Buzz & Beyond: Ncsc feed

Cyber security is business survival. The NCSC co-signs Ministerial letter to major British businesses including FTSE 350 companies.

Trending

Cyber security is business survival. The NCSC co-signs Ministerial letter to major British businesses including FTSE 350 companies.

Cyber security is business survival. The NCSC co-signs Ministerial letter to major British businesses including FTSE 350 companies.

Source: NCSC Feed

Published: Oct, 21 2025 10:59

The NCSC co-signs Ministerial letter to major British businesses including FTSE 350 companies.

Continue reading...

Strengthening national cyber resilien...

Strengthening national cyber resilience through observability and threat hunting. How organisations can improve their... Strengthening national cyber resilience through observability and threat hunting. How organisations can improve their ability to both detect and discover cyber threats.

RFC 9794: a new standard for post-qua...

RFC 9794: a new standard for post-quantum terminology. The NCSC’s contribution to the Internet Engineering Task Force... RFC 9794: a new standard for post-quantum terminology. The NCSC’s contribution to the Internet Engineering Task Force will help to make the internet more secure.

Understanding your OT environment: th...

Understanding your OT environment: the first step to stronger cyber security. If you can’t see your entire operationa... Understanding your OT environment: the first step to stronger cyber security. If you can’t see your entire operational technology environment, you can’t defend it. New guidance from the NCSC will help you gain that visibility.

EASM buyer's guide now available. How...

EASM buyer's guide now available. How to choose an external attack surface management (EASM) tool that’s right for yo... EASM buyer's guide now available. How to choose an external attack surface management (EASM) tool that’s right for your organisation.

External attack surface management (E...

External attack surface management (EASM) buyer's guide. A guide to choosing the right EASM product for your organisa... External attack surface management (EASM) buyer's guide. A guide to choosing the right EASM product for your organisation, and the security features you need to consider.

Cyber resilience matters as much as c...

Cyber resilience matters as much as cyber defence. Why planning and rehearsing your recovery from an incident is as v... Cyber resilience matters as much as cyber defence. Why planning and rehearsing your recovery from an incident is as vital as building your defences.

Most Viewed

Cyber security is business survival. The NCSC co-signs Mi...

Cyber security is business survival. The NCSC co-signs Ministerial letter to major Brit... Cyber security is business survival. The NCSC co-signs Mi...

Strengthening national cyber resilience through observabi...

Strengthening national cyber resilience through observability and threat hunting. How o... Strengthening national cyber resilience through observabi...

RFC 9794: a new standard for post-quantum terminology. Th...

RFC 9794: a new standard for post-quantum terminology. The NCSC’s contribution to the I... RFC 9794: a new standard for post-quantum terminology. Th...

Understanding your OT environment: the first step to stro...

Understanding your OT environment: the first step to stronger cyber security. If you ca... Understanding your OT environment: the first step to stro...

EASM buyer's guide now available. How to choose an extern...

EASM buyer's guide now available. How to choose an external attack surface management (... EASM buyer's guide now available. How to choose an extern...

External attack surface management (EASM) buyer's guide. ...

External attack surface management (EASM) buyer's guide. A guide to choosing the right ... External attack surface management (EASM) buyer's guide. ...

Cyber resilience matters as much as cyber defence. Why pl...

Cyber resilience matters as much as cyber defence. Why planning and rehearsing your rec... Cyber resilience matters as much as cyber defence. Why pl...

From bugs to bypasses: adapting vulnerability disclosure ...

From bugs to bypasses: adapting vulnerability disclosure for AI safeguards. Exploring h... From bugs to bypasses: adapting vulnerability disclosure ...

Cyber Assessment Framework v4.0 released in response to g...

Cyber Assessment Framework v4.0 released in response to growing threat. Updates to the ... Cyber Assessment Framework v4.0 released in response to g...

Getting your organisation ready for Windows 11 upgrade be...

Getting your organisation ready for Windows 11 upgrade before Autumn 2025. Why you shou... Getting your organisation ready for Windows 11 upgrade be...

Trusting the tech: using password managers and passkeys t...

Trusting the tech: using password managers and passkeys to help you stay secure online.... Trusting the tech: using password managers and passkeys t...

Have you got what it takes to be a 'Cyber Advisor'?. We n...

Have you got what it takes to be a 'Cyber Advisor'?. We need more cyber professionals t... Have you got what it takes to be a 'Cyber Advisor'?. We n...

Historical Trends

Vulnerability Scanning: Keeping on top of the most common threats. Vulnerability Scanning solutions offer a cost-effective way to discover and manage common security issues.

