National Cyber Security Centre
NCSC Takedown Service
Takedown services remove sites and block any attack infrastructure to limit the harm that cyber attacks can cause.
Takedown Services – an introduction
Malware and phishing sites cause harm to UK citizens and brands. Takedown services aim to reduce the return on investment for attackers by removing sites and blocking any attack infrastructure to limit the harm that these attacks can cause.
About the NCSC Takedown Service
The NCSC works with Netcraft to provide the Takedown Service. The NCSC focuses the Takedown Service predominantly on the "HMG brand" - which is very broadly defined. Departments automatically benefit from the service without having to do anything.
Eligibility for the NCSC Takedown Service
The Takedown Service covers UK Government brands and services. The NCSC provides this service centrally.
How the NCSC Takedown Service works
The service discovers attacks in a variety of ways:
- Spam and phishing feed scanning - it takes spam and phishing feeds and scans them for sites pretending to be UK Government brands
- Suspicious Email Reporting Service (SERs) submissions - organisations help augment the service by forwarding emails (including any attachments) or the URL of any site pretending to be theirs to email@example.com. SERs then automatically forwards these submissions to the Takedown service.
If applicable, the service then issues takedown notices to various hosting providers to get live attacks blocked. To further mitigate harm the service adds the sites to various safe browsing lists so modern browsers will not allow access.
Benefits of the NCSC Takedown Service
Benefits of the NCSC Takedown Service include:
- URLs associated with UK Government themed phishing attacks, which are often targeted at UK based users, are removed and hence the harm caused by these campaigns is reduced
- HMG brand is protected which in turn safeguards the UK's reputation
- the timely removal of malicious sites further reduces any potential harm
How to register for the NCSC Takedown Service
No registration is required for the Takedown Service. Central government organisations benefit automatically without having to sign up.
Latest News from
National Cyber Security Centre
NCSC and law enforcement encourage vigilance when shopping online this Christmas15/11/2022 13:33:00
Campaign launched to help keep online shoppers more secure in the run up to Christmas.
Festive shoppers urged to be Cyber Aware as figures reveal average online losses of £1,00015/11/2022 11:15:00
Cyber security and law enforcement partners join together to issue warning ahead of Black Friday and Christmas sales.
NCSC CEO delivers international speech on securing the Internet of Things and smart cities24/10/2022 11:15:00
Lindy Cameron outlined how the ‘secure by design’ approach is vital for managing IoT risks at Singapore International Cyber Week.
NCSC issues fresh guidance following recent rise in supply chain cyber attacks12/10/2022 13:43:00
Guidance to help organisations assess the cyber security of their suppliers.
Leading women in tech urge schoolgirls to take on the UK's flagship cyber security contest27/09/2022 11:15:00
Registration opens for the CyberFirst Girls competition 2023.
NCSC launches package of support to help retailers protect themselves and their customers online21/09/2022 15:15:00
New guidance for retailers on choosing the right authentication methods and removing malicious websites.
UK and allies expose Iranian state agency for exploiting cyber vulnerabilities for ransomware operations21/09/2022 09:15:00
Joint advisory highlights threat from cyber actors affiliated with Iran’s IRGC.
Her Majesty Queen Elizabeth II and GCHQ20/09/2022 09:05:00
We reflect on Her Majesty's long association with GCHQ and the NCSC.