1. Home
  2. Ncsc Feed

Buzz & Beyond: Ncsc feed

From bugs to bypasses: adapting vulnerability disclosure for AI safeguards. Exploring how far cyber security approaches can help mitigate risks in generative AI systems.
Trending

From bugs to bypasses: adapting vulnerability disclosure for AI safeguards. Exploring how far cyber security approaches can help mitigate risks in generative AI systems.

From bugs to bypasses: adapting vulnerability disclosure for AI safeguards. Exploring how far cyber security approaches can help mitigate risks in generative AI systems.
Source: NCSC Feed
Published: Sep, 02 2025 06:36

Exploring how far cyber security approaches can help mitigate risks in generative AI systems.

Continue reading...

Cyber Assessment Framework v4.0 relea...
Cyber Assessment Framework v4.0 released in response to growing threat. Updates to the CAF helps providers of essenti... Cyber Assessment Framework v4.0 released in response to growing threat. Updates to the CAF helps providers of essential services to better manage their cyber risks.
NCSC Feed
Getting your organisation ready for W...
Getting your organisation ready for Windows 11 upgrade before Autumn 2025. Why you should act now to ensure you meet ... Getting your organisation ready for Windows 11 upgrade before Autumn 2025. Why you should act now to ensure you meet the new hardware standards, and prioritise security.
NCSC Feed
Trusting the tech: using password man...
Trusting the tech: using password managers and passkeys to help you stay secure online. How today’s secure tools simp... Trusting the tech: using password managers and passkeys to help you stay secure online. How today’s secure tools simplify your digital life, and reduce login stress and password fatigue.
NCSC Feed
Have you got what it takes to be a 'C...
Have you got what it takes to be a 'Cyber Advisor'?. We need more cyber professionals to join our scheme providing ha... Have you got what it takes to be a 'Cyber Advisor'?. We need more cyber professionals to join our scheme providing hands-on advice to SMEs.
NCSC Feed
Sausages and incentives: rewarding a ...
Sausages and incentives: rewarding a resilient technology future. Why ‘thinking big’ is required to shift the dynamic... Sausages and incentives: rewarding a resilient technology future. Why ‘thinking big’ is required to shift the dynamics of the technology market.
NCSC Feed
Creating the right organisational cul...
Creating the right organisational culture for cyber security. Calling cyber security professionals, culture specialis... Creating the right organisational culture for cyber security. Calling cyber security professionals, culture specialists and leaders to drive uptake of new Cyber security culture principles.
NCSC Feed

Most Viewed

From bugs to bypasses: adapting vulnerability disclosure ...
From bugs to bypasses: adapting vulnerability disclosure for AI safeguards. Exploring h... From bugs to bypasses: adapting vulnerability disclosure ...
NCSC Feed
Cyber Assessment Framework v4.0 released in response to g...
Cyber Assessment Framework v4.0 released in response to growing threat. Updates to the ... Cyber Assessment Framework v4.0 released in response to g...
NCSC Feed
Getting your organisation ready for Windows 11 upgrade be...
Getting your organisation ready for Windows 11 upgrade before Autumn 2025. Why you shou... Getting your organisation ready for Windows 11 upgrade be...
NCSC Feed
Trusting the tech: using password managers and passkeys t...
Trusting the tech: using password managers and passkeys to help you stay secure online.... Trusting the tech: using password managers and passkeys t...
NCSC Feed
Have you got what it takes to be a 'Cyber Advisor'?. We n...
Have you got what it takes to be a 'Cyber Advisor'?. We need more cyber professionals t... Have you got what it takes to be a 'Cyber Advisor'?. We n...
NCSC Feed
Sausages and incentives: rewarding a resilient technology...
Sausages and incentives: rewarding a resilient technology future. Why ‘thinking big’ is... Sausages and incentives: rewarding a resilient technology...
NCSC Feed
Creating the right organisational culture for cyber secur...
Creating the right organisational culture for cyber security. Calling cyber security pr... Creating the right organisational culture for cyber secur...
NCSC Feed
New ETSI standard protects AI systems from evolving cyber...
New ETSI standard protects AI systems from evolving cyber threats. The NCSC and DSIT wo... New ETSI standard protects AI systems from evolving cyber...
NCSC Feed
Facing the cyber threat behind the headlines. NCSC CEO ur...
Facing the cyber threat behind the headlines. NCSC CEO urges all businesses to face the... Facing the cyber threat behind the headlines. NCSC CEO ur...
NCSC Feed
Decommissioning assets. How to retire digital assets (suc...
Decommissioning assets. How to retire digital assets (such as data, software, or hardwa... Decommissioning assets. How to retire digital assets (suc...
NCSC Feed
Incidents impacting retailers – recommendations from the ...
Incidents impacting retailers – recommendations from the NCSC. A joint blog post by the... Incidents impacting retailers – recommendations from the ...
NCSC Feed
Software Code of Practice: building a secure digital futu...
Software Code of Practice: building a secure digital future. New voluntary code of prac... Software Code of Practice: building a secure digital futu...
NCSC Feed

