Government crest UK Ministry of Housing, Communities and Local Government (MHCLG)

Go to Local Digital homepageALPHA

Laying the foundations for better local public services

Resource

Vulnerability Reporting Service (VRS)

The VRS is provided by the Government Cyber Coordination Centre (GC3) and delivered through the HackerOne platform. It enables security researchers to find and report vulnerabilities in government systems, including council websites and services.

When a vulnerability is reported, submissions are triaged, tested, confirmed and categorised by GC3.

Register for the VRS 

Vulnerability Monitoring Service (VMS)

The VMS is provided by the Government Digital Service (GDS). It helps UK public sector organisations identify and respond to security vulnerabilities in their internet-facing digital services. This service was previously known as Extended Monitoring.

Find out more and register for the VMS

If your council uses My NCSC, you can now add the VMS to your dashboard.

NCSC Early Warning

The NCSC provides a free service to organisations to inform of threats against your network. Early Warning helps organisations investigate cyber attacks on their network by notifying them of malicious activity that has been detected in information feeds and is designed to compliment your existing security controls. Early Warning is open to all UK organisations who hold a static IP address or domain name.

Find out more about the NCSC Early Warning 

Proactive Notifications Service

The Proactive Notifications Service informs organisations when the NCSC becomes aware of publicly visible vulnerabilities affecting their systems, using open-source and third-party data.

Find out more about the NCSC Proactive Notifications Service

Check your cyber security

An online tool that checks public-facing systems for common cyber security issues.

It can be used without deploying software or integrating tooling.

Check your cyber security

Suspicious email reporting service

Staff can report suspected phishing emails by forwarding them to: [email protected]

This supports national analysis and takedown of malicious campaigns.

Report a suspicious website

Exercise in a Box (NCSC)

Exercise in a Box provides free, scenario-based cyber exercises to test organisational preparedness and incident response.

Find out more about Exercise in a Box

DNS Check

DNS Check monitors public-sector domains for DNS and domain-related security issues.

Find out more about the DNS Check 

Security Information and Event Management (SIEM) integration

Findings from DNS Check and the VMS can be integrated into SIEM tools.

Access the SIEM integration tools

Zone file sharing

Zone file sharing enables comprehensive monitoring of all domains and subdomains associated with an organisation.

Find out more about cyber and domains protection