Software Security Code of Practice - Assurance Principles and Claims (APCs)
Helps vendors measure how well they meet the Software Security Code of Practice, and suggests remedial actions should they fall short.
NCSC Feed
Ransomware: 'WannaCry' guidance for home users and small businesses
4 days 15 hours ago
Guidance for home users or small businesses who want to reduce the likelihood of being held to ransom by WannaCry (or other types of ransomware).
Ransomware: 'WannaCry' guidance for enterprise administrators
4 days 15 hours ago
Guidance for enterprise administrators who want to reduce the likelihood of being held to ransom by WannaCry (or other types of ransomware).
Introduction to logging for security purposes
4 days 15 hours ago
Laying the groundwork for incident readiness.
Cyber security for major events
4 days 15 hours ago
Assessing the cyber security needs of major events.
Software Code of Practice: building a secure digital future
5 days 19 hours ago
New voluntary code of practice for technology providers defines a market baseline for cyber security.
Incidents impacting retailers – recommendations from the NCSC
1 week ago
A joint blog post by the NCSC’s National Resilience Director, Jonathon Ellison, and Chief Technology Officer, Ollie Whitehouse.
Impact of AI on cyber threat from now to 2027
1 week 3 days ago
An NCSC assessment highlighting the impacts on cyber threat from AI developments between now and 2027.
Advanced Cryptography: new approaches to data privacy
2 weeks 3 days ago
A new NCSC paper discusses the suitability of emerging Advanced Cryptography techniques.
Building Web Check using PaaS
3 weeks 6 days ago
How Platform as a Service (PaaS) can make good security easier to achieve.
New guidance on securing HTTP-based APIs
1 month 1 week ago
Why it’s essential to secure your APIs to build trust with your customers and partners.
New online training helps board members to govern cyber risk
1 month 1 week ago
The NCSC’s CEO, Richard Horne on the new cyber governance resources giving Boards the tools they need to govern cyber security risks.
Protective DNS for the private sector
1 month 1 week ago
Advice on the selection and deployment of Protective Domain Name Systems (DNS).
Cyber Security and Resilience Policy Statement to strengthen regulation of critical sectors
1 month 1 week ago
New proposals will combat the growing threat to UK critical national infrastructure (CNI).
CyberFirst Girls Competition: a proud milestone and exciting future
1 month 2 weeks ago
The future of the CyberFirst Girls Competition and reflecting on brilliant progress.
Privileged access workstations: introducing our new set of principles
1 month 2 weeks ago
Principles-based guidance for organisations setting up a PAW solution.
Passkeys: they're not perfect but they're getting better
1 month 2 weeks ago
Passkeys are the future of authentication, offering enhanced security and convenience over passwords, but widespread adoption faces challenges that the NCSC is working to resolve.
Passkeys: the promise of a simpler and safer alternative to passwords
1 month 2 weeks ago
The merits of choosing passkeys over passwords to help keep your online accounts more secure, and explaining how the technology promises to do this
Timelines for migration to post-quantum cryptography
1 month 3 weeks ago
Activities which organisations must carry out to migrate safely to post-quantum cryptography in the coming years.
Setting direction for the UK's migration to post-quantum cryptography
1 month 3 weeks ago
Why the key milestones for PQC migration are part of building and maintaining good cyber security practice.
Checked
7 hours 28 minutes ago
This includes feeds from report, guidance and blog-post
NCSC Feed feed