Historical Trends

Funded cyber certification helps small charities to provide legal aid to vulnerable citizens. How the funded Cyber Essentials Programme helped the ‘Law Centres Network’ protect its IT estate - and client data - from cyber attacks.
Funded cyber certification helps small charities to provide legal aid to vulnerable cit... Funded cyber certification helps small charities to provi...
NCSC Feed
SCADA 'in the cloud': new guidance for OT organisations. If migrating SCADA solutions to the cloud, cyber security must be a key consideration for operational technology organisations.
SCADA 'in the cloud': new guidance for OT organisations. If migrating SCADA solutions t... SCADA 'in the cloud': new guidance for OT organisations. ...
NCSC Feed
Products on your perimeter considered harmful (until proven otherwise). As attackers' tactics change, so must network defenders'.
Products on your perimeter considered harmful (until proven otherwise). As attackers' t... Products on your perimeter considered harmful (until prov...
NCSC Feed
Market incentives in the pursuit of resilient software and hardware. A new paper from the ONCD explores how metrics can influence markets to improve the cyber security ecosystem.
Market incentives in the pursuit of resilient software and hardware. A new paper from t... Market incentives in the pursuit of resilient software an...
NCSC Feed
Cyber security governance: the role of the board. As cyber threats evolve, boards must remain vigilant in cyber security governance.
Cyber security governance: the role of the board. As cyber threats evolve, boards must ... Cyber security governance: the role of the board. As cybe...
NCSC Feed
Protecting PBX from cyber attacks. Why small organisations need to manage their private branch exchange (PBX) telephone networks.
Protecting PBX from cyber attacks. Why small organisations need to manage their private... Protecting PBX from cyber attacks. Why small organisation...
NCSC Feed
From the cyber proliferation threat all the way to Pall Mall. The first dedicated conference on this topic – and an insight into the NCSC assessment work behind it.
From the cyber proliferation threat all the way to Pall Mall. The first dedicated confe... From the cyber proliferation threat all the way to Pall M...
NCSC Feed
Unleashing the power of cloud with containerisation. New NCSC guidance describes how organisations can make the most of containerisation.
Unleashing the power of cloud with containerisation. New NCSC guidance describes how or... Unleashing the power of cloud with containerisation. New ...
NCSC Feed
NCSC for Startups: Playing cyber criminals at their own game. CounterCraft's co-founder, Dan Brett, explains how they turn the tables so that social engineering can be used to protect organisations from attackers.
NCSC for Startups: Playing cyber criminals at their own game. CounterCraft's co-founder... NCSC for Startups: Playing cyber criminals at their own g...
NCSC Feed
Landing at the NCSC (glad I brought my towel). Ollie Whitehouse, the NCSC’s new Chief Technology Officer, outlines the cyber security challenges he’ll be prioritising.
Landing at the NCSC (glad I brought my towel). Ollie Whitehouse, the NCSC’s new Chief T... Landing at the NCSC (glad I brought my towel). Ollie Whit...
NCSC Feed
New guidance to help small organisations use online services more securely. How to set up online (or 'cloud') services so they're protected against common cyber attacks.
New guidance to help small organisations use online services more securely. How to set ... New guidance to help small organisations use online servi...
NCSC Feed
The logic behind three random words. Whilst not a password panacea, using 'three random words' is still better than enforcing arbitrary complexity requirements.
The logic behind three random words. Whilst not a password panacea, using 'three random... The logic behind three random words. Whilst not a passwor...
NCSC Feed
