NCSC A.I CyberSecurity Scoring
NCSC
Company Information
Website:http://www.ncsc.gov.uk
Employees number:240
Number of followers:487,647
NAICS:92
Industry Type:Government Administration
Homepage:ncsc.gov.uk
NCSC Risk Score (AI oriented)
Between 650 and 699
NCSCGovernment Administration
Updated:
17/06/2026
17/06/2026
692/1000
Weak
B
NCSC Global Score (TPRM)
xxxx
NCSCGovernment Administration
Score locked

NCSCWeak
Current Score
692B (WEAK)
01000
4 incidents
-21 avg impact
Incident timeline with MITRE ATT&CK tactics, techniques, and mitigations.
JULY 2026
694
JUNE 2026
692
MAY 2026
710
Cyber Attack
04 May 2026 • NCSC
U.K. National Cyber Security Centre: Data breach in Alberta is a big warning for democracy
Global Cyberattack Disrupts Critical Services Across 150+ Countries
689
CRITICAL-21
NAT1777927020
Global Cyberattack Disrupts Critical Services Across 150+ Countries
A large-scale cyberattack has struck organizations worldwide, impacting over 150 countries, including the U.S., Canada, the U.K., and numerous nations across Europe, Asia, Africa, and Latin America. The attack, detected in early June 2024, exploited a critical vulnerability in a widely used enterprise software platform, allowing threat actors to deploy ransomware and disrupt operations in sectors ranging from healthcare and finance to government and energy.
Security researchers identified the primary vector as an unpatched flaw in a popular file-transfer tool, which was actively exploited before a patch was made available. The attack led to widespread data encryption, system outages, and operational halts, with some organizations reporting significant financial and reputational damage. While the full scope of the breach remains under investigation, early reports indicate that sensitive data including personal records, financial information, and proprietary business data may have been exfiltrated.
Government agencies, including the U.S. Cybersecurity and Infrastructure Security Agency (CISA) and the U.K.’s National Cyber Security Centre (NCSC), have issued advisories urging organizations to apply security updates immediately. The incident underscores the growing sophistication of cyber threats and the cascading effects of supply chain vulnerabilities on global infrastructure. Further details on attribution and long-term impact are expected as investigations continue.
INCIDENT DETAILS -
TYPE
IMPACT
DATA BREACH
REFERENCES
APRIL 2026
730
Cyber Attack
23 Apr 2026 • NCSC
UK’s National Cyber Security Centre and Volt Typhoon: Chinese hackers are using everyday devices to hack UK firms, warns watchdog
China-Linked Hackers Exploit Everyday Devices in Global Espionage Campaign
709
CRITICAL-21
NATNAT1776947160
China-Linked Hackers Exploit Everyday Devices in Global Espionage Campaign
The UK’s National Cyber Security Centre (NCSC), alongside cybersecurity agencies from nine other countries including the U.S., Australia, Canada, and Germany has issued a warning about a sophisticated cyber-espionage campaign tied to China. The threat involves the hijacking of common internet-connected devices, such as Wi-Fi routers, printers, and webcams, to create covert networks (or "botnets") for surveillance and data theft.
These botnets primarily target outdated or unpatched devices, using them as launchpads for attacks while obscuring the attackers' origins. The NCSC’s CEO, Richard Horne, described China’s cyber capabilities as "eye-watering," emphasizing that Beijing’s intelligence and military agencies now operate as a "peer competitor" in cyberspace. The shift in tactics leveraging compromised consumer and small office devices marks a significant evolution in China-linked cyber operations.
The advisory highlights that these covert networks are often maintained by private Chinese firms, with one example involving a company that infected 200,000 devices worldwide. A notable group, Volt Typhoon, has been linked to infiltrations of critical U.S. infrastructure, including rail, aviation, and water systems. The NCSC warns that multiple threat actors may share a single botnet, making attribution and defense more challenging.
To mitigate risks, the NCSC recommends organizations map their IT systems including connections to consumer broadband networks enforce multi-factor authentication for remote access, and restrict external device connections. While the guidance is aimed at businesses, the widespread use of compromised household devices underscores the broader threat landscape.
Earlier this year, Google disrupted a similar "residential proxy" network, demonstrating the global scale of these operations. The NCSC’s advisory, published on Thursday, confirms that China-backed hackers continue to refine their methods, posing a persistent and evolving risk to cybersecurity.
INCIDENT DETAILS -
TYPE
MOTIVATION
IMPACT
DATA BREACH
REFERENCES
MARCH 2026
729
FEBRUARY 2026
728
JANUARY 2026
727
DECEMBER 2025
747
Cyber Attack
27 Dec 2025 • NCSC
UK Critical National Infrastructure, UK Critical National Infrastructure and UK Critical National Infrastructure: Cyberattacks Are Hitting Essential Services Harder Than Ever, NCSC Warns
UK Critical Infrastructure Warned of Rising Cyber Threats
726
CRITICAL-21
NAT1771273670
UK Critical Infrastructure Warned of Rising Cyber Threats as NCSC Urges Immediate Action
The UK’s National Cyber Security Centre (NCSC) has issued a stark warning to operators of critical national infrastructure (CNI) including energy, water, and transport sectors urging them to bolster defenses against potentially devastating cyber attacks. The alert follows recent incidents in Poland, where coordinated attacks targeted a heat and power plant and renewable energy generators just after Christmas, with officials likening the disruption to physical arson.
