News

• Posted March 26, 2024
• Media Releases

In August 2021, the Government Communications Security Bureau’s (GCSB) National Cyber Security Centre (NCSC) became aware of malicious cyber activity affecting the Parliamentary Counsel Office (PCO) and the Parliamentary Service.

• Posted March 20, 2024
• Technical Advisories
• Security Advisories

The NCSC and international partners are publishing a fact sheet relating to the cyber actor 'Volt Typhoon' specifically for critical national infrastructure leaders so they can better secure their assets against this activity. 

• Posted March 01, 2024
• Technical Advisories

The NCSC and CERT NZ have today joined international partners to release a cyber security advisory in response to the active exploitation of multiple vulnerabilities within Ivanti Connect Secure and Ivanti Policy Secure gateways.

• Posted February 28, 2024
• NZISM Updates

A new version of the New Zealand Information Security Manual (NZISM) has been released.

• Posted February 27, 2024
• Technical Advisories
• Cyber Security Alerts

An advisory published by the UK’s National Cyber Security Centre (NCSC UK) details recent tactics, techniques and procedures (TTPs) of the group commonly known as APT29, also known as Midnight Blizzard, the Dukes or Cozy Bear.

• Posted February 22, 2024
• Technical Advisories
• Cyber Security Alerts

The NCSC would like to draw your attention to two CVEs affecting all versions of ConnectWise ScreenConnect before 23.9.8. The NCSC is aware of open-source reporting of active exploitation and a proof of concept.