Summary: Defending against China-nexus covert networks of compromised devices – NCSC Blog
Organisations should map and baseline their edge device traffic, especially VPN and remote access connections, and adopt dynamic threat feed filtering that includes known covert network indicators. – Read More
Defending against China-nexus covert networks of compromised devices – NCSC Blog
Explaining the widespread shift in tactics, techniques and procedures (TTPs) towards networks of compromised infrastructure, and how to defend against it – Read More
Supporting AI adoption for UK cyber defence – NCSC Blog
Adopting AI will require time, the development of new capabilities and careful oversight. – Read More
NCSC: Leave passwords in the past – passkeys are the future – NCSC Blog
Passkeys are the more secure and user-friendly login method and should be the default authentication option for consumers. – Read More
Passkeys are more secure than traditional ways to log in – NCSC Blog
Passkeys and other FIDO2 credentials offer a more usable, secure replacement for passwords and are already supported by most modern devices. – Read More
International cyber agencies share fresh advice to defend against China-linked covert networks – NCSC Blog
New advisory highlights how to defend against attacker tactics believed to be used by China-linked actors to hide malicious cyber activity. – Read More
World-first NCSC-engineered device secures vulnerable display links – NCSC Blog
SilentGlass, a plug-and-play device, actively blocks any unexpected or malicious HDMI and Display Port connections. – Read More
Cyber chief: UK faces “perfect storm” for cyber security – NCSC Blog
As the technology landscape develops, the definition of cyber security is expanding with it. – Read More
New cross domain guidance for government, industry and the wider security community – NCSC Blog
Ensuring cross domain technologies are better understood – and more easily deployed – across sectors. – Read More