We have detected that you are using Internet Explorer to visit this website. Internet Explorer is now being phased out by Microsoft. As a result, NHS Digital no longer supports any version of Internet Explorer for our web-based products, as it involves considerable extra effort and expense, which cannot be justified from public funds. Some features on this site will not work. You should use a modern browser such as Edge, Chrome, Firefox, or Safari. If you have difficulty installing or accessing a different browser, contact your IT support team.
We issue cyber security threat notifications to health and care organisations, ranging from weekly threat bulletins to immediate high-severity alerts.
Threat intelligence bulletins and alerts
Threat intelligence bulletins are issued to users registered on the respond to an NHS cyber alert service in real time when a threat is assessed as high-severity, or weekly via email to anyone registered to receive the cyber alert bulletin.
Additionally, we provide specific, local threat alerts to individual organisations based on information identified via monitoring and threat protection services.
To keep updated on new cyber alerts subscribe to our cyber alerts RSS feed.
Every low, medium and high severity cyber alert that we publish will be included in this feed.
Utilise one of the publicly available RSS readers for your phone or internet browser.
Compromised credentials alerts
We proactively monitor the dark web, looking for potential breaches of NHS email addresses and other personal information.
When these credentials have been compromised, they are reported to specific organisations to take action.
In the event of a cyber security incident we can use SMS (text) messaging to provide information and updates to health and care leaders. Messages direct individuals to the very latest guidance and advice.