1. Home
  2. Ncsc Feed

Buzz & Beyond: Ncsc feed

From bugs to bypasses: adapting vulnerability disclosure for AI safeguards. Exploring how far cyber security approaches can help mitigate risks in generative AI systems.
Trending

From bugs to bypasses: adapting vulnerability disclosure for AI safeguards. Exploring how far cyber security approaches can help mitigate risks in generative AI systems.

From bugs to bypasses: adapting vulnerability disclosure for AI safeguards. Exploring how far cyber security approaches can help mitigate risks in generative AI systems.
Source: NCSC Feed
Published: Sep, 02 2025 06:36

Exploring how far cyber security approaches can help mitigate risks in generative AI systems.

Continue reading...

Cyber Assessment Framework v4.0 relea...
Cyber Assessment Framework v4.0 released in response to growing threat. Updates to the CAF helps providers of essenti... Cyber Assessment Framework v4.0 released in response to growing threat. Updates to the CAF helps providers of essential services to better manage their cyber risks.
NCSC Feed
Getting your organisation ready for W...
Getting your organisation ready for Windows 11 upgrade before Autumn 2025. Why you should act now to ensure you meet ... Getting your organisation ready for Windows 11 upgrade before Autumn 2025. Why you should act now to ensure you meet the new hardware standards, and prioritise security.
NCSC Feed
Trusting the tech: using password man...
Trusting the tech: using password managers and passkeys to help you stay secure online. How today’s secure tools simp... Trusting the tech: using password managers and passkeys to help you stay secure online. How today’s secure tools simplify your digital life, and reduce login stress and password fatigue.
NCSC Feed
Have you got what it takes to be a 'C...
Have you got what it takes to be a 'Cyber Advisor'?. We need more cyber professionals to join our scheme providing ha... Have you got what it takes to be a 'Cyber Advisor'?. We need more cyber professionals to join our scheme providing hands-on advice to SMEs.
NCSC Feed
Sausages and incentives: rewarding a ...
Sausages and incentives: rewarding a resilient technology future. Why ‘thinking big’ is required to shift the dynamic... Sausages and incentives: rewarding a resilient technology future. Why ‘thinking big’ is required to shift the dynamics of the technology market.
NCSC Feed
Creating the right organisational cul...
Creating the right organisational culture for cyber security. Calling cyber security professionals, culture specialis... Creating the right organisational culture for cyber security. Calling cyber security professionals, culture specialists and leaders to drive uptake of new Cyber security culture principles.
NCSC Feed

Most Viewed

From bugs to bypasses: adapting vulnerability disclosure ...
From bugs to bypasses: adapting vulnerability disclosure for AI safeguards. Exploring h... From bugs to bypasses: adapting vulnerability disclosure ...
NCSC Feed
Cyber Assessment Framework v4.0 released in response to g...
Cyber Assessment Framework v4.0 released in response to growing threat. Updates to the ... Cyber Assessment Framework v4.0 released in response to g...
NCSC Feed
Getting your organisation ready for Windows 11 upgrade be...
Getting your organisation ready for Windows 11 upgrade before Autumn 2025. Why you shou... Getting your organisation ready for Windows 11 upgrade be...
NCSC Feed
Trusting the tech: using password managers and passkeys t...
Trusting the tech: using password managers and passkeys to help you stay secure online.... Trusting the tech: using password managers and passkeys t...
NCSC Feed
Have you got what it takes to be a 'Cyber Advisor'?. We n...
Have you got what it takes to be a 'Cyber Advisor'?. We need more cyber professionals t... Have you got what it takes to be a 'Cyber Advisor'?. We n...
NCSC Feed
Sausages and incentives: rewarding a resilient technology...
Sausages and incentives: rewarding a resilient technology future. Why ‘thinking big’ is... Sausages and incentives: rewarding a resilient technology...
NCSC Feed
Creating the right organisational culture for cyber secur...
Creating the right organisational culture for cyber security. Calling cyber security pr... Creating the right organisational culture for cyber secur...
NCSC Feed
New ETSI standard protects AI systems from evolving cyber...
New ETSI standard protects AI systems from evolving cyber threats. The NCSC and DSIT wo... New ETSI standard protects AI systems from evolving cyber...
NCSC Feed
Facing the cyber threat behind the headlines. NCSC CEO ur...
Facing the cyber threat behind the headlines. NCSC CEO urges all businesses to face the... Facing the cyber threat behind the headlines. NCSC CEO ur...
NCSC Feed
Decommissioning assets. How to retire digital assets (suc...
Decommissioning assets. How to retire digital assets (such as data, software, or hardwa... Decommissioning assets. How to retire digital assets (suc...
NCSC Feed
Incidents impacting retailers – recommendations from the ...
Incidents impacting retailers – recommendations from the NCSC. A joint blog post by the... Incidents impacting retailers – recommendations from the ...
NCSC Feed
Software Code of Practice: building a secure digital futu...
Software Code of Practice: building a secure digital future. New voluntary code of prac... Software Code of Practice: building a secure digital futu...
NCSC Feed