Researching the hard problems in hardware security. Introducing the next chapter of the NCSC research problem book, which aims to inspire research on the biggest impact topics in hardware cyber security.
Researching the hard problems in hardware security. Introducing the next chapter of the... Researching the hard problems in hardware security. Intro...
NCSC Feed
Announcing IASME as our second Delivery Partner for Cyber Incident Response Level 2. Both CIR Delivery Partners are now accepting enquiries and applications.
Announcing IASME as our second Delivery Partner for Cyber Incident Response Level 2. Bo... Announcing IASME as our second Delivery Partner for Cyber...
NCSC Feed
Introducing the guidelines for secure AI. New guidelines will help developers make informed decisions about the design, development, deployment and operation of their AI systems.
Introducing the guidelines for secure AI. New guidelines will help developers make info... Introducing the guidelines for secure AI. New guidelines ...
NCSC Feed
Thanking the vulnerability research community with NCSC Challenge Coins. Reflecting on the positive impact of the Vulnerability Reporting Service – and introducing something new for selected contributors.
Thanking the vulnerability research community with NCSC Challenge Coins. Reflecting on ... Thanking the vulnerability research community with NCSC C...
NCSC Feed
Migrating to post-quantum cryptography. New guidance from the NCSC helps system and risk owners plan their migration to post-quantum cryptography (PQC).
Migrating to post-quantum cryptography. New guidance from the NCSC helps system and ris... Migrating to post-quantum cryptography. New guidance from...
NCSC Feed
AIT fraud: what you need to know. SMS and telephone guidance updated to address the rise in Artificial Inflation of Traffic (AIT).
AIT fraud: what you need to know. SMS and telephone guidance updated to address the ris... AIT fraud: what you need to know. SMS and telephone guida...
NCSC Feed
Logging Made Easy with CISA. The US Cybersecurity and Infrastructure Security Agency have relaunched an updated version of LME.
Logging Made Easy with CISA. The US Cybersecurity and Infrastructure Security Agency ha... Logging Made Easy with CISA. The US Cybersecurity and Inf...
NCSC Feed
Our new principles to help make cloud backups more resilient. Introducing a new set of NCSC principles to strengthen the resilience of organisations' cloud backups from ransomware attackers.
Our new principles to help make cloud backups more resilient. Introducing a new set of ... Our new principles to help make cloud backups more resili...
NCSC Feed
Mastering your supply chain. A new collection of resources from the NCSC can help take your supply chain knowledge to the next level.
Mastering your supply chain. A new collection of resources from the NCSC can help take ... Mastering your supply chain. A new collection of resource...
NCSC Feed
Data-driven cyber: empowering government security with focused insights from data. How 'small but actionable' insights can improve behaviours and decision making.
Data-driven cyber: empowering government security with focused insights from data. How ... Data-driven cyber: empowering government security with fo...
NCSC Feed
Building on our history of cryptographic research. The NCSC has published new cryptographic research on robust cryptography – we explain its significance and how the ideas could support research to inform future global standards.
Building on our history of cryptographic research. The NCSC has published new cryptogra... Building on our history of cryptographic research. The NC...
NCSC Feed
Ransomware and the cyber crime ecosystem. A new white paper examines the rise of 'ransomware as a service' and extortion attacks.
Ransomware and the cyber crime ecosystem. A new white paper examines the rise of 'ranso... Ransomware and the cyber crime ecosystem. A new white pap...
NCSC Feed
Thinking about the security of AI systems. Why established cyber security principles are still important when developing or implementing machine learning models.
