Buzz & Beyond: Ncsc feed

From bugs to bypasses: adapting vulnerability disclosure for AI safeguards. Exploring how far cyber security approaches can help mitigate risks in generative AI systems.

Trending

From bugs to bypasses: adapting vulnerability disclosure for AI safeguards. Exploring how far cyber security approaches can help mitigate risks in generative AI systems.

From bugs to bypasses: adapting vulnerability disclosure for AI safeguards. Exploring how far cyber security approaches can help mitigate risks in generative AI systems.

Source: NCSC Feed

Published: Sep, 02 2025 06:36

Exploring how far cyber security approaches can help mitigate risks in generative AI systems.

Continue reading...

Cyber Assessment Framework v4.0 relea...

Cyber Assessment Framework v4.0 released in response to growing threat. Updates to the CAF helps providers of essenti... Cyber Assessment Framework v4.0 released in response to growing threat. Updates to the CAF helps providers of essential services to better manage their cyber risks.

Getting your organisation ready for W...

Getting your organisation ready for Windows 11 upgrade before Autumn 2025. Why you should act now to ensure you meet ... Getting your organisation ready for Windows 11 upgrade before Autumn 2025. Why you should act now to ensure you meet the new hardware standards, and prioritise security.

Trusting the tech: using password man...

Trusting the tech: using password managers and passkeys to help you stay secure online. How today’s secure tools simp... Trusting the tech: using password managers and passkeys to help you stay secure online. How today’s secure tools simplify your digital life, and reduce login stress and password fatigue.

Have you got what it takes to be a 'C...

Have you got what it takes to be a 'Cyber Advisor'?. We need more cyber professionals to join our scheme providing ha... Have you got what it takes to be a 'Cyber Advisor'?. We need more cyber professionals to join our scheme providing hands-on advice to SMEs.

Sausages and incentives: rewarding a ...

Sausages and incentives: rewarding a resilient technology future. Why ‘thinking big’ is required to shift the dynamic... Sausages and incentives: rewarding a resilient technology future. Why ‘thinking big’ is required to shift the dynamics of the technology market.

Creating the right organisational cul...

Creating the right organisational culture for cyber security. Calling cyber security professionals, culture specialis... Creating the right organisational culture for cyber security. Calling cyber security professionals, culture specialists and leaders to drive uptake of new Cyber security culture principles.

Most Viewed

From bugs to bypasses: adapting vulnerability disclosure ...

From bugs to bypasses: adapting vulnerability disclosure for AI safeguards. Exploring h... From bugs to bypasses: adapting vulnerability disclosure ...

Cyber Assessment Framework v4.0 released in response to g...

Cyber Assessment Framework v4.0 released in response to growing threat. Updates to the ... Cyber Assessment Framework v4.0 released in response to g...

Getting your organisation ready for Windows 11 upgrade be...

Getting your organisation ready for Windows 11 upgrade before Autumn 2025. Why you shou... Getting your organisation ready for Windows 11 upgrade be...

Trusting the tech: using password managers and passkeys t...

Trusting the tech: using password managers and passkeys to help you stay secure online.... Trusting the tech: using password managers and passkeys t...

Have you got what it takes to be a 'Cyber Advisor'?. We n...

Have you got what it takes to be a 'Cyber Advisor'?. We need more cyber professionals t... Have you got what it takes to be a 'Cyber Advisor'?. We n...

Sausages and incentives: rewarding a resilient technology...

Sausages and incentives: rewarding a resilient technology future. Why ‘thinking big’ is... Sausages and incentives: rewarding a resilient technology...

Creating the right organisational culture for cyber secur...

Creating the right organisational culture for cyber security. Calling cyber security pr... Creating the right organisational culture for cyber secur...

New ETSI standard protects AI systems from evolving cyber...

New ETSI standard protects AI systems from evolving cyber threats. The NCSC and DSIT wo... New ETSI standard protects AI systems from evolving cyber...

