Accessibility
· 13 checks — Landmarks, headings, alt text, forms, and link quality rolled into one auditable list.FHeading HierarchyAction46 headings, 6 skip(s)FIX
- H2 Advice & guidance
- H4 Find information for... skipped
- H4 Popular topics
- H4 Other resources
- H2 Respond to a cyber attack
- H4 Affecting you or your family skipped
- H4 Affecting your small business
- H4 Affecting your organisation
- H2 Find a product or service
- H4 In this section skipped
- H4 Useful links
- H2 Education & skills
- H4 Find information for... skipped
- H4 Education & academia resources
- H4 Industry & skill resources
- H2 News
- H4 In this section skipped
- H4 Stay up to date
- H2 Search
- H3 Popular Searches
- H1 The National Cyber Security Centre
- H4 Experienced a cyber attack? skipped
- H2 Featured
- H3 Cyber chief: UK faces "perfect storm" for cyber security
- H3 Preparing for severe cyber threat: why leaders must act now
- H3 New cross domain guidance for government, industry and the wider security community
- H2 CYBERUK returns to Glasgow
- H3 Advice for sole traders and small organisations to respond to cyber attacks
- H3 Advice for medium to large organisations to help respond to a cyber incident
- H3 Advice for individuals to respond to an online scam or cyber attack
- H2 Find guidance and resources for . . .
- H2 Popular content for organisations
- H3 Cyber Assessment Framework
- H3 Early Warning
- H3 Cyber Security Toolkit for Boards
- H2 Cyber criminals can find your business anywhere
- H2 Popular content for you & your family
- H3 Recovering a hacked account
- H3 Managing your passwords
- H3 Data breaches: guidance for individuals and families
- H2 Free cyber security toolkit
- H2 Popular topics
- H2 Follow us
- H2 About this website
- H2 Contact the NCSC
- H2 Useful links
Skipping heading levels breaks the document outline. Screen readers may interpret missing levels as structural errors.
Skipping heading levels breaks the document outline — screen-reader users lose track of section nesting.
Learn more ▾ ▴
Screen reader users navigate by jumping between headings (H1 → H2 → H3). Skipping (H1 → H3) breaks the sense of hierarchy. Use sequential levels even if you don't like the default styling — restyle with CSS instead. WCAG 1.3.1 (Info and Relationships) treats this as an A failure.
Source: WCAG 2.1 SC 1.3.1 / W3C WAI
Skipping heading levels breaks the document outline. Screen readers may interpret missing levels as structural errors.
Skipping heading levels breaks the document outline — screen-reader users lose track of section nesting.
Learn more ▾ ▴
Screen reader users navigate by jumping between headings (H1 → H2 → H3). Skipping (H1 → H3) breaks the sense of hierarchy. Use sequential levels even if you don't like the default styling — restyle with CSS instead. WCAG 1.3.1 (Info and Relationships) treats this as an A failure.
Source: WCAG 2.1 SC 1.3.1 / W3C WAI
Skipping heading levels breaks the document outline. Screen readers may interpret missing levels as structural errors.
Skipping heading levels breaks the document outline — screen-reader users lose track of section nesting.
Learn more ▾ ▴
Screen reader users navigate by jumping between headings (H1 → H2 → H3). Skipping (H1 → H3) breaks the sense of hierarchy. Use sequential levels even if you don't like the default styling — restyle with CSS instead. WCAG 1.3.1 (Info and Relationships) treats this as an A failure.
Source: WCAG 2.1 SC 1.3.1 / W3C WAI
Skipping heading levels breaks the document outline. Screen readers may interpret missing levels as structural errors.
Skipping heading levels breaks the document outline — screen-reader users lose track of section nesting.
Learn more ▾ ▴
Screen reader users navigate by jumping between headings (H1 → H2 → H3). Skipping (H1 → H3) breaks the sense of hierarchy. Use sequential levels even if you don't like the default styling — restyle with CSS instead. WCAG 1.3.1 (Info and Relationships) treats this as an A failure.
Source: WCAG 2.1 SC 1.3.1 / W3C WAI
Skipping heading levels breaks the document outline. Screen readers may interpret missing levels as structural errors.
Skipping heading levels breaks the document outline — screen-reader users lose track of section nesting.
Learn more ▾ ▴
Screen reader users navigate by jumping between headings (H1 → H2 → H3). Skipping (H1 → H3) breaks the sense of hierarchy. Use sequential levels even if you don't like the default styling — restyle with CSS instead. WCAG 1.3.1 (Info and Relationships) treats this as an A failure.
