1. Home
  2. Ncsc Feed

Buzz & Beyond: Ncsc feed

From bugs to bypasses: adapting vulnerability disclosure for AI safeguards. Exploring how far cyber security approaches can help mitigate risks in generative AI systems.
Trending

From bugs to bypasses: adapting vulnerability disclosure for AI safeguards. Exploring how far cyber security approaches can help mitigate risks in generative AI systems.

From bugs to bypasses: adapting vulnerability disclosure for AI safeguards. Exploring how far cyber security approaches can help mitigate risks in generative AI systems.
Source: NCSC Feed
Published: Sep, 02 2025 06:36

Exploring how far cyber security approaches can help mitigate risks in generative AI systems.

Continue reading...

Cyber Assessment Framework v4.0 relea...
Cyber Assessment Framework v4.0 released in response to growing threat. Updates to the CAF helps providers of essenti... Cyber Assessment Framework v4.0 released in response to growing threat. Updates to the CAF helps providers of essential services to better manage their cyber risks.
NCSC Feed
Getting your organisation ready for W...
Getting your organisation ready for Windows 11 upgrade before Autumn 2025. Why you should act now to ensure you meet ... Getting your organisation ready for Windows 11 upgrade before Autumn 2025. Why you should act now to ensure you meet the new hardware standards, and prioritise security.
NCSC Feed
Trusting the tech: using password man...
Trusting the tech: using password managers and passkeys to help you stay secure online. How today’s secure tools simp... Trusting the tech: using password managers and passkeys to help you stay secure online. How today’s secure tools simplify your digital life, and reduce login stress and password fatigue.
NCSC Feed
Have you got what it takes to be a 'C...
Have you got what it takes to be a 'Cyber Advisor'?. We need more cyber professionals to join our scheme providing ha... Have you got what it takes to be a 'Cyber Advisor'?. We need more cyber professionals to join our scheme providing hands-on advice to SMEs.
NCSC Feed
Sausages and incentives: rewarding a ...
Sausages and incentives: rewarding a resilient technology future. Why ‘thinking big’ is required to shift the dynamic... Sausages and incentives: rewarding a resilient technology future. Why ‘thinking big’ is required to shift the dynamics of the technology market.
NCSC Feed
Creating the right organisational cul...
Creating the right organisational culture for cyber security. Calling cyber security professionals, culture specialis... Creating the right organisational culture for cyber security. Calling cyber security professionals, culture specialists and leaders to drive uptake of new Cyber security culture principles.
NCSC Feed

Most Viewed

From bugs to bypasses: adapting vulnerability disclosure ...
From bugs to bypasses: adapting vulnerability disclosure for AI safeguards. Exploring h... From bugs to bypasses: adapting vulnerability disclosure ...
NCSC Feed
Cyber Assessment Framework v4.0 released in response to g...
Cyber Assessment Framework v4.0 released in response to growing threat. Updates to the ... Cyber Assessment Framework v4.0 released in response to g...
NCSC Feed
Getting your organisation ready for Windows 11 upgrade be...
Getting your organisation ready for Windows 11 upgrade before Autumn 2025. Why you shou... Getting your organisation ready for Windows 11 upgrade be...
NCSC Feed
Trusting the tech: using password managers and passkeys t...
Trusting the tech: using password managers and passkeys to help you stay secure online.... Trusting the tech: using password managers and passkeys t...
NCSC Feed
Have you got what it takes to be a 'Cyber Advisor'?. We n...
Have you got what it takes to be a 'Cyber Advisor'?. We need more cyber professionals t... Have you got what it takes to be a 'Cyber Advisor'?. We n...
NCSC Feed
Sausages and incentives: rewarding a resilient technology...
Sausages and incentives: rewarding a resilient technology future. Why ‘thinking big’ is... Sausages and incentives: rewarding a resilient technology...
NCSC Feed
Creating the right organisational culture for cyber secur...
Creating the right organisational culture for cyber security. Calling cyber security pr... Creating the right organisational culture for cyber secur...
NCSC Feed
New ETSI standard protects AI systems from evolving cyber...
New ETSI standard protects AI systems from evolving cyber threats. The NCSC and DSIT wo... New ETSI standard protects AI systems from evolving cyber...
NCSC Feed
Facing the cyber threat behind the headlines. NCSC CEO ur...
Facing the cyber threat behind the headlines. NCSC CEO urges all businesses to face the... Facing the cyber threat behind the headlines. NCSC CEO ur...
NCSC Feed
Decommissioning assets. How to retire digital assets (suc...
Decommissioning assets. How to retire digital assets (such as data, software, or hardwa... Decommissioning assets. How to retire digital assets (suc...
NCSC Feed
Incidents impacting retailers – recommendations from the ...
Incidents impacting retailers – recommendations from the NCSC. A joint blog post by the... Incidents impacting retailers – recommendations from the ...
NCSC Feed
Software Code of Practice: building a secure digital futu...
Software Code of Practice: building a secure digital future. New voluntary code of prac... Software Code of Practice: building a secure digital futu...
NCSC Feed

