Reporting a cyber security incident

Fraud and Cyber Crime. If you are reporting fraud or cyber crime, please refer to the Action Fraud website.

GDPR. If you have been subject to a personal data breach that is required to be reported under the GDPR, please contact the ICO (Information Commissioner's Office). If there is malicious cyber activity related to this which you wish to report (either for information or for action), please fill in the form below.

NIS Directive. If you are an Operator of Essential Services (OES) under the NIS Directive, please use the form below in conjunction with reporting to your Competent Authority (CA). This is applicable for any cyber incident which you feel requires NCSC's support (for action) or is for wider interest (for information).

All submissions are useful and will aid the NCSC. Please complete the form below if you are alerting the NCSC for information only or require technical assistance.

Reporting an incident to the NCSC does not fulfil any legal or regulatory incident reporting requirement.

PLEASE DO NOT FILL THIS FORM IN ON ANY NETWORK YOU BELIEVE HAS BEEN COMPROMISED. USE A SEPARATE SYSTEM TO FILL THIS IN.

The email address from an uncompromised system that all further correspondence should be sent to.
The company email address for reference purposes (this may be compromised, but will not be used for correspondence)
e.g. Law Enforcement, Action Fraud, Lead Government Department, Incident Response Company, Information Commissioner's Office (ICO) and NIS Directive Competent Authority, plus related incident reference numbers.

NCSC may contact you separately for this information.