A caller claiming to be a cyber security official isn't automatically who they say they are.

He knew all the right words — 'cyber security,' 'data breach' — and sounded exactly like someone from a government department. It was only afterwards I wondered why they needed my bank details to 'protect' me.
- Robert, Surrey
What is happening?
Fraudsters are phoning people and claiming to be officials from the National Cyber Security Centre — the UK's real government cyber authority.
They warn of a fake data breach or hacking attempt and, in the process of 'helping', ask for banking details, remote access to a device, or a transfer to a 'safe account'.
Why does this scam work?
The NCSC is a real, respected organisation, and most people have never had a reason to know what genuine contact from them looks like — so a confident caller using the right terminology is hard to question in the moment.
Warning signs:
An unexpected call claiming to be from the NCSC or 'the government's cyber team'. Any request for banking details, passwords, or remote access to 'verify' or 'protect' an account. Pressure to act immediately or move money to a new account.
What to do:
Hang up. The NCSC does not cold-call the public about individual accounts. If in doubt, contact them directly through ncsc.gov.uk using a browser search, never a number given to you on the call.