Historical Trends

Zero trust 1.0. Zero trust architecture design principles 1.0 launched.
Zero trust 1.0. Zero trust architecture design principles 1.0 launched. Zero trust 1.0. Zero trust architecture design principles...
NCSC Feed
Defending software build pipelines from malicious attack. Compromise of your software build pipeline can have wide-reaching impact; here's how to tackle the problem.
Defending software build pipelines from malicious attack. Compromise of your software b... Defending software build pipelines from malicious attack....
NCSC Feed
Supplier assurance: having confidence in your suppliers. Questions to ask your suppliers that will help you gain confidence in their cyber security.
Supplier assurance: having confidence in your suppliers. Questions to ask your supplier... Supplier assurance: having confidence in your suppliers. ...
NCSC Feed
Why cloud first is not a security problem. Using the cloud securely should be your primary concern - not the underlying security of the public cloud.
Why cloud first is not a security problem. Using the cloud securely should be your prim... Why cloud first is not a security problem. Using the clou...
NCSC Feed
NCSC IT: There's confidence and then there's SaaS. Raising a cheer for SaaS vendors who respond to our cloud security principles.
NCSC IT: There's confidence and then there's SaaS. Raising a cheer for SaaS vendors who... NCSC IT: There's confidence and then there's SaaS. Raisin...
NCSC Feed
Protecting parked domains for the UK public sector. Non-email sending (parked) domains can be used to generate spam email, but they're easy to protect.
Protecting parked domains for the UK public sector. Non-email sending (parked) domains ... Protecting parked domains for the UK public sector. Non-e...
NCSC Feed
There's a hole in my bucket. ...or 'Why do people leave sensitive data in unprotected AWS S3 buckets?'.
There's a hole in my bucket. ...or 'Why do people leave sensitive data in unprotected A... There's a hole in my bucket. ...or 'Why do people leave s...
NCSC Feed
Equities process. Publication of the UK’s process for how we handle vulnerabilities.
Equities process. Publication of the UK’s process for how we handle vulnerabilities. Equities process. Publication of the UK’s process for how...
NCSC Feed
Protecting system administration with PAM. Remote system administration provides powerful and flexible access to systems and services.
Protecting system administration with PAM. Remote system administration provides powerf... Protecting system administration with PAM. Remote system ...
NCSC Feed
The near-term impact of AI on the cyber threat. An NCSC assessment focusing on how AI will impact the efficacy of cyber operations and the implications for the cyber threat over the next two years.
The near-term impact of AI on the cyber threat. An NCSC assessment focusing on how AI w... The near-term impact of AI on the cyber threat. An NCSC a...
NCSC Feed
Organisational use of Enterprise Connected Devices. Assessing the cyber security threat to UK organisations using Enterprise Connected Devices.
Organisational use of Enterprise Connected Devices. Assessing the cyber security threat... Organisational use of Enterprise Connected Devices. Asses...
NCSC Feed
The cyber threat to Universities. Assessing the cyber security threat to UK Universities.
The cyber threat to Universities. Assessing the cyber security threat to UK Universities. The cyber threat to Universities. Assessing the cyber sec...
NCSC Feed
An RFC on IoCs – playing our part in international standards. The NCSC has published a new RFC on Indicators of Compromise to support cyber security in protocol design - and hopes to encourage more cyber defenders to engage with international standards.
An RFC on IoCs – playing our part in international standards. The NCSC has published a ... An RFC on IoCs – playing our part in international standa...
NCSC Feed
So long and thanks for all the bits. Ian Levy, the NCSC’s departing Technical Director, discusses life, the universe, and everything.
So long and thanks for all the bits. Ian Levy, the NCSC’s departing Technical Director,... So long and thanks for all the bits. Ian Levy, the NCSC’s...
NCSC Feed
New 'Connected Places' infographic published. A new visual guide to the cyber security principles that are essential when developing and managing ‘smart cities’.
New 'Connected Places' infographic published. A new visual guide to the cyber security ... New 'Connected Places' infographic published. A new visua...
NCSC Feed
NCSC's cyber security training for staff now available. The NCSC’s e-learning package 'Top Tips For Staff' can be completed online, or built into your own training platform.
NCSC's cyber security training for staff now available. The NCSC’s e-learning package '... NCSC's cyber security training for staff now available. T...
NCSC Feed
Erasing data from donated devices. How charities can erase personal data from donated laptops, phones and tablets, before passing them on.
Erasing data from donated devices. How charities can erase personal data from donated l... Erasing data from donated devices. How charities can eras...
NCSC Feed
