The UK NCSC has announced that it’s scanning all Internet-exposed devices hosted in the UK. The NCSC initiative is part of a comprehensive approach to securing external assets that are often overlooked in remediation plans dedicated to addressing vulnerabilities.

Already in January, the NCSC made available on Github a bunch of NMAP scripts to help organisations identify their internal vulnerabilities on their own network. With these two tools combined, UK-based organisations have access to a first level of information, which they will then have to process in a prioritisation process in order to be efficient and focus their efforts on the important elements.