UK cybercrime agency blocks nearly 1 billion access attempts to malicious websites

Image depicting hands typing on a keyboard, with phishing hooks holding files, passwords and credit cards.

(Image credit: Shutterstock / janews)

NCSC’s “Share and Defend” service blocked 1B malicious site visits in under a year
Tool pools threat intel and Protective DNS data, enabling ISPs to block harmful domains in real time
UK ransomware attacks doubled year-on-year; cyber insurance claims rose 230%, prompting a new National Cyber Action Plan

In just under 12 months, UK netizens tried to access malicious websites a billion times. Luckily, a new NCSC tool called “Share and Defend service” prevented that from happening, effectively saving people from compromised accounts, stolen data, and lost money.

This is according to a new report published by the National Cyber Security Centre (NCSC), and BT, issued earlier this week. Share and Defend was first announced in May last year, and works by pooling together data from threat intelligence providers, NCSC’s Protective DNS (PDNS), Takedown services, and other sources.

The information about malicious domains and dangerous landing pages are then shared with internet service providers, managed service providers, and other communication companies, who can block access to them, in real time.

Business-first plan coming soon

These billion clicks would otherwise land on fake e-commerce stores, spoofed landing login pages, and other malicious links.

“It shows we are making Britain a hard target for cybercriminals by protecting businesses and citizens on a daily basis,” said Dan Jarvis, Security Minister.

Since most email security services these days filter out malicious attachments, cybercriminals have generally moved to sharing URLs, which are easier to hide. These URLs can be anything, from fake login pages that relay the credentials to the attackers, to fake download pages which, instead of legitimate software, deliver infostealers and ransomware.

According to Cybernews, between August 2024 and 2025, there were more than 200 “nationally significant” ransomware attacks in the UK, up by more than double compared to the year prior (89 incidents). Some of the biggest names to get hit include Marks & Spencer, Co-op, and Jaguar Land Rover. The same source also claims that cyber insurance claims rose by 230% year-on-year, hinting that businesses are increasingly cashing out after getting hit.

Apparently, the UK will present a National Cyber Action Plan in a few weeks, which should be “business-first”.

Via Cybernews

The best antivirus for all budgets

➡️ Read our full guide to the best antivirus
1. Best overall:
Bitdefender Total Security
2. Best for families:
Norton 360 with LifeLock
3. Best for mobile:
McAfee Mobile Security

Follow TechRadar on Google News and add us as a preferred source to get our expert news, reviews, and opinion in your feeds. Make sure to click the Follow button!

And of course you can also follow TechRadar on TikTok for news, reviews, unboxings in video form, and get regular updates from us on WhatsApp too.

Sead is a seasoned freelance journalist based in Sarajevo, Bosnia and Herzegovina. He writes about IT (cloud, IoT, 5G, VPN) and cybersecurity (ransomware, data breaches, laws and regulations). In his career, spanning more than a decade, he’s written for numerous media outlets, including Al Jazeera Balkans. He’s also held several modules on content writing for Represent Communications.

You must confirm your public display name before commenting

Please logout and then login again, you will then be prompted to enter your display name.