Press Releases

The Board of Directors strongly believes that FIRST should be an inclusive organization with broad global participation and collaboration to make the internet safe for everyone.

Available in PDF

June 1st, 2021 – ICASI – the Industry Consortium for Advancement of Security on the Internet was officially integrated into the Forum of Incident Response and Security Teams (FIRST) on May 28, 2021. Established in 2008, ICASI’s purpose was to strengthen the global security landscape by driving excellence and innovation in security response practices; facilitating collaboration among members to analyze, mitigate, and resolve multi-stakeholder, global security challenges. This role will continue but as part of the existing FIRST PSIRT SIG, expand and improve the community’s ability to respond to vulnerabilities across multiple vendors. Founded in 1990, FIRST is the global leader in incident response.

Los equipos de respuesta a incidentes de seguridad necieron tras el considerado primer gran ciberataque mundial, provocado por el 'virus Moris', en 1988.

Available in PDF

October 21, 2020 – following a global consultation, the Forum of Incident Response and Security Teams (FIRST) is launching new ethics guidelines for incident response and security teams today on Global Ethics Day. ethicsfIRST provides guidance for cybersecurity professionals on how to conduct themselves professionally and ethically during incidents. Inspired by Earth Day, Global Ethics Day provides an opportunity for organizations to explore the meaning of ethics in international affairs

July 27th, 2020 - The Forum of Incident Response and Security Teams (FIRST) is proud to publish its fourth Annual Report today. The report details the organization’s achievements towards building a mature global incident response community. It covers the period between the 2019 conference in Edinburgh, Scotland and July 2020. FIRST Annual Report 2019-2020

October 9th, 2019 – As the year draws to a close, it is time for businesses across all industries and sectors to reflect and prepare for the upcoming new year. With this in mind, premier organization and recognized global leader in incident response - Forum of Incident Response and Security Teams (FIRST) has produced 11 vital steps that organizations should take to improve their incident response strategy.

September 18th, 2019 – At FIRST we strongly believe that in order to build a global cybersecurity incident response community, from which every company or user participating in the Internet can benefit, we should all work to limit the impact of sanctions or export regulations on incident responders. This includes being a forum where technology corporations such as Huawei, have the ability to participate the same as others.

July 12th, 2019 - The Forum of Incident Response and Security Teams (FIRST) has published an update of its internationally recognized Common Vulnerability Scoring System (CVSS). CVSS is a common scoring system designed to provide open and universally standard severity ratings of software vulnerabilities for the security community. Used by organizations worldwide, version 3.1 documentation is now available on the FIRST website for members and non-members to reference.

The Forum of Incident Response and Security Teams releases its third annual report, covering the scope of its activities from the 2018 conference in Kuala Lumpur, through its 2019 annual event in Edinburgh.

The Forum of Incident Response and Security Teams (FIRST), which brings together incident responders from around the world, invested in the creation of a new training course “DDoS Mitigation Fundamentals”. Authored by Krassimir T. Tzvetanov, a recognized expert in the field, the training teaches incident responders to handle attacks and securing their organisations.

The Forum of Incident Response and Security Teams releases its second annual report, covering the scope of its activities from the 2017 conference in Puerto Rico, through its 2018 annual event in Kuala Lumpur.

The Forum of Incident Response and Security Teams releases inaugural annual report, covering the scope of its activities from the 2016 conference in Seoul, through its 2017 annual event in Puerto Rico.

The leading association of incident response and security teams released a draft of the Product Security Incident Response Teams (PSIRT) Services Framework for public input. This is a formal list of services a PSIRT may consider implementing to address the needs of their constituency. Public input is welcomed until August 31, 2017 via [email protected].

The event offers conferences, keynote presentations and activities designed to maximize network opportunities and information exchanges on information security and incident response.

A FIRST Computer Security Incident Response Team (CSIRT) operations workshop was taught on September 5th at the International ISC Conference on Information Security & Cryptology (ISCISC2016) at Shahid Beheshti University in Tehran, Islamic Republic of Iran.

The Forum of Incident Response and Security Teams (FIRST) is announcing it is renaming its Fellowship Program to the “Suguru Yamaguchi Fellowship Program” in honor and in memory of the late Dr. Suguru Yamaguchi, a former member of the Board of Directors for FIRST, from 2011 through 2013.

The Forum of Incident Response and Security Teams (FIRST), a recognized global leader in incident response has successfully finished its 28th Annual Conference, which takes place this June (12th – 18th) in Seoul, South Korea. Co-hosted by the MSIP (Ministry of Science, ICT and Future Planning), KISA (Korea Internet Security Agency) and KrCERT/CC, the conference was held at Conrad Seoul.

FIRST, the Forum of Incident Response and Security Teams, has paired up with 4SICS, the premium summit in Northern Europe for security in SCADA, SMARTGRID, and INDUSTRIAL CONTROL SYSTEMS. The second annual international summit takes place in October 2015 (20-22) in Stockholm, Sweden, with a series of high-level presentations and tutorials delivered by international experts in the field of cyber security in SCADA and Industrial Control Systems.

The Vulnerability Coordination SIG has been established to improve the way in which the increasingly multi-faceted and multi-stakeholder challenge of vulnerability information coordination is met, and to develop a common and consistent methodology for how coordination becomes more effective.