Facing the cyber threat behind the headlines. NCSC CEO ur...

Facing the cyber threat behind the headlines. NCSC CEO urges all businesses to face the... Facing the cyber threat behind the headlines. NCSC CEO ur...

Decommissioning assets. How to retire digital assets (suc...

Decommissioning assets. How to retire digital assets (such as data, software, or hardwa... Decommissioning assets. How to retire digital assets (suc...

Incidents impacting retailers – recommendations from the ...

Incidents impacting retailers – recommendations from the NCSC. A joint blog post by the... Incidents impacting retailers – recommendations from the ...

Software Code of Practice: building a secure digital futu...

Software Code of Practice: building a secure digital future. New voluntary code of prac... Software Code of Practice: building a secure digital futu...

Historical Trends

CyberFirst industries support CyberTV for students. Cyber security-themed videos, blogs and interviews from industry experts are supporting students and teachers.

CyberFirst industries support CyberTV for students. Cyber security-themed videos, blogs... CyberFirst industries support CyberTV for students. Cyber...

NCSC Feed

New guidance for practitioners supporting victims of 'domestic cyber crime'. The NCSC produces advice for practitioners working with victims who are being tracked, stalked, or virtually monitored.

New guidance for practitioners supporting victims of 'domestic cyber crime'. The NCSC p... New guidance for practitioners supporting victims of 'dom...

NCSC Feed

Accessibility as a cyber security priority. Want security that works better for people? Make it accessible.

Accessibility as a cyber security priority. Want security that works better for people?... Accessibility as a cyber security priority. Want security...

NCSC Feed

QR Codes - what's the real risk?. How safe is it to scan that QR code in the pub? Or in that email?.

QR Codes - what's the real risk?. How safe is it to scan that QR code in the pub? Or in... QR Codes - what's the real risk?. How safe is it to scan ...

NCSC Feed

Smart devices: new law helps citizens to choose secure products. Download the NCSC’s point-of-sale leaflet explaining how new PSTI regulation affects consumers and retailers.

Smart devices: new law helps citizens to choose secure products. Download the NCSC’s po... Smart devices: new law helps citizens to choose secure pr...

NCSC Feed

Telling users to ‘avoid clicking bad links’ still isn’t working. Why organisations should avoid ‘blame and fear’, and instead use technical measures to manage the threat from phishing.

Telling users to ‘avoid clicking bad links’ still isn’t working. Why organisations shou... Telling users to ‘avoid clicking bad links’ still isn’t w...

NCSC Feed

A decade of Cyber Essentials: the journey towards a safer digital future. The 10-year anniversary of Cyber Essentials is not just a celebration of past achievements but a call to action for the future.

A decade of Cyber Essentials: the journey towards a safer digital future. The 10-year a... A decade of Cyber Essentials: the journey towards a safer...

NCSC Feed

Helping banish malicious adverts – and drive a secure advertising ecosystem. If your br... Helping banish malicious adverts – and drive a secure adv...

NCSC Feed

Cyber Resilience Audit (CRA) scheme launches for assured CAF-based audits. NCSC-assured CRA service now offering Cyber Assessment Framework based audits and more applications invited from potential service providers.

Cyber Resilience Audit (CRA) scheme launches for assured CAF-based audits. NCSC-assured... Cyber Resilience Audit (CRA) scheme launches for assured ...

NCSC Feed

The threat from commercial cyber proliferation. Report informing readers about the threat to UK industry and society from commercial cyber tools and services.

The threat from commercial cyber proliferation. Report informing readers about the thre... The threat from commercial cyber proliferation. Report in...

NCSC Feed

Cyber Essentials: are there any alternative standards?. Can an equivalent cyber security standard deliver the same outcomes as the NCSC’s Cyber Essentials scheme?.

Cyber Essentials: are there any alternative standards?. Can an equivalent cyber securit... Cyber Essentials: are there any alternative standards?. C...

