News

• Posted April 16, 2024
• Technical Advisories

The National Cyber Security Centre has today released joint cyber security guidance regarding deploying AI systems securely, alongside international partners.

• Posted March 20, 2024
• Technical Advisories
• Security Advisories

The NCSC and international partners are publishing a fact sheet relating to the cyber actor 'Volt Typhoon' specifically for critical national infrastructure leaders so they can better secure their assets against this activity. 

• Posted February 27, 2024
• Cyber Security Alerts
• Technical Advisories

An advisory published by the UK’s National Cyber Security Centre (NCSC UK) details recent tactics, techniques and procedures (TTPs) of the group commonly known as APT29, also known as Midnight Blizzard, the Dukes or Cozy Bear.

• Posted February 22, 2024
• Cyber Security Alerts
• Technical Advisories

The NCSC would like to draw your attention to two CVEs affecting all versions of ConnectWise ScreenConnect before 23.9.8. The NCSC is aware of open-source reporting of active exploitation and a proof of concept.

• Posted February 19, 2024
• Cyber Security Alerts
• Technical Advisories

The NCSC would like to draw your attention to two critical zero-day vulnerabilities affecting Microsoft products: CVE-2024-21410 affecting Exchange Server and CVE-2024-21413 affecting Outlook.

• Posted February 09, 2024
• Cyber Security Alerts
• Technical Advisories

The NCSC would like to draw your attention to the vulnerabilities CVE-2024-21762 and CVE-2024-23113 affecting FortiOS SSL VPN. Fortinet is aware of potential exploitation of CVE-2024-21762 in the wild.