Source: WCAG 2.1 SC 1.3.1 / W3C WAI
Skipping heading levels breaks the document outline. Screen readers may interpret missing levels as structural errors.
Skipping heading levels breaks the document outline — screen-reader users lose track of section nesting.
Learn more ▾ ▴
Screen reader users navigate by jumping between headings (H1 → H2 → H3). Skipping (H1 → H3) breaks the sense of hierarchy. Use sequential levels even if you don't like the default styling — restyle with CSS instead. WCAG 1.3.1 (Info and Relationships) treats this as an A failure.
Source: WCAG 2.1 SC 1.3.1 / W3C WAI
DWeb ManifestActionNot foundFIX
No web manifest found.
DDark Mode SupportActionNo dark mode signalsFIX
Detection limited to meta tags and inline styles.
DPrint StylesheetActionNo print stylesFIX
CAlt Text QualityAction15 of 42 images have issuesREVIEW
| Issue | Count |
|---|---|
| missing | 14 image(s) |
| generic | 1 image(s) |
| too long | 1 image(s) |
Images without alt text are invisible to screen readers.
Each image without alt text is a WCAG 1.1.1 failure — invisible to screen-reader users, lost from Google Image Search.
Learn more ▾ ▴
WCAG 2.1 Level A requires text alternatives for non-decorative images. Empty alt='' is fine for decorative; meaningful images need descriptive text. Common fixes: CMS audit + bulk add, build-time linter (alt-text-required ESLint rule), CI gate on Lighthouse a11y score.
Source: WCAG 2.1 SC 1.1.1 / WebAIM Million Report
CForm AccessibilityAction4 of 10 controls have issuesREVIEW
| Control | Type | Label | Method |
|---|---|---|---|
| #CybotCookiebotDialogBodyLevelButtonNecessary | checkbox | Necessary | for/id |
| #CybotCookiebotDialogBodyLevelButtonPreferences | checkbox | Preferences | for/id |
| #CybotCookiebotDialogBodyLevelButtonStatistics | checkbox | Statistics | for/id |
| #CybotCookiebotDialogBodyLevelButtonMarketing | checkbox | Marketing | for/id |
| #CybotCookiebotDialogBodyContentCheckboxPersonalInformation | checkbox | Do not sell or share my personal information | for/id |
| #global-search | search | Please enter a search term | for/id |
| #CybotCookiebotDialogBodyLevelButtonStatisticsInline | checkbox | (none) | none |
| #CybotCookiebotDialogBodyLevelButtonMarketingInline | checkbox | (none) | none |
| #CybotCookiebotDialogBodyLevelButtonNecessaryInline | checkbox | (none) | none |
| #CybotCookiebotDialogBodyLevelButtonPreferencesInline | checkbox | (none) | none |
Form controls need a <label>, aria-label, or aria-labelledby for screen readers.
<input type="checkbox" id="CybotCookiebotDialogBodyLevelButtonNecessaryInline">; <input type="checkbox" id="CybotCookiebotDialogBodyLevelButtonPreferencesInline">; <input type="checkbox" id="CybotCookiebotDialogBodyLevelButtonStatisticsInline">; <input type="checkbox" id="CybotCookiebotDialogBodyLevelButtonMarketingInline">
Form controls without labels — assistive tech announces 'edit text' with no context; users can't complete forms.