NCSC Feed

'PDNS for Schools' to provide cyber resilience for more institutions. The NCSC’s ‘Protective Domain Name Service for Schools’ scaled-up to protect a wider range of organisations.

'PDNS for Schools' to provide cyber resilience for more institutions. The NCSC’s ‘Prote... 'PDNS for Schools' to provide cyber resilience for more i...

NCSC Feed

Not all types of MFA are created equal. Our updated multi-factor authentication (MFA) guidance recommends organisations use techniques that give better protection against phishing attacks.

Not all types of MFA are created equal. Our updated multi-factor authentication (MFA) g... Not all types of MFA are created equal. Our updated multi...

NCSC Feed

How to talk to board members about cyber. New guidance helps CISOs communicate with Boards to improve oversight of cyber risk.

How to talk to board members about cyber. New guidance helps CISOs communicate with Boa... How to talk to board members about cyber. New guidance he...

NCSC Feed

Celebrating eight years of being the NCSC – a part of GCHQ. As Felicity Oswald hands over to the new NCSC CEO, she reflects on why cyber security and intelligence are so connected.

Celebrating eight years of being the NCSC – a part of GCHQ. As Felicity Oswald hands ov... Celebrating eight years of being the NCSC – a part of GCH...

NCSC Feed

Protective Monitoring for HMG ICT Systems (GPG 13). Please note that this document is out of date and is provided for historical reference only. It should not be used in the design and operation of new systems.

Protective Monitoring for HMG ICT Systems (GPG 13). Please note that this document is o... Protective Monitoring for HMG ICT Systems (GPG 13). Pleas...

NCSC Feed

SBOMs and the importance of inventory. Can a Software Bill of Materials (SBOM) provide organisations with better insight into their supply chains?.

SBOMs and the importance of inventory. Can a Software Bill of Materials (SBOM) provide ... SBOMs and the importance of inventory. Can a Software Bil...

NCSC Feed

Threats and key takeaways for the legal sector. New NCSC report outlines the growing threat to the legal sector, with recommendations to improve cyber resilience.

Threats and key takeaways for the legal sector. New NCSC report outlines the growing th... Threats and key takeaways for the legal sector. New NCSC ...

NCSC Feed

NCSC’s Cyber Advisor scheme milestone. Cyber Advisor scheme for small organisations welcomes its 100th advisor, but more still needed!.

NCSC’s Cyber Advisor scheme milestone. Cyber Advisor scheme for small organisations wel... NCSC’s Cyber Advisor scheme milestone. Cyber Advisor sche...

NCSC Feed

Digital twins: secure design and development. How existing NCSC guidance can assist those looking to develop and deploy ‘digital twins’.

Digital twins: secure design and development. How existing NCSC guidance can assist tho... Digital twins: secure design and development. How existin...

NCSC Feed

Cyber Resilience Audit scheme open to applications. A new NCSC scheme assuring providers of CAF-based audits is now open for potential members.

Cyber Resilience Audit scheme open to applications. A new NCSC scheme assuring provider... Cyber Resilience Audit scheme open to applications. A new...

NCSC Feed

Post-quantum cryptography: what comes next?. Jeremy B explains how the NCSC will help organisations plan their migration to PQC.

Post-quantum cryptography: what comes next?. Jeremy B explains how the NCSC will help o... Post-quantum cryptography: what comes next?. Jeremy B exp...

NCSC Feed

Navigating the different cyber services from the NCSC. If you don’t have the inhouse expertise to keep your organisation cyber secure, the NCSC offers services and tools to help organisations guard against commodity threats.

Navigating the different cyber services from the NCSC. If you don’t have the inhouse ex... Navigating the different cyber services from the NCSC. If...

NCSC Feed

Introducing Active Cyber Defence 2.0. ACD 2.0 aims to build the next generation of services in partnership with industry and academia.

