Changeflow GovPing Cybersecurity Active Cyber Defence Programme - Sixth Year Report
Routine Notice Added Final

Active Cyber Defence Programme - Sixth Year Report

Favicon for www.ncsc.gov.uk NCSC UK Threat Reports
Published July 6th, 2023
Detected March 13th, 2026
Email

Summary

The UK's National Cyber Security Centre has published the sixth-year report on its Active Cyber Defence (ACD) programme. The report details findings on how the programme has protected the UK from cyber attacks since its launch in 2017.

View original document View source feed page

What changed

The National Cyber Security Centre (NCSC) has released its sixth-year report on the Active Cyber Defence (ACD) programme. This report, published on July 6, 2023, provides key findings and a full analysis of the programme's performance in its sixth year of operation. The ACD programme, launched in 2017, aims to automate protection against a significant proportion of commodity cyber attacks for the majority of UK citizens.

This document serves as an informational notice for cyber security professionals, public sector entities, and organisations of all sizes. It highlights the ongoing efforts and successes of the ACD programme. While no immediate compliance actions are mandated by this report, it provides valuable insights into the UK's cyber defence strategy and the effectiveness of automated protective measures. Regulated entities are encouraged to review the findings to understand the evolving cyber threat landscape and NCSC's approach to national cyber security.

Source document (simplified)

Report Download & print article PDF

ACD - The Sixth Year

Key findings and full report from the 6th year of the Active Cyber Defence (ACD) programme.

The aim of Active Cyber Defence (ACD) is to “Protect the majority of people in the UK from the majority of the harm caused by the majority of the cyber attacks the majority of the time.” It was launched in 2017 and continues to protect the UK, in a relatively automated way, from a significant proportion of commodity cyber attacks.

The full report and a summary from the sixth year of the NCSC's ACD programme can be found in the Downloads section of this page.

Downloads

  • Pdf
  • 1.16 MB

ACD The Sixth Year - full report

Full report of the findings from the sixth year of the NCSC's Active Cyber Defence programme.

  • Pdf
  • 592.21 KB

ACD The Sixth Year - summary of key findings

This document summarises some of the key findings from the sixth year of the NCSC's ACD programme.

Download & print article PDF Share Share Facebook LinkedIn X Copy Link

Published

6 July 2023

Written for

Cyber security professionals Public sector Large organisations Small & medium sized organisations

Was this article helpful?


Blog Post

12 Feb 2026

Can you help the NCSC with the next phase of EASM research?

Organisations with experience in external attack surface management can help us shape future ACD 2.0 services.
Information

2 Dec 2025

NCSC Proactive Notifications Service

A service that responsibly reports vulnerabilities to system owners to help them protect their services
Blog Post

6 Nov 2025

NCSC to retire Web Check and Mail Check

By 31 March 2026, organisations should have alternatives to Mail Check and Web Check in place.

Related changes

Favicon for www.find-tender.service.gov.uk Land Development Tender for Affordable Housing in Maidstone
Priority review Mar 14, 2026 Find a Tender - Latest Notices Trade Procurement
Favicon for www.find-tender.service.gov.uk Newark And Sherwood District Council Cinema Provision Award
Routine Mar 14, 2026 Find a Tender - Latest Notices Trade Procurement
Favicon for www.find-tender.service.gov.uk Northern Ireland Housing Executive - Response Maintenance Procurement
Priority review Mar 14, 2026 Find a Tender - Latest Notices Trade Procurement
Favicon for wid.cert-bund.de CPython Vulnerabilities Allow Remote Code Execution
Priority review Mar 13, 2026 CERT-Bund Security Advisories Vulnerability Alerts
Favicon for wid.cert-bund.de Vim Vulnerability Allows Code Execution (CVSS 6.6)
Priority review Mar 13, 2026 CERT-Bund Security Advisories Vulnerability Alerts
Favicon for wid.cert-bund.de FreeRDP Vulnerabilities - Remote Code Execution
Priority review Mar 13, 2026 CERT-Bund Security Advisories Vulnerability Alerts

Source

Favicon for www.ncsc.gov.uk
NCSC UK Threat Reports ncsc.gov.uk/api/1/services/v1/report-rss-feed.xml
Cybersecurity
Analysis generated by AI. Source diff and links are from the original.

Classification

Agency
Various UK Agencies
Published
July 6th, 2023
Instrument
Notice
Legal weight
Non-binding
Stage
Final
Change scope
Minor

Who this affects

Applies to
Cyber security professionals Public sector Large organisations Small & medium sized organisations
Geographic scope
UK

Taxonomy

Primary area
Cybersecurity
Operational domain
IT Security
Topics
National Security Government Technology

Browse Categories

Federal Courts 26 State Courts 91 Securities Regulation 6 Financial Regulation 43 Consumer Protection 5 Drug Safety 45 Data Protection 21 Competition 2 Attorneys General 3 Insurance Regulation 5 Trade & Export 36 Legislation 42 Energy Regulation 13 Environment 3 Labor & Employment 2 Tax 1

Get Cybersecurity alerts

Weekly digest. AI-summarized, no noise.

Free. Unsubscribe anytime.

Get alerts for this source

We'll email you when NCSC UK Threat Reports publishes new changes.

Free. Unsubscribe anytime.