Vulnerability Scanning: Keeping on top of the most common threats. Vulnerability Scanni... Vulnerability Scanning: Keeping on top of the most common...

NCSC Feed

Identifying suspicious credential usage. How NCSC guidance can help organisations detect and protect themselves from credential abuse.

Identifying suspicious credential usage. How NCSC guidance can help organisations detec... Identifying suspicious credential usage. How NCSC guidanc...

NCSC Feed

ACD 2.0: Insights from the external attack surface management trials. We publish the results of our ACD 2.0 external attack surface management (EASM) trials.

ACD 2.0: Insights from the external attack surface management trials. We publish the re... ACD 2.0: Insights from the external attack surface manage...

NCSC Feed

Making Principles Based Assurance a reality. An update on the work to make Principles Based Assurance (PBA) usable in practice.

Making Principles Based Assurance a reality. An update on the work to make Principles B... Making Principles Based Assurance a reality. An update on...

NCSC Feed

New interactive video - and related downloads - to help secondary school kids stay safe online. A new initiative, aimed at 11 to 14-year-olds, that helps them navigate the risks of online life.

New interactive video - and related downloads - to help secondary school kids stay safe... New interactive video - and related downloads - to help s...

NCSC Feed

The future of Technology Assurance in the UK. Chris Ensor highlights some important elements of the NCSC's new Technology Assurance strategy.

The future of Technology Assurance in the UK. Chris Ensor highlights some important ele... The future of Technology Assurance in the UK. Chris Ensor...

NCSC Feed

Are you hungry? A two-part blog about risk appetites. Risk appetites; what are they, what’s their purpose, how do organisations go about defining them?.

Are you hungry? A two-part blog about risk appetites. Risk appetites; what are they, wh... Are you hungry? A two-part blog about risk appetites. Ris...

NCSC Feed

Zero trust 1.0. Zero trust architecture design principles 1.0 launched.

Zero trust 1.0. Zero trust architecture design principles 1.0 launched. Zero trust 1.0. Zero trust architecture design principles...

NCSC Feed

Defending software build pipelines from malicious attack. Compromise of your software build pipeline can have wide-reaching impact; here's how to tackle the problem.

Defending software build pipelines from malicious attack. Compromise of your software b... Defending software build pipelines from malicious attack....

NCSC Feed

Supplier assurance: having confidence in your suppliers. Questions to ask your suppliers that will help you gain confidence in their cyber security.

Supplier assurance: having confidence in your suppliers. Questions to ask your supplier... Supplier assurance: having confidence in your suppliers. ...

NCSC Feed

Why cloud first is not a security problem. Using the cloud securely should be your primary concern - not the underlying security of the public cloud.

Why cloud first is not a security problem. Using the cloud securely should be your prim... Why cloud first is not a security problem. Using the clou...

NCSC Feed

NCSC IT: There's confidence and then there's SaaS. Raising a cheer for SaaS vendors who respond to our cloud security principles.

NCSC IT: There's confidence and then there's SaaS. Raising a cheer for SaaS vendors who... NCSC IT: There's confidence and then there's SaaS. Raisin...

NCSC Feed

Protecting parked domains for the UK public sector. Non-email sending (parked) domains can be used to generate spam email, but they're easy to protect.

Protecting parked domains for the UK public sector. Non-email sending (parked) domains ... Protecting parked domains for the UK public sector. Non-e...

NCSC Feed

There's a hole in my bucket. ...or 'Why do people leave sensitive data in unprotected AWS S3 buckets?'.

There's a hole in my bucket. ...or 'Why do people leave sensitive data in unprotected A... There's a hole in my bucket. ...or 'Why do people leave s...

NCSC Feed

Equities process. Publication of the UK’s process for how we handle vulnerabilities.

Equities process. Publication of the UK’s process for how we handle vulnerabilities. Equities process. Publication of the UK’s process for how...

NCSC Feed

Protecting system administration with PAM. Remote system administration provides powerful and flexible access to systems and services.

Protecting system administration with PAM. Remote system administration provides powerf... Protecting system administration with PAM. Remote system ...

NCSC Feed

The near-term impact of AI on the cyber threat. An NCSC assessment focusing on how AI will impact the efficacy of cyber operations and the implications for the cyber threat over the next two years.

The near-term impact of AI on the cyber threat. An NCSC assessment focusing on how AI w... The near-term impact of AI on the cyber threat. An NCSC a...

NCSC Feed

Organisational use of Enterprise Connected Devices. Assessing the cyber security threat to UK organisations using Enterprise Connected Devices.

Organisational use of Enterprise Connected Devices. Assessing the cyber security threat... Organisational use of Enterprise Connected Devices. Asses...