Introducing Active Cyber Defence 2.0. ACD 2.0 aims to build the next generation of serv... Introducing Active Cyber Defence 2.0. ACD 2.0 aims to bui...

NCSC Feed

Building a nation-scale evidence base for cyber deception. The NCSC is inviting UK organisations to contribute evidence of cyber deception use cases and efficacy to support our long-term research goals.

Building a nation-scale evidence base for cyber deception. The NCSC is inviting UK orga... Building a nation-scale evidence base for cyber deception...

NCSC Feed

Looking back at the ballot – securing the general election. NCSC CEO Felicity Oswald shares reflections on keeping the 2024 General Election safe.

Looking back at the ballot – securing the general election. NCSC CEO Felicity Oswald sh... Looking back at the ballot – securing the general electio...

NCSC Feed

New cyber security training packages launched to manage supply chain risk. NCSC publishes free e-learning to help organisations manage the cyber security risks across their supply chains.

New cyber security training packages launched to manage supply chain risk. NCSC publish... New cyber security training packages launched to manage s...

NCSC Feed

Artificial Intelligence: 'call for views' on the cyber security of AI closes soon. Businesses, academia and international partners invited to respond to the UK government's ‘call for views’ on the security of AI.

Artificial Intelligence: 'call for views' on the cyber security of AI closes soon. Busi... Artificial Intelligence: 'call for views' on the cyber se...

NCSC Feed

New legislation will help counter the cyber threat to our essential services. The announcement of the Cyber Security and Resilience Bill is a landmark moment in tackling the growing threat to the UK's critical systems.

New legislation will help counter the cyber threat to our essential services. The annou... New legislation will help counter the cyber threat to our...

NCSC Feed

Using TLS to protect data. Recommended profiles to securely configure TLS for the most common versions and scenarios, with additional guidance for managing older versions.

Using TLS to protect data. Recommended profiles to securely configure TLS for the most ... Using TLS to protect data. Recommended profiles to secure...

NCSC Feed

"If you have knowledge, let others light their candles in it.". Why sharing lessons learned from cyber security incidents and ‘near misses’ will help everyone to improve.

"If you have knowledge, let others light their candles in it.". Why sharing lessons lea... "If you have knowledge, let others light their candles in...

NCSC Feed

Cyber Essentials 'Pathways': From experiment to proof of concept. We are encouraging large organisations to help us develop an alternative route to certification.

Cyber Essentials 'Pathways': From experiment to proof of concept. We are encouraging la... Cyber Essentials 'Pathways': From experiment to proof of ...

NCSC Feed

Raising the cyber resilience of software 'at scale'. New ‘Code of Practice for Software Vendors’ will ensure that security is fundamental to developing and distributing products and services.

Raising the cyber resilience of software 'at scale'. New ‘Code of Practice for Software... Raising the cyber resilience of software 'at scale'. New ...

NCSC Feed

Offline backups in an online world. How to protect your backups that are stored in the public cloud.

Offline backups in an online world. How to protect your backups that are stored in the ... Offline backups in an online world. How to protect your b...

NCSC Feed

Introducing PDNS for Schools. Launching the first phase rollout of a protective DNS service for schools.

Introducing PDNS for Schools. Launching the first phase rollout of a protective DNS ser... Introducing PDNS for Schools. Launching the first phase r...

NCSC Feed

Use of Russian technology products and services following the invasion of Ukraine. Cyber security – even in a time of global unrest – remains a balance of different risks. Ian Levy, the NCSC's Technical Director, explains why.

Use of Russian technology products and services following the invasion of Ukraine. Cybe... Use of Russian technology products and services following...

NCSC Feed

Machine learning security principles updated. Revised principles will help people make the right security decisions when developing systems with AI/ML components.

Machine learning security principles updated. Revised principles will help people make ... Machine learning security principles updated. Revised pri...

NCSC Feed

Business email compromise: new guidance to protect your organisation. How to disrupt targeted phishing attacks aimed at senior executives or budget holders.

