Please note the information below from the National Cyber Security Centre (NCSC) about the CERT-UK Network Reporting (CNR) Service which, in case you are not aware, is another free NCSC tool.
This is available for any organisation on Cyber Security Information Sharing Partnership (CiSP), so unlike the Active Cyber Defence tools (which are only available for public sector bodies), the CNR service is for public & private sector bodies. NCSC promotes use of the service to CiSP members as another tool in an organisation’s defence armoury.
The CNR service scans for network abuse events on an organisation’s network, as well as vulnerable network services on an organisation’s Internet-facing services.
No infrastructure changes are required. An organisation just needs to be a member of CiSP to use the service, and then to provide its IP addresses/registered domain names, plus an up-to-date contact, which NCSC will send reports to, if we see any network abuse events or vulnerable network services on the organisation’s network.
An organisation can cease using the service at any time; however, we encourage CiSP members to use the service to help strengthen the overall cyber resilience of UK networks.
Information provided by Anna Lewis, Cyber Resilience Manager, Welsh Government, 0300 025 1948