The UK’s NCSC has launched a pilot of Proactive Notifications to identify and advise organizations on unpatched vulnerabilities using external internet scanning, with recommendations emailed from Netcraft. This service is part of a layered security approach and complements the Early Warning service, which monitors active threats; however, organizations should not rely solely on these tools for security. #NCSC #ProactiveNotifications #Netcraft #EarlyWarning
Keypoints
- The NCSC’s Proactive Notifications service scans external systems to detect vulnerabilities in UK organizations.
- The service provides software update recommendations based on publicly available information and internet scans.
- Emails from the service come from netcraft.com and do not contain attachments or request personal data.
- The pilot covers UK domains and IP addresses but is not comprehensive for all vulnerabilities.
- The NCSC recommends organizations also sign up for the more advanced ‘Early Warning’ service for broader threat detection.