Cloud security made easier with Serverless. Our research shows that using Serverless components makes it easier to get good security in the cloud.
Cloud security made easier with Serverless. Our research shows that using Serverless co... Cloud security made easier with Serverless. Our research ...
NCSC Feed
Cyber Essentials Plus is for charities too!. Sara Ward, the CEO of Black Country Women's Aid, discusses her organisation's experience of gaining Cyber Essentials Plus certification.
Cyber Essentials Plus is for charities too!. Sara Ward, the CEO of Black Country Women'... Cyber Essentials Plus is for charities too!. Sara Ward, t...
NCSC Feed
Helping organisations - and researchers - to manage vulnerability disclosure. Ollie N explains the thinking behind the NCSC’s new Vulnerability Disclosure Toolkit, which is now available to download.
Helping organisations - and researchers - to manage vulnerability disclosure. Ollie N e... Helping organisations - and researchers - to manage vulne...
NCSC Feed
Refreshed 'cyber security toolkit' helps board members to govern online risk. Lindy Cameron, CEO, introduces changes to the NCSC’s cyber security resources specifically designed for board members.
Refreshed 'cyber security toolkit' helps board members to govern online risk. Lindy Cam... Refreshed 'cyber security toolkit' helps board members to...
NCSC Feed
Growing positive security cultures. If your security culture isn't improving naturally, here's what you can do about it.
Growing positive security cultures. If your security culture isn't improving naturally,... Growing positive security cultures. If your security cult...
NCSC Feed
Check your email security, and protect your customers. Free online tool from the NCSC prevents cyber criminals using your email to conduct cyber attacks.
Check your email security, and protect your customers. Free online tool from the NCSC p... Check your email security, and protect your customers. Fr...
NCSC Feed
Cyber Security Toolkit for Boards: updated briefing pack released. New presentation includes voiceover and insights on ransomware attack on the British Library.
Cyber Security Toolkit for Boards: updated briefing pack released. New presentation inc... Cyber Security Toolkit for Boards: updated briefing pack ...
NCSC Feed
Firmware updates on Linux, and using data to influence procurement decisions. Focused on automating UEFI firmware updates on Windows devices.
Firmware updates on Linux, and using data to influence procurement decisions. Focused o... Firmware updates on Linux, and using data to influence pr...
NCSC Feed
What exactly should we be logging?. A structured look at what data to collect for security purposes and when to collect it.
What exactly should we be logging?. A structured look at what data to collect for secur... What exactly should we be logging?. A structured look at ...
NCSC Feed
New cloud guidance: how to 'lift and shift' successfully. Henry O discusses the pitfalls of performing a basic ‘lift and shift’ cloud migration.
New cloud guidance: how to 'lift and shift' successfully. Henry O discusses the pitfall... New cloud guidance: how to 'lift and shift' successfully....
NCSC Feed
Drawing good architecture diagrams. Some tips on good diagram drafting and pitfalls to avoid when trying to understand a system in order to secure it.
Drawing good architecture diagrams. Some tips on good diagram drafting and pitfalls to ... Drawing good architecture diagrams. Some tips on good dia...
NCSC Feed
The future of telecoms in the UK. NCSC Technical Director Dr Ian Levy explains how the security analysis behind the DCMS supply chain review will ensure the UK’s telecoms networks are secure – regardless of the vendors used.
The future of telecoms in the UK. NCSC Technical Director Dr Ian Levy explains how the ... The future of telecoms in the UK. NCSC Technical Director...
NCSC Feed
Studies in secure system design. Worked examples for Operational Technology and Virtualised systems, using the NCSC’s secure design principles.
Studies in secure system design. Worked examples for Operational Technology and Virtual... Studies in secure system design. Worked examples for Oper...
NCSC Feed
Zero trust: building a mixed estate. Two ways organisations can enable access and maintain the security benefits of zero trust even when parts of the infrastructure can't implement the zero trust principles.
Zero trust: building a mixed estate. Two ways organisations can enable access and maint... Zero trust: building a mixed estate. Two ways organisatio...
NCSC Feed
Transaction Monitoring for online services. This guidance is aimed at service owners and security specialists involved in the provision of online services.
Transaction Monitoring for online services. This guidance is aimed at service owners an... Transaction Monitoring for online services. This guidance...
NCSC Feed
'NCSC Cyber Series' podcast now available. Listen to all five episodes now, covering a wide range of cyber security topics.
'NCSC Cyber Series' podcast now available. Listen to all five episodes now, covering a ... 'NCSC Cyber Series' podcast now available. Listen to all ...
NCSC Feed
