NCSC CEO: Hostile states linked to three-quarters of cyber attacks affecting UK's critical systems
Dr Richard Horne highlighted the scale of cyber threats against the UK’s critical infrastructure at RUSI’s Annual Security Lecture.
NCSC Feed
Software supply chain attacks: check your dependencies
1 week 6 days ago
Attackers are compromising open-source packages to spread malware. Cyber defenders are asked to review dependencies to reduce risks
Designing secure access with ZTNA
3 weeks ago
New guidance explains how to design Zero Trust Network Access architectures aligned with zero trust principles and not built on old trust assumptions.
Thinking carefully before adopting agentic AI
1 month ago
When it comes to using agentic AI, make sure you can walk before you run.
10 questions to ask when using AI models to find vulnerabilities
1 month ago
Using Artificial Intelligence to find vulnerabilities can bring added security considerations.
Preparing for a ‘vulnerability patch wave’
1 month 2 weeks ago
Organisations must act now to prepare for a wave of patches that will address decades of technical debt.
Could your choice of metrics be harming your SOC?
1 month 2 weeks ago
Poor metrics can render a well-intentioned security operation centre entirely ineffective.
International cyber agencies share fresh advice to defend against China-linked covert networks
1 month 3 weeks ago
New advisory highlights how to defend against attacker tactics believed to be used by China-linked actors to hide malicious cyber activity.
Defending against China-nexus covert networks of compromised devices
1 month 3 weeks ago
Explaining the widespread shift in tactics, techniques and procedures (TTPs) towards networks of compromised infrastructure, and how to defend against it
Supporting AI adoption for UK cyber defence
1 month 3 weeks ago
Adopting AI will require time, the development of new capabilities and careful oversight.
Executive Summary: Defending against China-nexus covert networks of compromised devices
1 month 3 weeks ago
Organisations should map and baseline their edge device traffic, especially VPN and remote access connections, and adopt dynamic threat feed filtering that includes known covert network indicators.
Passkeys are more secure than traditional ways to log in
1 month 3 weeks ago
Passkeys offer a more usable, secure replacement for passwords and are already supported by most modern devices.
NCSC: Leave passwords in the past - passkeys are the future
1 month 3 weeks ago
Passkeys are the more secure and user-friendly login method and should be the default authentication option for consumers.
World-first NCSC-engineered device secures vulnerable display links
1 month 3 weeks ago
SilentGlass, a plug-and-play device, actively blocks any unexpected or malicious HDMI and Display Port connections.
Cyber chief: UK faces "perfect storm" for cyber security
1 month 3 weeks ago
As the technology landscape develops, the definition of cyber security is expanding with it.
New cross domain guidance for government, industry and the wider security community
1 month 3 weeks ago
Ensuring cross domain technologies are better understood - and more easily deployed - across sectors.
Preparing for severe cyber threat: why leaders must act now
1 month 3 weeks ago
A call to action to collectively build UK resilience.
Strengthening cyber resilience across the NHS with collaboration and innovation
2 months ago
How the NCSC is reducing risk, improving detection, and helping to keep vital services running.
Retaining defensive advantage in the age of frontier AI cyber capabilities
2 months ago
As AI accelerates vulnerability discovery, organisations must raise their security baselines to safeguard their cyber security.
UK exposes Russian military intelligence hijacking vulnerable routers for cyber attacks
2 months 1 week ago
New advisory warns cyber threat group APT28 have exploited vulnerable edge devices to support malicious operations.
Checked
9 hours 54 minutes ago
This includes feeds from report, guidance and blog-post
NCSC Feed feed