Source: WCAG 2.1 SC 3.3.2
CLink & Button QualityAction1 issue(s) across 165 links and 28 buttonsREVIEW
| Element | Text | Issue | Suggested Fix |
|---|---|---|---|
| https://www.cookiebot.com/en/what-is-beh… | Cookiebot by Usercentrics - op… | new tab | Add '(opens in new tab)' to text |
| https://www.cloudflare.com/privacypolicy… | Learn more about this provider… | new tab | Add '(opens in new tab)' to text |
| https://www.cookiebot.com/goto/privacy-p… | Learn more about this provider… | new tab | Add '(opens in new tab)' to text |
| https://www.gov.uk/help/cookies | Learn more about this provider… | new tab | Add '(opens in new tab)' to text |
| https://business.safety.google/privacy/ | Learn more about this provider… | new tab | Add '(opens in new tab)' to text |
| https://privacy.microsoft.com/en-us/priv… | Learn more about this provider… | new tab | Add '(opens in new tab)' to text |
| https://www.spotify.com/uk/legal/privacy… | Learn more about this provider… | new tab | Add '(opens in new tab)' to text |
| https://www.spotify.com/uk/legal/privacy… | Learn more about this provider… | new tab | Add '(opens in new tab)' to text |
| https://business.safety.google/privacy/ | Learn more about this provider… | new tab | Add '(opens in new tab)' to text |
| https://www.gov.uk/help/cookies | Learn more about this provider… | new tab | Add '(opens in new tab)' to text |
| https://www.spotify.com/uk/legal/privacy… | Learn more about this provider… | new tab | Add '(opens in new tab)' to text |
| https://www.cookiebot.com | Cookiebot | new tab | Add '(opens in new tab)' to text |
| https://report.ncsc.gov.uk/ | Report an incident (Opens in n… | new tab | Add '(opens in new tab)' to text |
| https://report.ncsc.gov.uk/ | Report an incident (Opens in n… | new tab | Add '(opens in new tab)' to text |
| (empty) | empty | Add link text or aria-label | |
| https://www.cyberuk.uk/ | Visit event website (Opens in … | new tab | Add '(opens in new tab)' to text |
| /section/respond-recover/sole-small | Advice for sole traders and sm… | img no alt | Add alt attribute to the image |
| /section/respond-recover/medium-large | Advice for medium to large org… | img no alt | Add alt attribute to the image |
| /section/respond-recover/you | Advice for individuals to resp… | img no alt | Add alt attribute to the image |
| /collection/cyber-assessment-framework | Cyber Assessment Framework. Th… | img no alt | Add alt attribute to the image |
| /section/active-cyber-defence/early-warn… | Early Warning. Free malicious … | img no alt | Add alt attribute to the image |
| /collection/board-toolkit | Cyber Security Toolkit for Boa… | img no alt | Add alt attribute to the image |
| /guidance/recovering-a-hacked-account | Recovering a hacked account. A… | img no alt | Add alt attribute to the image |
| /collection/top-tips-for-staying-secure-… | Managing your passwords. Why y… | img no alt | Add alt attribute to the image |
| /guidance/data-breaches | Data breaches: guidance for in… | img no alt | Add alt attribute to the image |
| https://cybertoolkit.service.ncsc.gov.uk… | Try the toolkit now (Opens in … | new tab | Add '(opens in new tab)' to text |
| http://www.facebook.com/share.php?u=http… | Share onFacebook (Opens in new… | new tab | Add '(opens in new tab)' to text |
| https://www.linkedin.com/shareArticle?mi… | Share onLinkedIn (Opens in new… | new tab | Add '(opens in new tab)' to text |
| https://twitter.com/intent/tweet?text=&u… | Share onX (Opens in new window… | new tab | Add '(opens in new tab)' to text |
| https://x.com/ncsc | X (Opens in new window) | new tab | Add '(opens in new tab)' to text |
| https://uk.linkedin.com/company/national… | LinkedIn (Opens in new window) | new tab | Add '(opens in new tab)' to text |
| https://www.instagram.com/cyberhq/ | Instagram (Opens in new window… | new tab | Add '(opens in new tab)' to text |
| https://www.threads.com/@cyberhq | Threads (Opens in new window) | new tab | Add '(opens in new tab)' to text |
| https://report.ncsc.gov.uk/ | Report an incident (Opens in n… | new tab | Add '(opens in new tab)' to text |
| https://www.gchq.gov.uk/ | GCHQ (Opens in new window) | new tab | Add '(opens in new tab)' to text |
| https://www.mi5.gov.uk/ | MI5 (Opens in new window) | new tab | Add '(opens in new tab)' to text |
| https://www.sis.gov.uk/ | SIS (Opens in new window) | new tab | Add '(opens in new tab)' to text |
| https://www.npsa.gov.uk/ | NPSA (Opens in new window) | new tab | Add '(opens in new tab)' to text |
| https://www.gov.uk/ | GOV.UK (Opens in new window) | new tab | Add '(opens in new tab)' to text |
Links without text are announced as raw URLs by screen readers.
a#main-content
Links with no accessible text (empty <a></a>, image-only no alt, icon-only no aria-label) are unidentifiable to screen readers.
Source: WCAG 2.1 SC 2.4.4
Image-only links need alt text on the image (or aria-label on the link) so screen readers can announce them.
a[href="/section/respond-recover/sole-small"]; a[href="/section/respond-recover/medium-large"]; a[href="/section/respond-recover/you"]; a[href="/collection/cyber-assessment-framework"]; a[href="/section/active-cyber-defence/early-warning"]; a[href="/collection/board-toolkit"]; a[href="/guidance/recovering-a-hacked-account"]; a[href="/collection/top-tips-for-staying-secure-online/password-managers"]; a[href="/guidance/data-breaches"]
Image-only links with no alt are unidentifiable to screen-reader users — link's destination is invisible.