Historical Trends

Mapping your supply chain. How organisations can map their supply chain dependencies, so that risks in the supply chain can be better understood and managed.
Mapping your supply chain. How organisations can map their supply chain dependencies, s... Mapping your supply chain. How organisations can map thei...
NCSC Feed
Managing the risk of cloud-enabled products. Guidance outlining the risks of locally installed products interacting with cloud services, and suggestions to help organisations manage this risk.
Managing the risk of cloud-enabled products. Guidance outlining the risks of locally in... Managing the risk of cloud-enabled products. Guidance out...
NCSC Feed
Managing Public Domain Names. Good practises for the management of public domain names owned by your organisation.
Managing Public Domain Names. Good practises for the management of public domain names ... Managing Public Domain Names. Good practises for the mana...
NCSC Feed
Maintaining a sustainable strengthened cyber security posture. How organisations can avoid staff burnout during an extended period of heightened cyber threat.
Maintaining a sustainable strengthened cyber security posture. How organisations can av... Maintaining a sustainable strengthened cyber security pos...
NCSC Feed
Macro Security for Microsoft Office. Why macros are a threat, and the approaches you can take to protect your systems.
Macro Security for Microsoft Office. Why macros are a threat, and the approaches you ca... Macro Security for Microsoft Office. Why macros are a thr...
NCSC Feed
'Krack' Wi-Fi guidance. Guidance for enterprise administrators, small businesses and home users in relation to the recently published 'Krack' vulnerability in Wi-Fi networks protected by WPA2.
'Krack' Wi-Fi guidance. Guidance for enterprise administrators, small businesses and ho... 'Krack' Wi-Fi guidance. Guidance for enterprise administr...
NCSC Feed
Introduction to logging for security purposes. Laying the groundwork for incident readiness.
Introduction to logging for security purposes. Laying the groundwork for incident readiness. Introduction to logging for security purposes. Laying the...
NCSC Feed
Introduction to identity and access management. This guidance provides a primer on the essential techniques, technologies and uses of access management.
Introduction to identity and access management. This guidance provides a primer on the ... Introduction to identity and access management. This guid...
NCSC Feed
How to spot scammers claiming to be from the NCSC. Check that you're talking to a genuine NCSC employee, and not a criminal.
How to spot scammers claiming to be from the NCSC. Check that you're talking to a genui... How to spot scammers claiming to be from the NCSC. Check ...
NCSC Feed
How to recover an infected device. Advice for those concerned a device has been infected.
How to recover an infected device. Advice for those concerned a device has been infected. How to recover an infected device. Advice for those conce...
NCSC Feed
Home working: preparing your organisation and staff. How to make sure your organisation is prepared for home working.
Home working: preparing your organisation and staff. How to make sure your organisation... Home working: preparing your organisation and staff. How ...
NCSC Feed
Guidance on digital forensics and protective monitoring specifications for producers of network devices and appliances. Outlining the expectations for the minimum requirement for forensic visibility, to help network defenders secure organisational networks both before and after a compromise.
Guidance on digital forensics and protective monitoring specifications for producers of... Guidance on digital forensics and protective monitoring s...
NCSC Feed
Guidance for organisations considering payment in ransomware incidents. Advice for organisations experiencing a ransomware attack and the partner organisations supporting them.
Guidance for organisations considering payment in ransomware incidents. Advice for orga... Guidance for organisations considering payment in ransomw...
NCSC Feed
Guidance for brands to help advertising partners counter malvertising. Advice to make it harder for cyber criminals to deliver malicious advertising, and reduce the risk of cyber-facilitated fraud.
Guidance for brands to help advertising partners counter malvertising. Advice to make i... Guidance for brands to help advertising partners counter ...
NCSC Feed
Guidance following recent DoS attacks in the run up to the 2019 General Election.
Guidance following recent DoS attacks in the run up to the 2019 General Election. Guidance following recent DoS attacks in the run up to th...
NCSC Feed
GDPR security outcomes. This guidance describes a set of technical security outcomes that are considered to represent appropriate measures under the GDPR.
GDPR security outcomes. This guidance describes a set of technical security outcomes th... GDPR security outcomes. This guidance describes a set of ...
NCSC Feed
Effective steps to cyber exercise creation. The following tips can help organisations create their own cyber incident response exercises.
