https://www.first.org/newsroom/news/sigs FIRST.Org media@first.org Business News Technology Special Interest Groups exist to provide a forum where FIRST Members can discuss topics of common interest to the Incident Response community. FIRST.Org © 1995-2026 by FIRST.org, Inc. Wed, 01 Nov 2023 18:27:47 +0000 Mon, 02 Feb 2026 16:55:38 +0000 Tecnodesign (https://tecnodz.com) en-us 20 https://www.first.org/newsroom/news/sigs https://www.first.org/_/img/1st.png false https://www.first.org/newsroom/releases/20231101 <p>In June 2023, attendees at the 35th Annual FIRST Conference, in Montréal, Canada got a first-look preview of the new version of the Common Vulnerability Scoring System (CVSS), version 4.0. After two month of public comment followed by two months of addressing those comments, FIRST is proud to announce the official publication of CVSS version 4.0.</p> Wed, 01 Nov 2023 17:00:00 +0000 firstnews:40933 https://www.first.org/newsroom/releases/20210601 <p>ICASI – the Industry Consortium for Advancement of Security on the Internet was officially integrated into the Forum of Incident Response and Security Teams (FIRST) on May 28, 2021. Established in 2008, ICASI’s purpose was to strengthen the global security landscape by driving excellence and innovation in security response practices; facilitating collaboration among members to analyze, mitigate, and resolve multi-stakeholder, global security challenges. This role will continue but as part of the existing FIRST PSIRT SIG, expand and improve the community’s ability to respond to vulnerabilities across multiple vendors. Founded in 1990, FIRST is the global leader in incident response.</p> Tue, 01 Jun 2021 13:00:00 +0000 firstnews:40794 https://portswigger.net/daily-swig/first-updates-guidelines-for-multi-party-vulnerability-disclosure <p>A new set of guidelines has been produced by FIRST, in collaboration with the National Telecommunications and Information Administration (NTIA). The document is aimed at anyone involved in multi-party vulnerability disclosures – from security researchers to incident response teams. The updated advice (version 1.1) was unveiled earlier this month to address shortcomings in how multiple parties should engage and cooperate during the security vulnerability disclosure process.</p> Mon, 18 May 2020 00:00:00 +0000 firstnews:40763 https://www.first.org/newsroom/releases/20190712 <p>July 12th, 2019 - The Forum of Incident Response and Security Teams (FIRST) has published an update of its internationally recognized <strong>Common Vulnerability Scoring System (CVSS)</strong>. CVSS is a common scoring system designed to provide open and universally standard severity ratings of software vulnerabilities for the security community. Used by organizations worldwide, version 3.1 documentation is now available on the FIRST website for members and non-members to <a href="https://www.first.org/cvss/v3-1/">reference</a>.</p> Fri, 12 Jul 2019 13:00:00 +0000 firstnews:40728 https://www.first.org/global/sigs/ <p>FIRST is pleased to announce the creation of two new Special Interest Groups: PSIRT and Cyber Insurance! The PSIRT SIG is developing learning materials to support the evolution of PSIRTs at all maturity levels, and the Cyber Insurance SIG is coordinating data sharing and providing a feedback mechanism between CERTs and Cyber Insurance organizations.</p> Wed, 22 May 2019 13:00:00 +0000 firstnews:40717 https://www.first.org/newsroom/releases/20170815 <p>The Forum of Incident Response and Security Teams has published a formal policy to guide cyber security standardization within its standards groups.</p> Tue, 15 Aug 2017 13:00:00 +0000 firstnews:40652 https://www.first.org/newsroom/releases/20170706 <p>The Forum of Incident Response and Security Teams announces the release of a set of guidelines and norms for vulnerability disclosure that affects multiple parties.</p> Thu, 06 Jul 2017 13:00:00 +0000 firstnews:40643 https://www.first.org/newsroom/releases/20170608 <p>The Forum of Incident Response and Security Teams announces a public request for comments on a draft policy to guide cyber security standardization within its working groups.</p> Thu, 08 Jun 2017 09:00:00 +0000 firstnews:40620 https://www.first.org/global/sigs/vulnerability-coordination/multiparty <p>The comment period for the "Guidelines and Practices for Multi-Party Vulnerability Coordination", published by the Vulnerability Coordination SIG, was extended to February 28th, 2017. FIRST invites anyone with an interest in this area to review the current draft, available from <a href="https://www.first.org/global/sigs/vulnerability-coordination/multiparty">https://www.first.org/global/sigs/vulnerability-coordination/multiparty</a>, and provide comments for consideration.</p> Mon, 30 Jan 2017 23:00:00 +0000 firstnews:40596 https://www.first.org/global/sigs/red-team <p>FIRST has formed the Red Teaming SIG. Interested participants who are part of an existing Red Team or in the process of forming one should send a request to be added to the mail list to <a href="mailto:first-sec@first.org">first-sec@first.org</a></p> Mon, 14 Dec 2015 12:10:00 +0000 firstnews:40540 http://www.first.org/global/sigs/masurvey/ <p>FIRST is considering formation of a Malware Analysis SIG to give members a place to discuss the tools & techniques involved with malware analysis. In order to gauge interest, we'd like interested members to complete the questionnaire found at <a href="http://www.first.org/global/sigs/masurvey/">http://www.first.org/global/sigs/masurvey/</a></p> Tue, 26 Oct 2010 21:11:00 +0000 firstnews:40407