Source: WCAG 2.1 SC 2.4.4
Add '(opens in new tab)' to link text or aria-label.
https://www.cookiebot.com/en/what-is-behind-powered-by-cookiebot/?utm_source=…; https://www.cloudflare.com/privacypolicy/; https://www.cookiebot.com/goto/privacy-policy/; https://www.gov.uk/help/cookies; https://business.safety.google/privacy/; https://privacy.microsoft.com/en-us/privacystatement; https://www.spotify.com/uk/legal/privacy-policy/; https://www.spotify.com/uk/legal/privacy-policy/; https://business.safety.google/privacy/; https://www.gov.uk/help/cookies (+19 more)
Links with target="_blank" without rel="noopener" leak the originating page's window context — security and UX issue.
Learn more ▾ ▴
Without rel="noopener", the new tab can navigate the original tab via window.opener (tab-nabbing attack). Modern browsers default to noopener for target=_blank but only since recent versions. Always set rel="noopener noreferrer" explicitly.
Source: MDN target / OWASP
C404 Error PageActionCould not testREVIEW
404 page quality check not available.
CFavicon & BrandingAction4 icon(s) detectedREVIEW
CColor Contrast (Screenshot)Action20 text elements analyzed, 20 fail WCAG AAREVIEW
Analyzes text contrast against the actual rendered page, including background images, gradients, and overlays that CSS-based tools cannot detect.
Show all checked elements (20)
| Element | Ratio | Required | FG | BG | Result |
|---|---|---|---|---|---|
| h2 Advice & guidance | 1.76:1 | 3.0:1 | #000000 | #373737 | Fail |
| h2 Respond to a cyber a… | 1.76:1 | 3.0:1 | #000000 | #373737 | Fail |
| h2 Find a product or se… | 1.76:1 | 3.0:1 | #000000 | #373737 | Fail |
| h2 Education & skills | 1.76:1 | 3.0:1 | #000000 | #373737 | Fail |
| h2 News | 1.76:1 | 3.0:1 | #000000 | #373737 | Fail |
| h2 Search | 1.76:1 | 3.0:1 | #000000 | #373737 | Fail |
| h2 Featured | 1.76:1 | 3.0:1 | #000000 | #373737 | Fail |
| h2 CYBERUK returns to G… | 1.76:1 | 3.0:1 | #000000 | #373737 | Fail |
| h2 Find guidance and re… | 1.76:1 | 3.0:1 | #000000 | #373737 | Fail |
| h2 Popular content for … | 1.76:1 | 3.0:1 | #000000 | #373737 | Fail |
| h2 Cyber criminals can … | 1.76:1 | 3.0:1 | #000000 | #373737 | Fail |
| h2 Popular content for … | 1.76:1 | 3.0:1 | #000000 | #373737 | Fail |
| h2 Free cyber security … | 1.76:1 | 3.0:1 | #000000 | #373737 | Fail |
| h2 Popular topics | 1.76:1 | 3.0:1 | #000000 | #373737 | Fail |
| h2 Follow us | 1.76:1 | 3.0:1 | #000000 | #373737 | Fail |
| h2 About this website | 1.76:1 | 3.0:1 | #000000 | #373737 | Fail |
| h2 Contact the NCSC | 1.76:1 | 3.0:1 | #000000 | #373737 | Fail |
| h2 Useful links | 1.76:1 | 3.0:1 | #000000 | #373737 | Fail |
| h3 Popular Searches | 1.76:1 | 3.0:1 | #000000 | #373737 | Fail |
| title The National Cyber S… | 1.05:1 | 4.5:1 | #000000 | #030816 | Fail |
Methodology: The top 20 text elements by font size were checked. Background color was sampled from the desktop screenshot using a 5-point pattern. WCAG 2.1 AA requires 4.5:1 for normal text and 3:1 for large text.
ALandmark Structure9 landmarksPASS
Add a skip link as the first focusable element so keyboard users can bypass repeated navigation.
Without a skip-nav link, keyboard users tab through every nav item before reaching content — every page, every visit.
Learn more ▾ ▴
WCAG 2.4.1 (Bypass Blocks) requires a mechanism to skip past repeated content. The standard implementation is a 'Skip to main content' link that's the first focusable element, visually hidden until focused. Three lines of HTML + four of CSS.
