Open sourcing MailCheck
The NCSC has open sourced the code behind MailCheck - one of our Active Cyber Defence projects.
NCSC Feed
Spray you, spray me: defending against password spraying attacks
2 years 10 months ago
Andy P summarises how organisations can protect users' accounts from password spraying.
NCSC IT: Installing software updates without breaking things
2 years 10 months ago
Andy P explains how the NCSC rolls out software updates without delays.
Firmware bugs are like buses
2 years 10 months ago
Intel's report this week of security vulnerabilities emphasises the importance of automating firmware updates.
Automating UEFI Firmware Updates
2 years 10 months ago
Discussing the state of UEFI firmware running on Windows laptops.
NCSC IT: MDM products - which one is best?
2 years 10 months ago
In part 3, we discuss why there is no one right answer to "What is the best MDM product?", as we found when building our own IT system.
NCSC IT: The architecture behind NCSC's IT system
2 years 10 months ago
A look at the high-level design of the NCSC's new IT system, including the single sign-on architecture, our initial end user device choices, and how we tackled the captive portal problem.
Firmware II: Status check
2 years 10 months ago
Initial research shows firmware frequently out of date.
Getting a grip on firmware
2 years 10 months ago
Investigating the security of firmware and why this often overlooked component should not be ignored.
Cyber Schools Hub: local success, national impact
2 years 10 months ago
Work from schools and companies paying dividends in the number and diversity of pupils taking up computer science.
Reaching out to the next generation of Cyber Sprinters
2 years 10 months ago
The NCSC's first 'Outreach' event welcomes pupils from Carlton Primary School.
Using secure messaging, voice and collaboration apps
2 years 10 months ago
What organisations should think about before choosing apps for secure communications and collaboration...
The Technology Assurance principles
3 years ago
Covering the ‘Product development', 'Design and functionality' and ‘Though-life’ aspects of product assurance.
CCP scheme to be run by the UK Cyber Security Council
3 years ago
The NCSC hands over administration of the Certified Cyber Professional scheme, with details to be announced at CYBERUK 2022.
Malware analysis report on SparrowDoor malware
3 years 1 month ago
A technical analysis of a new variant of the SparrowDoor malware.
Multi-factor authentication for online services
3 years 2 months ago
Advice for organisations on implementing multi-factor authentication (or 2-step verification) to protect against password guessing and theft on online services.
Common Cyber Attacks: Reducing the Impact
3 years 2 months ago
This white paper explains how basic security controls can protect organisations from the most common cyber attacks.
'Transaction monitoring' & 'Building and operating a secure online service' guidance published
3 years 3 months ago
Two new pieces of NCSC guidance replace Good Practice Guides 43 and 53.
We think Cyber Essentials is, well, still essential ...
3 years 4 months ago
...and that's why we are making some changes. Anne W summarises what they are, and explains the thinking behind them.
Zero Trust migration: where do I start?
3 years 5 months ago
How to start the journey to zero trust architecture once you have decided it meets your business requirements.
Checked
1 hour 16 minutes ago
This includes feeds from report, guidance and blog-post
NCSC Feed feed