Thinking about the security of AI systems. Why established cyber security principles ar... Thinking about the security of AI systems. Why establishe...
NCSC Feed
Exercise caution when building off LLMs. Large Language Models are an exciting technology, but our understanding of them is still 'in beta'.
Exercise caution when building off LLMs. Large Language Models are an exciting technolo... Exercise caution when building off LLMs. Large Language M...
NCSC Feed
A problem shared is . . . in the research problem book. Introducing the new NCSC research problem book and find out how you can get involved.
A problem shared is . . . in the research problem book. Introducing the new NCSC resear... A problem shared is . . . in the research problem book. I...
NCSC Feed
Vulnerability scanning tools and services. Advice on the choice, implementation and use of automated vulnerability scanning tools for organisations of all sizes.
Vulnerability scanning tools and services. Advice on the choice, implementation and use... Vulnerability scanning tools and services. Advice on the ...
NCSC Feed
ChatGPT and large language models: what's the risk?. Do loose prompts* sink ships? Exploring the cyber security issues of ChatGPT and LLMs.
ChatGPT and large language models: what's the risk?. Do loose prompts* sink ships? Expl... ChatGPT and large language models: what's the risk?. Do l...
NCSC Feed
How CyberFish's founder got hooked on Cheltenham. Berta Pappenheim, CEO and co-founder of CyberFish, explains how the NCSC For Startups programme has transformed her professional and personal life.
How CyberFish's founder got hooked on Cheltenham. Berta Pappenheim, CEO and co-founder ... How CyberFish's founder got hooked on Cheltenham. Berta P...
NCSC Feed
Tackling the 'human factor' to transform cyber security behaviours. ThinkCyber's CEO Tim Ward reflects on the challenges that startups face when developing innovative products.
Tackling the 'human factor' to transform cyber security behaviours. ThinkCyber's CEO Ti... Tackling the 'human factor' to transform cyber security b...
NCSC Feed
Spotlight on shadow IT. New guidance to help organisations manage rogue devices and services within the enterprise.
Spotlight on shadow IT. New guidance to help organisations manage rogue devices and ser... Spotlight on shadow IT. New guidance to help organisation...
NCSC Feed
ACD - The Sixth Year. Key findings and full report from the 6th year of the Active Cyber Defence (ACD) programme.
ACD - The Sixth Year. Key findings and full report from the 6th year of the Active Cybe... ACD - The Sixth Year. Key findings and full report from t...
NCSC Feed
To SOC or not to SOC ?. For environments that are secure by design, a 'full-fat SOC' is not always required.
To SOC or not to SOC ?. For environments that are secure by design, a 'full-fat SOC' is... To SOC or not to SOC ?. For environments that are secure ...
NCSC Feed
Active Cyber Defence: Sixth annual report now available. New ACD services developed to help protect SMEs from the harms caused by cyber attacks.
Active Cyber Defence: Sixth annual report now available. New ACD services developed to ... Active Cyber Defence: Sixth annual report now available. ...
NCSC Feed
New techniques added to the NCSC’s ‘risk management toolbox’. Refreshed guidance published to help practitioners manage cyber risk.
New techniques added to the NCSC’s ‘risk management toolbox’. Refreshed guidance publis... New techniques added to the NCSC’s ‘risk management toolb...
NCSC Feed
Cyber Threat Report: UK Legal Sector. An updated report from the NCSC explaining how UK law firms - of all sizes - can protect themselves from common cyber threats.
Cyber Threat Report: UK Legal Sector. An updated report from the NCSC explaining how UK... Cyber Threat Report: UK Legal Sector. An updated report f...
NCSC Feed
Protecting how you administer cloud services. New advice on implementing high-risk and ‘break-glass’ accesses in cloud services.
Protecting how you administer cloud services. New advice on implementing high-risk and ... Protecting how you administer cloud services. New advice ...
