NCSC (UK)

Passkeys are the more secure and user-friendly login method and should be the default authentication option for consumers.

New advisory highlights how to defend against attacker tactics believed to be used by China-linked actors to hide malicious cyber activity.

Organisations should map and baseline their edge device traffic, especially VPN and remote access connections, and adopt dynamic threat feed filtering that includes known covert network indicators.

Explaining the widespread shift in tactics, techniques and procedures (TTPs) towards networks of compromised infrastructure, and how to defend against it

SilentGlass, a plug-and-play device, actively blocks any unexpected or malicious HDMI and Display Port connections.

As the technology landscape develops, the definition of cyber security is expanding with it.

Russian cyber actor APT28 exploit vulnerable routers to hijack DNS, enabling adversary‑in‑the‑middle attacks and theft of passwords and authentication tokens.

New advisory warns cyber threat group APT28 have exploited vulnerable edge devices to support malicious operations.

The NCSC has issued actions for individuals at risk of targeted attacks against messaging apps.

The NCSC is encouraging UK organisations to mitigate an unauthenticated remote code execution vulnerability affecting F5 BIG-IP Access Policy Manager.

UK organisations encouraged to take immediate action to mitigate two recently disclosed vulnerabilities affecting Citrix NetScaler ADC and Citrix NetScaler Gateway.

Dr Richard Horne delivered a keynote about cyber risks and opportunities at the RSAC Conference in San Francisco

CYBERUK will be delivered by the NCSC and sponsors across four distinct tracks of activity: Resilience, Technology, Threat, and Ecosystem.

In response to the evolving events in the Middle East, the NCSC is advising that UK organisations review their cyber security posture.

Agencies strongly encourage immediate investigation of potential compromise of Cisco Catalyst SD-WAN.

Russian‑aligned hacktivist groups continue to target UK organisations with disruptive cyber attacks

The NCSC encourages local government and critical infrastructure operators to harden their ‘denial of service’ (DoS) defences

NCSC raises alert on “dangerous” misunderstanding of emergent class of vulnerability in generative artificial intelligence (AI) applications.

Online criminals foiled by National Cyber Security Centre’s Share and Defend service in partnership with industry.

The latest Stop! Think Fraud campaign provides practical advice to help individuals stay secure online