NCSC Feed

The cyber threat to Universities. Assessing the cyber security threat to UK Universities.

The cyber threat to Universities. Assessing the cyber security threat to UK Universities. The cyber threat to Universities. Assessing the cyber sec...

NCSC Feed

An RFC on IoCs – playing our part in international standards. The NCSC has published a new RFC on Indicators of Compromise to support cyber security in protocol design - and hopes to encourage more cyber defenders to engage with international standards.

An RFC on IoCs – playing our part in international standards. The NCSC has published a ... An RFC on IoCs – playing our part in international standa...

NCSC Feed

So long and thanks for all the bits. Ian Levy, the NCSC’s departing Technical Director, discusses life, the universe, and everything.

So long and thanks for all the bits. Ian Levy, the NCSC’s departing Technical Director,... So long and thanks for all the bits. Ian Levy, the NCSC’s...

NCSC Feed

New 'Connected Places' infographic published. A new visual guide to the cyber security principles that are essential when developing and managing ‘smart cities’.

New 'Connected Places' infographic published. A new visual guide to the cyber security ... New 'Connected Places' infographic published. A new visua...

NCSC Feed

NCSC's cyber security training for staff now available. The NCSC’s e-learning package 'Top Tips For Staff' can be completed online, or built into your own training platform.

NCSC's cyber security training for staff now available. The NCSC’s e-learning package '... NCSC's cyber security training for staff now available. T...

NCSC Feed

Erasing data from donated devices. How charities can erase personal data from donated laptops, phones and tablets, before passing them on.

Erasing data from donated devices. How charities can erase personal data from donated l... Erasing data from donated devices. How charities can eras...

NCSC Feed

Cloud security made easier with Serverless. Our research shows that using Serverless components makes it easier to get good security in the cloud.

Cloud security made easier with Serverless. Our research shows that using Serverless co... Cloud security made easier with Serverless. Our research ...

NCSC Feed

Cyber Essentials Plus is for charities too!. Sara Ward, the CEO of Black Country Women's Aid, discusses her organisation's experience of gaining Cyber Essentials Plus certification.

Cyber Essentials Plus is for charities too!. Sara Ward, the CEO of Black Country Women'... Cyber Essentials Plus is for charities too!. Sara Ward, t...

NCSC Feed

Helping organisations - and researchers - to manage vulnerability disclosure. Ollie N explains the thinking behind the NCSC’s new Vulnerability Disclosure Toolkit, which is now available to download.

Helping organisations - and researchers - to manage vulnerability disclosure. Ollie N e... Helping organisations - and researchers - to manage vulne...

NCSC Feed

Refreshed 'cyber security toolkit' helps board members to govern online risk. Lindy Cameron, CEO, introduces changes to the NCSC’s cyber security resources specifically designed for board members.

Refreshed 'cyber security toolkit' helps board members to govern online risk. Lindy Cam... Refreshed 'cyber security toolkit' helps board members to...

NCSC Feed

Growing positive security cultures. If your security culture isn't improving naturally, here's what you can do about it.

Growing positive security cultures. If your security culture isn't improving naturally,... Growing positive security cultures. If your security cult...

NCSC Feed

Check your email security, and protect your customers. Free online tool from the NCSC prevents cyber criminals using your email to conduct cyber attacks.

Check your email security, and protect your customers. Free online tool from the NCSC p... Check your email security, and protect your customers. Fr...

NCSC Feed

Cyber Security Toolkit for Boards: updated briefing pack released. New presentation includes voiceover and insights on ransomware attack on the British Library.

Cyber Security Toolkit for Boards: updated briefing pack released. New presentation inc... Cyber Security Toolkit for Boards: updated briefing pack ...

NCSC Feed

Firmware updates on Linux, and using data to influence procurement decisions. Focused on automating UEFI firmware updates on Windows devices.

Firmware updates on Linux, and using data to influence procurement decisions. Focused o... Firmware updates on Linux, and using data to influence pr...

NCSC Feed

What exactly should we be logging?. A structured look at what data to collect for security purposes and when to collect it.

What exactly should we be logging?. A structured look at what data to collect for secur... What exactly should we be logging?. A structured look at ...

NCSC Feed

New cloud guidance: how to 'lift and shift' successfully. Henry O discusses the pitfalls of performing a basic ‘lift and shift’ cloud migration.

New cloud guidance: how to 'lift and shift' successfully. Henry O discusses the pitfall... New cloud guidance: how to 'lift and shift' successfully....

NCSC Feed

Drawing good architecture diagrams. Some tips on good diagram drafting and pitfalls to avoid when trying to understand a system in order to secure it.