NCSC Feed
Early Warning is joining MyNCSC. Early Warning, one of the NCSC’s flagship ACD services, will be soon be migrated to the MyNCSC platform. Here we explain the background and what users can expect.
Early Warning is joining MyNCSC. Early Warning, one of the NCSC’s flagship ACD services... Early Warning is joining MyNCSC. Early Warning, one of th...
NCSC Feed
Leveraging NCSC’s national insight to strengthen the fight against mobile threats. Traced Mobile Security co-founder Benedict Jones describes how 'NCSC for Startups' helped evolve his business.
Leveraging NCSC’s national insight to strengthen the fight against mobile threats. Trac... Leveraging NCSC’s national insight to strengthen the figh...
NCSC Feed
Why more transparency around cyber attacks is a good thing for everyone.
Why more transparency around cyber attacks is a good thing for everyone. Why more transparency around cyber attacks is a good thin...
NCSC Feed
Introducing Cyber Advisors. Launching a new Industry Assurance scheme aimed at helping the UK’s small organisations.
Introducing Cyber Advisors. Launching a new Industry Assurance scheme aimed at helping ... Introducing Cyber Advisors. Launching a new Industry Assu...
NCSC Feed
Protect your management interfaces. Why it's important to protect the interfaces used to manage your infrastructure, and some recommendations on how you might do this.
Protect your management interfaces. Why it's important to protect the interfaces used t... Protect your management interfaces. Why it's important to...
NCSC Feed
Zero trust migration: How will I know if I can remove my VPN?. In our third blog about migrating to a zero trust architecture, we consider the security properties of an Always On VPN, and the factors to consider when deciding if you no longer need one.
Zero trust migration: How will I know if I can remove my VPN?. In our third blog about ... Zero trust migration: How will I know if I can remove my ...
NCSC Feed
NCSC for Startups: an ecosystem-based approach to cyber security. Andrew Roughan, CEO of the NCSC’s innovation partner Plexal, explains why a whole-of-society approach is vital for cyber security innovation.
NCSC for Startups: an ecosystem-based approach to cyber security. Andrew Roughan, CEO o... NCSC for Startups: an ecosystem-based approach to cyber s...
NCSC Feed
Using MSPs to administer your cloud services. Andrew A explains what you must check before giving Managed Service Providers (MSPs) the keys to your kingdom.
Using MSPs to administer your cloud services. Andrew A explains what you must check bef... Using MSPs to administer your cloud services. Andrew A ex...
NCSC Feed
How the NCSC thinks about security architecture. Richard C explains how an understanding of vulnerabilities - and their exploitation - informs how the NCSC assesses the security of computer systems.
How the NCSC thinks about security architecture. Richard C explains how an understandin... How the NCSC thinks about security architecture. Richard ...
NCSC Feed
Principles and how they can help us with assurance. Explaining the forthcoming NCSC Technology Assurance Principles.
Principles and how they can help us with assurance. Explaining the forthcoming NCSC Tec... Principles and how they can help us with assurance. Expla...
NCSC Feed
NCSC For Startups: Vistalworks cracking down on illicit trade. Vicky Brock of Vistalworks describes how the 'NCSC For Startups' programme has helped her organisation develop solutions to tackle illicit online trade.
NCSC For Startups: Vistalworks cracking down on illicit trade. Vicky Brock of Vistalwor... NCSC For Startups: Vistalworks cracking down on illicit t...
NCSC Feed
NCSC for Startups: the case for collaboration. Saj Huq of Plexal explains why collaboration with the NCSC brings opportunities to the cyber security sector.
NCSC for Startups: the case for collaboration. Saj Huq of Plexal explains why collabora... NCSC for Startups: the case for collaboration. Saj Huq of...
NCSC Feed