National Cyber Security Centre
NCSC Takedown Service
Takedown services remove sites and block any attack infrastructure to limit the harm that cyber attacks can cause.
Takedown Services – an introduction
Malware and phishing sites cause harm to UK citizens and brands. Takedown services aim to reduce the return on investment for attackers by removing sites and blocking any attack infrastructure to limit the harm that these attacks can cause.
About the NCSC Takedown Service
The NCSC works with Netcraft to provide the Takedown Service. The NCSC focuses the Takedown Service predominantly on the "HMG brand" - which is very broadly defined. Departments automatically benefit from the service without having to do anything.
Eligibility for the NCSC Takedown Service
The Takedown Service covers UK Government brands and services. The NCSC provides this service centrally.
How the NCSC Takedown Service works
The service discovers attacks in a variety of ways:
- Spam and phishing feed scanning - it takes spam and phishing feeds and scans them for sites pretending to be UK Government brands
- Suspicious Email Reporting Service (SERs) submissions - organisations help augment the service by forwarding emails (including any attachments) or the URL of any site pretending to be theirs to email@example.com. SERs then automatically forwards these submissions to the Takedown service.
If applicable, the service then issues takedown notices to various hosting providers to get live attacks blocked. To further mitigate harm the service adds the sites to various safe browsing lists so modern browsers will not allow access.
Benefits of the NCSC Takedown Service
Benefits of the NCSC Takedown Service include:
- URLs associated with UK Government themed phishing attacks, which are often targeted at UK based users, are removed and hence the harm caused by these campaigns is reduced
- HMG brand is protected which in turn safeguards the UK's reputation
- the timely removal of malicious sites further reduces any potential harm
How to register for the NCSC Takedown Service
No registration is required for the Takedown Service. Central government organisations benefit automatically without having to sign up.
Latest News from
National Cyber Security Centre
UK’s tech innovators urged to join fight against ransomware threat21/01/2022 11:15:00
Opportunity for cyber security startups with ideas to protect small businesses to work with the NCSC's cyber security experts.
Big brands urged to 'scam-proof' messages to public19/01/2022 13:05:00
The NCSC launches new guidance for organisations on securely communicating with customers via SMS and phone calls.
NCSC joins US partners to promote understanding and mitigation of Russian state-sponsored cyber threats13/01/2022 11:15:00
The NCSC supports CISA, FBI, and NSA advice in understanding and countering Russian cyber threats.
Public urged to protect themselves from online sales scams27/12/2021 12:12:00
Yesterday (26 December), the government urged the public to protect themselves from online sales scams through five actionable steps.
Government publishes blueprint to protect UK from cyber threats15/12/2021 15:10:00
National Cyber Strategy sets out how government will protect and promote UK interests in rapidly evolving online world
Seasonal scam warning for last minute Christmas shoppers14/12/2021 13:15:00
The NCSC urge last minute Christmas shoppers to stay safe online by following best practice guidance.
Four more tech innovators join NCSC for Startups07/12/2021 09:10:00
Pioneering tech companies will benefit from NCSC’s expertise and insights by joining the programme.
Update to the Cyber Essentials technical controls30/11/2021 16:25:00
In January 2022, the NCSC will introduce the biggest update to Cyber Essentials technical controls since its launch.