NCSC advice: Malicious software used to illegally mine cryptocurrency
Guidance for members of the public, website administrators and JavaScript developers in relation to the recently publicised cryptocurrency mining compromises of several websites
NCSC Feed
NCSC IT: There's confidence and then there's SaaS
4 years 7 months ago
Raising a cheer for SaaS vendors who respond to our cloud security principles.
The future of telecoms in the UK
4 years 10 months ago
NCSC Technical Director Dr Ian Levy explains how the security analysis behind the DCMS supply chain review will ensure the UK’s telecoms networks are secure – regardless of the vendors used.
Summary of NCSC’s security analysis for the UK telecoms sector
4 years 10 months ago
A summary of the NCSC’s security analysis for the UK telecoms sector
Building Web Check using PaaS
5 years ago
How Platform as a Service (PaaS) can make good security easier to achieve.
The cyber threat to Universities
5 years 2 months ago
Assessing the cyber security threat to UK Universities
Incident trends report (October 2018 - April 2019)
5 years 2 months ago
Cyber incident trends in the UK with guidance on how to defend against, and recover from them.
Cloud security made easier with Serverless
5 years 3 months ago
Our research shows that using Serverless components makes it easier to get good security in the cloud
Intelligent security tools: are they a smart choice for you?
5 years 4 months ago
What you need to know before buying artificially intelligent security products
The problems with patching
5 years 4 months ago
Applying patches may be a basic security principle, but that doesn't mean it's always easy to do in practice.
Equities process
5 years 4 months ago
Publication of the UK’s process for how we handle vulnerabilities.
Protecting parked domains for the UK public sector
5 years 4 months ago
Non-email sending (parked) domains can be used to generate spam email, but they're easy to protect.
Applying the Cloud Security Principles in practice: a case study
5 years 5 months ago
Using the Cloud Security Principles to evaluate the suitability of a cloud service.
Acquiring, managing, and disposing of network devices
5 years 6 months ago
Advice for organisations on the acquisition, management and disposal of network devices.
Understanding Software as a Service (SaaS) security
5 years 6 months ago
An outline of the NCSC's approach to understanding the security of Software as a Service (SaaS) offerings.
Ransomware: 'WannaCry' guidance for enterprise administrators
5 years 6 months ago
Guidance for enterprise administrators who want to reduce the likelihood of being held to ransom by WannaCry (or other types of ransomware).
Growing positive security cultures
5 years 6 months ago
If your security culture isn't improving naturally, here's what you can do about it.
Maturity models in cyber security: what's happening to the IAMM?
5 years 6 months ago
Here we explain a bit about maturity models, look at how they've been used for cyber security, and explain why the NCSC is no longer supporting the IA Maturity Model (IAMM) introduced in 2008.
Operational technologies
5 years 7 months ago
Making sense of cyber security in OT environments
The Cyber Threat to UK Business
5 years 8 months ago
First joint National Cyber Security Centre (NCSC) and National Crime Agency (NCA) report published today.
Checked
1 hour 25 minutes ago
This includes feeds from report, guidance and blog-post
NCSC Feed feed