Category: Gov/ISAC Feeds

Cyber security – even in a time of global unrest – remains a balance of different risks. Ian Levy, the NCSC’s Technical Director, explains why. – Read More – NCSC Feed 

NCSC Technical Director Dr Ian Levy explains the technical impact of the recent US sanctions on the security of Huawei equipment in the UK. – Read More – NCSC Feed 

The NCSC’s technical director outlines the challenges that TLS 1.3 presents for enterprise security. – Read More – NCSC Feed 

On March 19, the Cyber Threat Alert Level was evaluated and is remaining at Blue (Guarded) due to multiple vulnerabilities in Santesoft and Apache products. On March 14, the MS-ISAC released an advisory for multiple vulnerabilities in Sante PACS Server, the most severe of which could allow for remote code execution. On March 18, the MS-ISAC released an advisory for...

Why the key milestones for PQC migration are part of building and maintaining good cyber security practice. – Read More – NCSC Feed 

Activities which organisations must carry out to migrate safely to post-quantum cryptography in the coming years. – Read More – NCSC Feed 

Applying patches may be a basic security principle, but that doesn’t mean it’s always easy to do in practice. – Read More – NCSC Feed 

…or ‘Why do people leave sensitive data in unprotected AWS S3 buckets?’ – Read More – NCSC Feed 

Why established cyber security principles are still important when developing or implementing machine learning models. – Read More – NCSC Feed 

Whilst not a password panacea, using ‘three random words’ is still better than enforcing arbitrary complexity requirements. – Read More – NCSC Feed 

By exploiting cloud services, organisations no longer have to choose between ‘more security’ and ‘better usability’. – Read More – NCSC Feed 

Why the NCSC decided to advise against this long-established security guideline. – Read More – NCSC Feed 

By exploiting cloud services, organisations no longer have to choose between ‘more security’ and ‘better usability’. – Read More – NCSC Feed 

Reflecting on the positive impact of the Vulnerability Reporting Service – and introducing something new for selected contributors. – Read More – NCSC Feed 

Latest version of the CAF focusses on clarification and consistency between areas of the CAF. – Read More – NCSC Feed 

New guidance to help organisations manage rogue devices and services within the enterprise. – Read More – NCSC Feed 

With 5G set to transform mobile services, Ian Levy explains how the UK has approached telecoms security, and what that means for the future. – Read More – NCSC Feed 

Questions to ask your suppliers that will help you gain confidence in their cyber security. – Read More – NCSC Feed 

Introducing the next chapter of the NCSC research problem book, which aims to inspire research on the biggest impact topics in hardware cyber security. – Read More – NCSC Feed 

Discover the Research Institute in Trustworthy Inter-connected Cyber-physical Systems. – Read More – NCSC Feed 

New advice on implementing high-risk and ‘break-glass’ accesses in cloud services. – Read More – NCSC Feed 

Why it’s important to protect the interfaces used to manage your infrastructure, and some recommendations on how you might do this. – Read More – NCSC Feed 

Jeremy B explains how the NCSC will help organisations plan their migration to PQC. – Read More – NCSC Feed 

Although the UK has not experienced severe cyber attacks in relation to Russia’s invasion of Ukraine, now is not the time for complacency. – Read More – NCSC Feed 

Explaining the forthcoming NCSC Technology Assurance Principles. – Read More – NCSC Feed 

As attackers’ tactics change, so must network defenders’. – Read More – NCSC Feed 

Unparalleled access to skilled users transformed Rebellion Defence’s product roadmap. – Read More – NCSC Feed 

We caught up with George Brown, founder of PORGiESOFT, about his first few weeks in NCSC For Startups… – Read More – NCSC Feed 

Saj Huq of Plexal explains why collaboration with the NCSC brings opportunities to the cyber security sector. – Read More – NCSC Feed 

How startups can make the most of their time when pitching to cyber security experts. – Read More – NCSC Feed 

New guidance from the NCSC helps system and risk owners plan their migration to post-quantum cryptography (PQC). – Read More – NCSC Feed 

The ‘Motivating Jenny’ project is helping to change the conversation about security in software development. – Read More – NCSC Feed 

Avoiding common problems when moving to the cloud. – Read More – NCSC Feed 

Why trying to avoid trusting the KMS doesn’t make sense (and other common misconceptions). – Read More – NCSC Feed 

Advice for board members of medium to large organisations that are at risk from the Apache Log4j vulnerability. – Read More – NCSC Feed 

NCSC CEO Felicity Oswald shares reflections on keeping the 2024 General Election safe. – Read More – NCSC Feed 

What you need to know before buying artificially intelligent security products – Read More – NCSC Feed 

Launching a new Industry Assurance scheme aimed at helping the UK’s small organisations. – Read More – NCSC Feed 

The first dedicated conference on this topic – and an insight into the NCSC assessment work behind it. – Read More – NCSC Feed