"The vulnerability monitoring service has transformed how quickly we can spot and fix weaknesses before they're exploited so we can protect against that. Cyber-attacks aren't abstract threats - they delay NHS appointments, disrupt essential services, and put people's most sensitive data at risk. When public services struggle it's families, patients and frontline workers that feel it."
"VMS uses a combination of commercial and proprietary scanning tools to detect vulnerabilities and DNS configurations that could be compromised by attackers. The automated system constantly scans some 6,000 websites hosted by UK public sector agencies and is configured to check for around 1,000 different vulnerabilities."
The UK Department for Science, Innovation and Technology introduced a Vulnerability Monitoring System as part of its Blueprint for Modern Digital Government in January 2025. This automated system uses commercial and proprietary scanning tools to continuously monitor approximately 6,000 public sector websites for around 1,000 different vulnerabilities. DNS vulnerability identification and remediation time has decreased from an average of 50 days to just 8 days, representing an 84% improvement. The system has also reduced median remediation time for other issues from 53 days to 32 days, cut critical domain-related vulnerability backlogs by 75%, and resolved approximately 400 confirmed vulnerabilities monthly. Additionally, the government announced a new career pipeline to attract security professionals to the DSIT and National Cyber Security Centre.
#dns-vulnerability-management #automated-security-scanning #uk-public-sector-cybersecurity #vulnerability-remediation
Read at Theregister
Unable to calculate read time
Collection
[
|
...
]