Business email compromise: new guidance to protect your organisation. How to disrupt ta... Business email compromise: new guidance to protect your o...

NCSC Feed

Introducing the NCSC's ‘Share and Defend’ capability. Join the community of service providers helping to protect the UK from cyber attacks.

Introducing the NCSC's ‘Share and Defend’ capability. Join the community of service pro... Introducing the NCSC's ‘Share and Defend’ capability. Joi...

NCSC Feed

Decrypting diversity: Diversity and inclusion in cyber security report 2020. Joint report between the NCSC and KPMG UK is the first in a series to benchmark and track levels of diversity and inclusion in the cyber security industry.

Decrypting diversity: Diversity and inclusion in cyber security report 2020. Joint repo... Decrypting diversity: Diversity and inclusion in cyber se...

NCSC Feed

Decrypting diversity: Diversity and inclusion in cyber security report 2021. The 2nd joint report between the NCSC and KPMG UK benchmarks against the 2020 findings to gauge what progress has been made.

Decrypting diversity: Diversity and inclusion in cyber security report 2021. The 2nd jo... Decrypting diversity: Diversity and inclusion in cyber se...

NCSC Feed

Advanced Mobile Solutions (AMS) guidance trailer. Chris P explains how AMS will enable high-threat organisations to stay connected ‘on the go'.

Advanced Mobile Solutions (AMS) guidance trailer. Chris P explains how AMS will enable ... Advanced Mobile Solutions (AMS) guidance trailer. Chris P...

NCSC Feed

Video conferencing services: security guidance for organisations. Guidance to help you to choose, configure and deploy video conferencing services such as Zoom and Skype within your organisation.

Video conferencing services: security guidance for organisations. Guidance to help you ... Video conferencing services: security guidance for organi...

NCSC Feed

Cyber Assessment Framework 3.2. Latest version of the CAF reflects the increased threat to critical national infrastructure.

Cyber Assessment Framework 3.2. Latest version of the CAF reflects the increased threat... Cyber Assessment Framework 3.2. Latest version of the CAF...

NCSC Feed

"What's happened to my data?". Irrespective of whether the ransom is paid, a ransomware attack means organisations have lost control of their information.

"What's happened to my data?". Irrespective of whether the ransom is paid, a ransomware... "What's happened to my data?". Irrespective of whether th...

NCSC Feed

Pathways: exploring a new way to achieve Cyber Essentials certification. For large, complex firms struggling with the prescriptiveness of Cyber Essentials, ‘Pathways’ will provide a new route to certification.

Pathways: exploring a new way to achieve Cyber Essentials certification. For large, com... Pathways: exploring a new way to achieve Cyber Essentials...

NCSC Feed

Securing Office 365 with better configuration. How our Office 365 advisory and new security guidance from Microsoft can help protect your cloud services.

Securing Office 365 with better configuration. How our Office 365 advisory and new secu... Securing Office 365 with better configuration. How our Of...

NCSC Feed

Watch all the plenaries from CYBERUK 2024 live, and for free. Key talks from the UK government’s flagship cyber security event will be livestreamed from Birmingham’s ICC.

Watch all the plenaries from CYBERUK 2024 live, and for free. Key talks from the UK gov... Watch all the plenaries from CYBERUK 2024 live, and for f...

NCSC Feed

Interactive administration in the cloud: managing the risks. Tips to help you secure and reduce interactive access to your cloud infrastructure.

Interactive administration in the cloud: managing the risks. Tips to help you secure an... Interactive administration in the cloud: managing the ris...

NCSC Feed

Preparing for the long haul: the cyber threat from Russia. Although the UK has not experienced severe cyber attacks in relation to Russia’s invasion of Ukraine, now is not the time for complacency.

Preparing for the long haul: the cyber threat from Russia. Although the UK has not expe... Preparing for the long haul: the cyber threat from Russia...

NCSC Feed