Jonathon Ellison OBE, NCSC Director for National Resilience, emphasized that cyber threats to essential services are not hypothetical. In a LinkedIn post, he stated that UK operators must act now, rather than waiting for systems to fail. The warning comes as Parliament debates the Cyber Security and Resilience Bill, which aims to strengthen regulatory oversight in high-risk sectors like energy.
The NCSC defines a severe cyber threat as one capable of causing prolonged service outages, data destruction, or physical damage to industrial control systems risks that could cascade across industries, government, and public safety. With geopolitical tensions rising and threat actors growing more sophisticated, the agency warns that attacks on UK infrastructure are increasingly likely.
To mitigate risks, the NCSC outlines four key resilience measures:
1. Developing comprehensive response strategies tailored to escalating threats.
2. Enhancing situational awareness through monitoring and intelligence sharing.
3. Hardening systems to reduce vulnerabilities.
4. Ensuring operational continuity during disruptions.
The guidance targets leaders, risk managers, and cybersecurity teams, stressing the need to identify critical systems and supply chain dependencies. Resilience, the NCSC notes, is not about eliminating risk but managing it to maintain essential services under pressure.
Industry experts have also flagged outdated encryption as a hidden vulnerability. Michael Murphy, Deputy CTO at Arqit, warned that weak cryptographic practices such as obsolete algorithms or poor key management often go unnoticed in complex infrastructure. A thorough cryptographic audit, he argued, is essential for identifying and addressing these risks before they are exploited.
The NCSC’s warning underscores the urgency of proactive planning, as defensive measures cannot be improvised during an attack. While the threat landscape evolves, the agency asserts that robust resilience and recovery plans can significantly reduce both the likelihood and impact of successful breaches.
INCIDENT DETAILS -
TYPE
MOTIVATION
IMPACT
REFERENCES
NOVEMBER 2025
747
OCTOBER 2025
746
SEPTEMBER 2025
746
AUGUST 2025
745
APRIL 2025
768
Cyber Attack
01 Apr 2025 • NCSC
UK’s critical national infrastructure: UK critical infrastructure hit by 200 cyber incidents in a year, agency says
UK Critical Infrastructure Hit by Over 200 Cyberattacks in Past Year
742
CRITICAL-26
NAT1781714092
UK Critical Infrastructure Hit by Over 200 Cyberattacks in Past Year, Most Linked to State Actors
The UK’s critical national infrastructure faced more than 200 cyber incidents in the past year, with state-linked adversaries responsible for three-quarters of the attacks, according to the National Cyber Security Centre (NCSC). Richard Horne, the NCSC’s chief executive, identified Russia, China, and Iran as the primary hostile states targeting systems underpinning the UK’s nuclear deterrent, power plants, hospitals, and airports.
Horne described the cyber threat landscape as an ongoing contest with capable adversaries, comparing it to a dynamic game played across a broad field rather than a confined battle. He warned that advances in AI could accelerate risks, with 2028 projected as a critical year for emerging threats. While AI-enabled attacks such as those posed by Anthropic’s Claude Mythos model have raised concerns, most breaches still stem from well-known vulnerabilities like weak authentication and unpatched systems.
The NCSC emphasized the need for organizations to prioritize cybersecurity fundamentals, including rapid recovery from attacks, as unaddressed vulnerabilities could be exploited in future conflicts. Horne’s remarks followed earlier warnings from government officials, including former Chancellor of the Duchy of Lancaster Pat McFadden, who highlighted Russia’s targeting of UK media, telecoms, political institutions, and energy infrastructure, with potential risks to power grids.
In April, the NCSC also recommended that consumers transition from passwords to passkeys a more secure, device-stored authentication method to mitigate modern cyber threats. The agency’s warnings align with broader concerns from UK intelligence, including MI6, which has characterized the current security environment as existing in a "space between peace and war" amid rising tensions with Russia.
INCIDENT DETAILS -
TYPE
MOTIVATION
IMPACT
REFERENCES
Frequently Asked Questions
?
What is the current A.I Rankiteo Cyber Score for NCSC ??
What was NCSC's A.I Rankiteo Cyber Score in June 2026 ??
What was NCSC's A.I Rankiteo Cyber Score in May 2026 ??
What was NCSC's A.I Rankiteo Cyber Score in April 2026 ??
What was NCSC's A.I Rankiteo Cyber Score in March 2026 ??
What was NCSC's A.I Rankiteo Cyber Score in February 2026 ??
What was NCSC's A.I Rankiteo Cyber Score in January 2026 ??
What was NCSC's A.I Rankiteo Cyber Score in December 2025 ??
What was NCSC's A.I Rankiteo Cyber Score in November 2025 ??
What was NCSC's A.I Rankiteo Cyber Score in October 2025 ??
What was NCSC's A.I Rankiteo Cyber Score in September 2025 ??
What was NCSC's A.I Rankiteo Cyber Score in August 2025 ??
What is the average per-incident point impact on NCSC's A.I Rankiteo Cyber Score over the past 12 months ??
Where can I access detailed records of all cyber incidents associated with NCSC ??
Where can I find a summary of the A.I Rankiteo Risk Scoring methodology ??
Where can I view NCSC's profile page on Rankiteo ??
How accurate is the A.I Rankiteo Risk Scoring methodology ?