Another successful AfricaCERT meeting draws to an end, training provided by both JPCERT/CC and FIRST (TRANSITS). We would like to congratulate everyone including the trainers, local host and the AfricaCERT on another successful event and a job well done!

Together with Jean Robert Hountomey of the AfricaCERT, FIRST organized a 2-day TRANSITS training in Cote d'Ivoire November 24th and 25th, colocated with the AfriNIC meeting and the JPCERT training.

Chris Gibson, the former Chair of the Forum of Incident Response and Security Teams (FIRST) – the recognized global leader in computer incident response – has been appointed Director of the UK’s newly established Computer Emergency Response Team (CERT-UK).

FIRST announces the launch of the FIRST Fellowship Program, which will enable information security incident response teams from the world’s least developed countries (LDCs) to become part of the global incident response community.

The Malta Information Technology Agency (MITA) has been selected to host one of the largest information security conferences for 2012. This year, the Forum of Incident Response and Security Teams (FIRST) has chosen Malta for its 24th Annual Conference, which will be held between the 17th and 22nd of June 2012.

The Forum of Incident Response and Security Teams (FIRST) is holding its 24th Annual Conference this June (17th – 22nd) on one of the most fortified islands in the Mediterranean, Malta. Reflecting FIRST’s mission for global cooperation, the five-day conference will bring together leading experts and security professionals from around the world to share best practice and the latest thinking on this year’s theme; Security is not an island.

The Forum of Incident Response and Security Teams (FIRST) is holding its 23rd Annual Conference this June (12th-17th) in the imperial city of Vienna, Austria. Reflecting FIRST’s mission for global cooperation, the five day conference will bring together leading experts from around the world to share best practice and the latest thinking around this year’s theme; Security Lessons: What can history teach us?

Sabotage or failure on just one computer system could bring down the world information network in a disaster inflicting more damage than the Kobe earthquake, security experts learned today at their annual conference. They also heard how vulnerable the IT infrastructure is - and how thwarted attacks on the Beijing Olympics showed the determination of cyber criminals.

A law enforcement loophole through which cyber criminals have been escaping started to close today as international police and the world's leading forum of online security experts forged a new alliance.

FIRST, one of the world's leading Internet security organizations today, warned businesses and governments to prepare for a surge in sabotage, thefts and other cyber-attacks by insiders as disaffected employees retaliate in the wake of the global depression.

Pittsburgh, PA, February, 25 2009 - The second international competition honoring best practices and advances in safeguarding the security of computer systems and networks was announced today by FIRST (the Forum of Incident Response and Security Teams) and the Carnegie Mellon Software Engineering Institute CERT Coordination Center (CERT/CC).

The world’s economic woes haven’t stopped unprecedented levels of sponsorship being pledged for the 21st Annual Conference of FIRST with six months still to go before proceedings open on June 28, 2009, in Kyoto.

The lessons Japan can teach the world about disaster recovery will be a top theme for delegates from FIRST, the Forum of Incident Response and Security Teams, when they meet for their 21st annual conference in Kyoto next year.

New methods that organisations and individuals can adopt for free to protect themselves from malicious Internet attacks were unveiled today at the 20th annual conference of FIRST, the Forum of Internet Response and Security Teams.

The number of innocent individuals in China whose personal computers were hijacked by criminals rose by a staggering 2125 per cent between 2006 and 2007, delegates were told here today at the 20th annual conference of FIRST, the Forum of Incident Response and Security Teams.

A new initiative to ease tensions between law enforcers and internet security experts was launched here today at the 20th annual conference of FIRST, the Forum of Incident Response and Security Teams.

More than 400 of the world's top internet crime fighters are in Vancouver this week for the 20th annual conference of FIRST, the Forum of Incident Response and Security Teams.

Now the latest program agenda of Joint Workshop on Security, and FIRST Technical Colloquium 2008 in Tokyo has been updated and published. We are looking forward to meeting as many of you as possible in one of the best season of the year in Tokyo, Japan!

Hosted by CFC, HIRT, IIJ-SECT, JPCERT/CC, JSOC, NCSIRT, NISC, NTT-CERT, SBB-SIRT and YIRD from 25-28 March 2008 Akihabara UDX Gallery, Tokyo, Japan. More information about the program and location are available at FIRST website. FIRST Members may register online to attend to the event.

The very interactive 4th NM-SIG meeting was held on Wednesday 17th October in Noordwijk (NL), before the GOVCERT.NL-symposium. Around 14 people attended the meeting. With hindsight...

SIG members took forward projects like whitelisting known-good large mailservers, and the concept of feedback-loops. The workshop, well-attended by an enthusiastic number of members, also initiated steps towards a new relationship with the APWG.

UK citizens are “walking like sheep, bleating,” into a total surveillance society, Bob Ayers, of the Royal Institute of International Affairs (Chatham House) warned today at the 19th Annual Conference of FIRST.

The need to ensure fast and intelligible information flows between Computer Emergency Response Teams when vendors report vulnerabilities was the lead topic this week when FIRST’s Vendor SIG convened in Seville.

The 19th annual FIRST conference got under way today [Wednesday, June 20] in Seville, Spain, with a record 467 delegates from 49 countries – a 34 per cent increase on last year.

Seville Spain – June 20, 2007: Millions of computer users worldwide will enjoy more secure virtual experiences and transactions with the advent today of CVSSv2 – the latest version of the Common Vulnerability Scoring System.