U.K. government scans all internet devices hosted in the country for bugs

Share post:

The United Kingdom’s National Cyber Security Centre (NCSC), the government agency leading the country’s cybersecurity mission, has launched a program to scan all internet-connected devices for known vulnerabilities to assess how well their organizations are prepared for a potential cyberattack.

The government agency has specified a specific domain and IP address from which all scan requests will originate, and the data will be logged for device and bug information each time. This information will be used to analyze and understand their defense capabilities. The agency also intends to secure these devices and notify their owners of vulnerabilities discovered.

The primary goal of this program is to collect data on how well their local businesses are protected. According to the agency, these scans are similar to the detection of vulnerabilities by private cybersecurity companies and become more complex over time, which would allow the agency to provide further information at the CYBERUK conference scheduled for April next year.

As the source of the scan requests, the authority cited their IP addresses – 18.171.7.246 and 35.177.10.231, as well as the domain – scanner.scanning.service.ncsc.gov.uk – as the source of the scanning requests.

As we prepare for mass scanning, anyone can email the agency at scanning @ncsc.gov.uk to request that certain IP addresses be excluded from scanning.

“As part of the NCSC’s mission to make the UK the safest place to live and do business online, we are building a data-driven view of ‘the vulnerability of the UK’.” reads the post published by the Agency.

“These activities cover any internet-accessible system that is hosted within the UK and vulnerabilities that are common or particularly important due to their high impact. The NCSC uses the data we have collected to create an overview of the UK’s exposure to vulnerabilities following their disclosure and track their remediation over time.”

The sources for this piece include an article in BleepingComputer.

SUBSCRIBE NOW

Related articles

Hackers Plant False Memories in ChatGPT to Steal User Data

A security researcher has uncovered a vulnerability in ChatGPT that could allow hackers to store false information and...

“Octo2” Trojan Targets Bank Accounts by Posing as VPN or Chrome Apps on Android

A new malware variant called “Octo2” is spreading across Android devices by posing as popular apps like NordVPN...

Evilginx – Open source tool can bypass Multi-Factor Authentication (MFA)

Security vendor Abnormal Security is reporting a new cybersecurity tool that is gaining traction among cybercriminals. The tool,...

Kaspersky’s exit from US market frightens some customers

Kaspersky, the Russian cybersecurity firm, has unexpectedly removed its antivirus software from U.S. customers' computers, replacing it with...

Become a member

New, Relevant Tech Stories. Our article selection is done by industry professionals. Our writers summarize them to give you the key takeaways