Effective steps to cyber exercise creation. The following tips can help organisations c... Effective steps to cyber exercise creation. The following...
NCSC Feed
Guidance on effective communications in a cyber incident. Supporting organisations of all sizes to manage their communications strategy before, during and after a cyber security incident.
Guidance on effective communications in a cyber incident. Supporting organisations of a... Guidance on effective communications in a cyber incident....
NCSC Feed
Early Years practitioners: using cyber security to protect your settings. How to protect sensitive information about your setting and the children in your care from accidental damage and online criminals.
Early Years practitioners: using cyber security to protect your settings. How to protec... Early Years practitioners: using cyber security to protec...
NCSC Feed
Design Pattern: Safely Exporting Data. How to implement a secure end-to-end data export solution.
Design Pattern: Safely Exporting Data. How to implement a secure end-to-end data export... Design Pattern: Safely Exporting Data. How to implement a...
NCSC Feed
Design guidelines for high assurance products. Approaches to the design, development and assessment of products capable of resisting elevated threats.
Design guidelines for high assurance products. Approaches to the design, development an... Design guidelines for high assurance products. Approaches...
NCSC Feed
Dealing with the SolarWinds Orion compromise. Immediate actions for all organisations using the SolarWinds Orion suite of IT management tools.
Dealing with the SolarWinds Orion compromise. Immediate actions for all organisations u... Dealing with the SolarWinds Orion compromise. Immediate a...
NCSC Feed
Data breaches: guidance for individuals and families. How to protect yourself from the impact of data breaches.
Data breaches: guidance for individuals and families. How to protect yourself from the ... Data breaches: guidance for individuals and families. How...
NCSC Feed
Cyber security for major events. Assessing the cyber security needs of major events.
Cyber security for major events. Assessing the cyber security needs of major events. Cyber security for major events. Assessing the cyber secu...
NCSC Feed
Cyber security for high profile conferences. Managing the cyber security of high profile events in the real and virtual worlds.
Cyber security for high profile conferences. Managing the cyber security of high profil... Cyber security for high profile conferences. Managing the...
NCSC Feed
Cyber security for farmers. Guidance to help farmers improve the security and resilience of their business against cyber threats.
Cyber security for farmers. Guidance to help farmers improve the security and resilienc... Cyber security for farmers. Guidance to help farmers impr...
NCSC Feed
Cyber security for construction businesses. Guidance to help the construction industry improve the security and resilience of their business against cyber threats.
Cyber security for construction businesses. Guidance to help the construction industry ... Cyber security for construction businesses. Guidance to h...
NCSC Feed
Cyber insurance guidance. Cyber security considerations for organisations thinking about taking out cyber insurance.
Cyber insurance guidance. Cyber security considerations for organisations thinking abou... Cyber insurance guidance. Cyber security considerations f...
NCSC Feed
Configuring Microsoft Outlook 365's 'Report Phishing' add-in. How to report emails to the NCSC's Suspicious Email Reporting Service (SERS) using the 'Report Phishing' add-in for Microsoft Outlook 365.
Configuring Microsoft Outlook 365's 'Report Phishing' add-in. How to report emails to t... Configuring Microsoft Outlook 365's 'Report Phishing' add...
NCSC Feed
Buying and selling second-hand devices. How to erase the personal data from your phone, tablets, and other devices (and why it's important when you're buying and selling them).
Buying and selling second-hand devices. How to erase the personal data from your phone,... Buying and selling second-hand devices. How to erase the ...
NCSC Feed
Business email compromise: defending your organisation. How to disrupt email phishing attacks that target senior executives or budget holders.
Business email compromise: defending your organisation. How to disrupt email phishing a... Business email compromise: defending your organisation. H...
NCSC Feed
Business communications - SMS and telephone best practice. How to ensure your organisation's SMS and telephone messages are effective and trustworthy.
Business communications - SMS and telephone best practice. How to ensure your organisat... Business communications - SMS and telephone best practice...
NCSC Feed
Building and operating a secure online service. Guidance for organisations that use, own, or operate an online service who are looking to start securing it.
Building and operating a secure online service. Guidance for organisations that use, ow... Building and operating a secure online service. Guidance ...
NCSC Feed
