News

• Posted January 11, 2024
• Technical Advisories
• Cyber Security Alerts

This Cyber Security Alert concerns two zero-day CVEs affecting Ivanti Connect Secure. The NCSC is aware of public reporting of the active exploitation in the wild from early December 2023.

• Posted December 15, 2023
• Technical Advisories
• Cyber Security Alerts

This Cyber Security Alert concerns a CVE affecting Apache Struts 2. The NCSC is aware of public reporting of the active exploitation and a proof of concept.

• Posted December 08, 2023
• Technical Advisories

New Zealand’s National Cyber Security Centre (NCSC) has issued a joint advisory highlighting Russian state cyber actors’ global spear-phishing campaigns, and providing information on the actors’ tactics, techniques and procedures.  

• Posted December 07, 2023
• Technical Advisories

The NCSC and CERT NZ have issued a joint advisory with international partners titled The Case for Memory Safe Roadmaps: Why Both C-Suite Executives and Technical Experts Need to Take Memory Safe Coding Seriously.

• Posted November 28, 2023
• Technical Advisories
• Cyber Security Alerts

This Cyber Security Alert concerns three high-severity CVEs affecting ownCloud, an open-source software product for sharing and syncing of files in distributed and federated enterprise scenarios.

• Posted November 28, 2023
• Technical Advisories

The NCSC has joined agencies from 17 countries to release guidance that will help artificial intelligence (AI) developers to bake-in cyber security from the outset.