Drawing good architecture diagrams. Some tips on good diagram drafting and pitfalls to ... Drawing good architecture diagrams. Some tips on good dia...

NCSC Feed

The future of telecoms in the UK. NCSC Technical Director Dr Ian Levy explains how the security analysis behind the DCMS supply chain review will ensure the UK’s telecoms networks are secure – regardless of the vendors used.

The future of telecoms in the UK. NCSC Technical Director Dr Ian Levy explains how the ... The future of telecoms in the UK. NCSC Technical Director...

NCSC Feed

Studies in secure system design. Worked examples for Operational Technology and Virtualised systems, using the NCSC’s secure design principles.

Studies in secure system design. Worked examples for Operational Technology and Virtual... Studies in secure system design. Worked examples for Oper...

NCSC Feed

Zero trust: building a mixed estate. Two ways organisations can enable access and maintain the security benefits of zero trust even when parts of the infrastructure can't implement the zero trust principles.

Zero trust: building a mixed estate. Two ways organisations can enable access and maint... Zero trust: building a mixed estate. Two ways organisatio...

NCSC Feed

Transaction Monitoring for online services. This guidance is aimed at service owners and security specialists involved in the provision of online services.

Transaction Monitoring for online services. This guidance is aimed at service owners an... Transaction Monitoring for online services. This guidance...

NCSC Feed

'NCSC Cyber Series' podcast now available. Listen to all five episodes now, covering a wide range of cyber security topics.

'NCSC Cyber Series' podcast now available. Listen to all five episodes now, covering a ... 'NCSC Cyber Series' podcast now available. Listen to all ...

NCSC Feed

Preserving integrity in the age of generative AI. New ‘Content Credentials’ guidance from the NSA seeks to counter the erosion of trust.

Preserving integrity in the age of generative AI. New ‘Content Credentials’ guidance f... Preserving integrity in the age of generative AI. New ‘C...

NCSC Feed

Eradicating trivial vulnerabilities, at scale. A new NCSC research paper aims to reduce the presence of ‘unforgivable’ vulnerabilities.

Eradicating trivial vulnerabilities, at scale. A new NCSC research paper aims to reduce... Eradicating trivial vulnerabilities, at scale. A new NCSC...

NCSC Feed

ACD 2.0 exploration into attack surface management completed. We thank participants and look forward to sharing what we've learned.

ACD 2.0 exploration into attack surface management completed. We thank participants and... ACD 2.0 exploration into attack surface management comple...

NCSC Feed

Passkeys: they're not perfect but they're getting better. Passkeys are the future of authentication, offering enhanced security and convenience over passwords, but widespread adoption faces challenges that the NCSC is working to resolve.

Passkeys: they're not perfect but they're getting better. Passkeys are the future of au... Passkeys: they're not perfect but they're getting better....

NCSC Feed

Passkeys: the promise of a simpler and safer alternative to passwords. The merits of choosing passkeys over passwords to help keep your online accounts more secure, and explaining how the technology promises to do this.

Passkeys: the promise of a simpler and safer alternative to passwords. The merits of ch... Passkeys: the promise of a simpler and safer alternative ...

NCSC Feed

Revolutionising identity services using AI. The ‘NCSC for Startups’ alumnus giving identity verification the 'Trust Stamp'.

Revolutionising identity services using AI. The ‘NCSC for Startups’ alumnus giving iden... Revolutionising identity services using AI. The ‘NCSC for...

NCSC Feed

NCSC For Startups: taking on malvertising. Can your startup help counter the rise of malicious advertising?.

NCSC For Startups: taking on malvertising. Can your startup help counter the rise of ma... NCSC For Startups: taking on malvertising. Can your start...

NCSC Feed

Applying the Cloud Security Principles in practice: a case study. Using the Cloud Security Principles to evaluate the suitability of a cloud service.

Applying the Cloud Security Principles in practice: a case study. Using the Cloud Secur... Applying the Cloud Security Principles in practice: a cas...

NCSC Feed

Assured Cyber Incident Response scheme – important updates. We’ve updated the CIR 'Enhanced Level' scheme standard and will be ready to accept applications in the new year.

Assured Cyber Incident Response scheme – important updates. We’ve updated the CIR 'Enha... Assured Cyber Incident Response scheme – important update...

NCSC Feed

Making the UK the safest place to live and do business online. The NCSC's Chief Executive Ciaran Martin outlines why the UK needs a National Cyber Security Centre.

Making the UK the safest place to live and do business online. The NCSC's Chief Executi... Making the UK the safest place to live and do business on...

NCSC Feed