Engaging with Boards to improve the management of cyber security risk. How to communicate more effectively with board members to improve cyber security decision making.
Engaging with Boards to improve the management of cyber security risk. How to communica... Engaging with Boards to improve the management of cyber s...
NCSC Feed
Authentication methods: choosing the right type. Recommended authentication models for organisations looking to move 'beyond passwords'.
Authentication methods: choosing the right type. Recommended authentication models for ... Authentication methods: choosing the right type. Recommen...
NCSC Feed
Asset management. Implementing asset management for good cyber security.
Asset management. Implementing asset management for good cyber security. Asset management. Implementing asset management for good ...
NCSC Feed
Approaching enterprise technology with cyber security in mind. How organisations can approach enterprise technology in order to deter cyber attacks.
Approaching enterprise technology with cyber security in mind. How organisations can ap... Approaching enterprise technology with cyber security in ...
NCSC Feed
AI and cyber security: what you need to know. Understanding the risks - and benefits - of using AI tools.
AI and cyber security: what you need to know. Understanding the risks - and benefits - ... AI and cyber security: what you need to know. Understandi...
NCSC Feed
Advice for End Users. We recommend that guidance is given to all remote and mobile users on how to keep information on their devices safe and secure.
Advice for End Users. We recommend that guidance is given to all remote and mobile user... Advice for End Users. We recommend that guidance is given...
NCSC Feed
Actions to take when the cyber threat is heightened. When organisations might face a greater threat, and the steps to take to improve security.
Actions to take when the cyber threat is heightened. When organisations might face a gr... Actions to take when the cyber threat is heightened. When...
NCSC Feed
Acquiring, managing, and disposing of network devices. Advice for organisations on the acquisition, management and disposal of network devices.
Acquiring, managing, and disposing of network devices. Advice for organisations on the ... Acquiring, managing, and disposing of network devices. Ad...
NCSC Feed
'Smart' security cameras: Using them safely in your home. How to protect 'smart' security cameras and baby monitors from cyber attack.
'Smart' security cameras: Using them safely in your home. How to protect 'smart' securi... 'Smart' security cameras: Using them safely in your home....
NCSC Feed
A method to assess 'forgivable' vs 'unforgivable' vulnerabilities. Research from the NCSC designed to eradicate vulnerability classes and make the top-level mitigations easier to implement.
A method to assess 'forgivable' vs 'unforgivable' vulnerabilities. Research from the NC... A method to assess 'forgivable' vs 'unforgivable' vulnera...
NCSC Feed
Vulnerability Scanning: Keeping on top of the most common threats. Vulnerability Scanning solutions offer a cost-effective way to discover and manage common security issues.
Vulnerability Scanning: Keeping on top of the most common threats. Vulnerability Scanni... Vulnerability Scanning: Keeping on top of the most common...
NCSC Feed
Identifying suspicious credential usage. How NCSC guidance can help organisations detect and protect themselves from credential abuse.
Identifying suspicious credential usage. How NCSC guidance can help organisations detec... Identifying suspicious credential usage. How NCSC guidanc...
NCSC Feed
ACD 2.0: Insights from the external attack surface management trials. We publish the results of our ACD 2.0 external attack surface management (EASM) trials.
ACD 2.0: Insights from the external attack surface management trials. We publish the re... ACD 2.0: Insights from the external attack surface manage...
NCSC Feed
Making Principles Based Assurance a reality. An update on the work to make Principles Based Assurance (PBA) usable in practice.
Making Principles Based Assurance a reality. An update on the work to make Principles B... Making Principles Based Assurance a reality. An update on...
NCSC Feed
New interactive video - and related downloads - to help secondary school kids stay safe online. A new initiative, aimed at 11 to 14-year-olds, that helps them navigate the risks of online life.
New interactive video - and related downloads - to help secondary school kids stay safe... New interactive video - and related downloads - to help s...
NCSC Feed
The future of Technology Assurance in the UK. Chris Ensor highlights some important elements of the NCSC's new Technology Assurance strategy.
The future of Technology Assurance in the UK. Chris Ensor highlights some important ele... The future of Technology Assurance in the UK. Chris Ensor...
NCSC Feed
Are you hungry? A two-part blog about risk appetites. Risk appetites; what are they, what’s their purpose, how do organisations go about defining them?.
Are you hungry? A two-part blog about risk appetites. Risk appetites; what are they, wh... Are you hungry? A two-part blog about risk appetites. Ris...
NCSC Feed