Source: WCAG 2.1 SC 2.4.1
ALighthouse Accessibility AuditsScore 91/100 — 4 failing, 26 passedPASS
Accessibility
These checks highlight opportunities to improve the accessibility of your web app. Automatic detection can only detect a subset of issues and does not guarantee the accessibility of your web app, so manual testing is also encouraged.
Contrast
Low-contrast text is difficult or impossible for many users to read. Learn how to provide sufficient color contrast.
Performance issues directly impact user engagement and conversion rates.
| Failing Elements |
|---|
Experienced a cyber attack? div.bg-notification > div.c-container > a.flex > h4.mb-0 |
These are opportunities to improve the legibility of your content.
Navigation
Properly ordered headings that do not skip levels convey the semantic structure of the page, making it easier to navigate and understand when using assistive technologies. Learn more about heading order.
Performance issues directly impact user engagement and conversion rates.
| Failing Elements |
|---|
Experienced a cyber attack? div.bg-notification > div.c-container > a.flex > h4.mb-0 |
These are opportunities to improve keyboard navigation in your application.
Names and labels
Informative elements should aim for short, descriptive alternate text. Decorative elements can be ignored with an empty alt attribute. Learn more about the `alt` attribute.
Performance issues directly impact user engagement and conversion rates.
| Failing Elements |
|---|
div > div.px-fl-sm > div.relative > img.w-32 div > div.px-fl-sm > div.relative > img.w-32 |
div > div.px-fl-sm > div.relative > img.w-32 div > div.px-fl-sm > div.relative > img.w-32 |
div > div.px-fl-sm > div.relative > img.w-32 div > div.px-fl-sm > div.relative > img.w-32 |
div > div.px-fl-sm > div.relative > img.w-32 div > div.px-fl-sm > div.relative > img.w-32 |
div > div.px-fl-sm > div.relative > img.w-32 div > div.px-fl-sm > div.relative > img.w-32 |
div > div.px-fl-sm > div.relative > img.w-32 div > div.px-fl-sm > div.relative > img.w-32 |
div.c-container > div.grid > div.relative > img.w-full div.c-container > div.grid > div.relative > img.w-full |
div.c-container > div.grid > div.relative > img.w-full div.c-container > div.grid > div.relative > img.w-full |
div.c-container > div.grid > div.relative > img.w-full div.c-container > div.grid > div.relative > img.w-full |
div.c-container > div.grid > div.relative > img.w-full div.c-container > div.grid > div.relative > img.w-full |
div.c-container > div.grid > div.relative > img.w-full div.c-container > div.grid > div.relative > img.w-full |
div.c-container > div.grid > div.relative > img.w-full div.c-container > div.grid > div.relative > img.w-full |
div.c-container > div.grid > div.relative > img.w-full div.c-container > div.grid > div.relative > img.w-full |
div.c-container > div.grid > div.relative > img.w-full div.c-container > div.grid > div.relative > img.w-full |
These are opportunities to improve the semantics of the controls in your application. This may enhance the experience for users of assistive technology, like a screen reader.
Visible text labels that do not match the accessible name can result in a confusing experience for screen reader users. Learn more about accessible names.
Performance issues directly impact user engagement and conversion rates.
| Failing Elements |
|---|
NEW TODAY
NEWS
Cyber chief: UK faces "perfect storm" for cyber security
As the… div.py-fl-lg > div.mt-fl-sm > article.c-teaser > a.h-full |
BLOG POST
Preparing for severe cyber threat: why leaders must act now
A call t… div.mt-fl-sm > div.h-full > article.@container > a.w-full |
NEW TODAY
BLOG POST
New cross domain guidance for government, industry and the … div.mt-fl-sm > div.h-full > article.@container > a.w-full |
GUIDANCE
Cyber Assessment Framework
The CAF is a collection of cyber security … div.py-fl-lg > div.grid > article.c-teaser > a.h-full |
GUIDANCE
Cyber Security Toolkit for Boards
Resources to help Boards implement … div.py-fl-lg > div.grid > article.c-teaser > a.h-full |
GUIDANCE
Recovering a hacked account
A step by step guide to recovering online… div.py-fl-lg > div.grid > article.c-teaser > a.h-full |
GUIDANCE
Managing your passwords
Why you should use a password manager to ‘rem… div.py-fl-lg > div.grid > article.c-teaser > a.h-full |
GUIDANCE
Data breaches: guidance for individuals and families
How to protect y… div.py-fl-lg > div.grid > article.c-teaser > a.h-full |