Preserving integrity in the age of generative AI. New ‘Content Credentials’ guidance from the NSA seeks to counter the erosion of trust.
Preserving integrity in the age of generative AI. New ‘Content Credentials’ guidance f... Preserving integrity in the age of generative AI. New ‘C...
NCSC Feed
Eradicating trivial vulnerabilities, at scale. A new NCSC research paper aims to reduce the presence of ‘unforgivable’ vulnerabilities.
Eradicating trivial vulnerabilities, at scale. A new NCSC research paper aims to reduce... Eradicating trivial vulnerabilities, at scale. A new NCSC...
NCSC Feed
ACD 2.0 exploration into attack surface management completed. We thank participants and look forward to sharing what we've learned.
ACD 2.0 exploration into attack surface management completed. We thank participants and... ACD 2.0 exploration into attack surface management comple...
NCSC Feed
Passkeys: they're not perfect but they're getting better. Passkeys are the future of authentication, offering enhanced security and convenience over passwords, but widespread adoption faces challenges that the NCSC is working to resolve.
Passkeys: they're not perfect but they're getting better. Passkeys are the future of au... Passkeys: they're not perfect but they're getting better....
NCSC Feed
Passkeys: the promise of a simpler and safer alternative to passwords. The merits of choosing passkeys over passwords to help keep your online accounts more secure, and explaining how the technology promises to do this.
Passkeys: the promise of a simpler and safer alternative to passwords. The merits of ch... Passkeys: the promise of a simpler and safer alternative ...
NCSC Feed
Revolutionising identity services using AI. The ‘NCSC for Startups’ alumnus giving identity verification the 'Trust Stamp'.
Revolutionising identity services using AI. The ‘NCSC for Startups’ alumnus giving iden... Revolutionising identity services using AI. The ‘NCSC for...
NCSC Feed
NCSC For Startups: taking on malvertising. Can your startup help counter the rise of malicious advertising?.
NCSC For Startups: taking on malvertising. Can your startup help counter the rise of ma... NCSC For Startups: taking on malvertising. Can your start...
NCSC Feed
Applying the Cloud Security Principles in practice: a case study. Using the Cloud Security Principles to evaluate the suitability of a cloud service.
Applying the Cloud Security Principles in practice: a case study. Using the Cloud Secur... Applying the Cloud Security Principles in practice: a cas...
NCSC Feed
Assured Cyber Incident Response scheme – important updates. We’ve updated the CIR 'Enhanced Level' scheme standard and will be ready to accept applications in the new year.
Assured Cyber Incident Response scheme – important updates. We’ve updated the CIR 'Enha... Assured Cyber Incident Response scheme – important update...
NCSC Feed
Making the UK the safest place to live and do business online. The NCSC's Chief Executive Ciaran Martin outlines why the UK needs a National Cyber Security Centre.
Making the UK the safest place to live and do business online. The NCSC's Chief Executi... Making the UK the safest place to live and do business on...
NCSC Feed
Three random words or #thinkrandom. Ian M discusses what makes a good password.
Three random words or #thinkrandom. Ian M discusses what makes a good password. Three random words or #thinkrandom. Ian M discusses what ...
NCSC Feed
What does the NCSC think of password managers?. Emma W discusses the question everyone keeps asking us.
What does the NCSC think of password managers?. Emma W discusses the question everyone ... What does the NCSC think of password managers?. Emma W di...
NCSC Feed
Ransomware: 'WannaCry' guidance for home users and small businesses. Guidance for home users or small businesses who want to reduce the likelihood of being held to ransom by WannaCry (or other types of ransomware).
Ransomware: 'WannaCry' guidance for home users and small businesses. Guidance for home ... Ransomware: 'WannaCry' guidance for home users and small ...
NCSC Feed
What is an antivirus product? Do I need one?. Detect and prevent malicious software and viruses on your computer or laptop.
What is an antivirus product? Do I need one?. Detect and prevent malicious software and... What is an antivirus product? Do I need one?. Detect and ...
NCSC Feed
Terminology: it's not black and white. The NCSC now uses 'allow list' and 'deny list' in place of 'whitelist' and 'blacklist'. Emma W explains why.
Terminology: it's not black and white. The NCSC now uses 'allow list' and 'deny list' i... Terminology: it's not black and white. The NCSC now uses ...
NCSC Feed
Video conferencing services: using them securely. How to set up and use video conferencing services, such as Zoom and Skype, safely and securely.
Video conferencing services: using them securely. How to set up and use video conferenc... Video conferencing services: using them securely. How to ...
NCSC Feed
Secure home working on personal IT. Useful tips and resources for people using personal IT to work from home.
Secure home working on personal IT. Useful tips and resources for people using personal... Secure home working on personal IT. Useful tips and resou...
NCSC Feed