What's New 2025

Sharing information in cybersecurity is vital for prevention and response. There’s a lot of technical processes available, and best practice to learn from. FIRST, for example, was created for that exact reason back in the 90s, to share techniques and information between teams.

Momentum Year Marked by Record Membership, New Resources, and Broader Collaboration Across 110+ Countries

The Actioning Alerts and Advisories (A4) project aimed to improve threat reporting in cybersecurity by providing technical expertise, analysis, and communications support to National Cybersecurity Incident Response Teams (CSIRTs). The project worked with teams from four countries, fostering collaboration and knowledge-sharing

he Actioning Alerts and Advisories (A4) project aimed to improve threat reporting in cybersecurity by providing technical expertise, analysis, and communications support to National Cybersecurity Incident Response Teams (CSIRTs). The project worked with teams from four countries, fostering collaboration and knowledge-sharing among stakeholders, and empowering CSIRTs to create actionable reports that can be used to prevent cyber threats.

Usually, we begin a blog post with a review of last quarter, but our volunteer team couldn’t get a forecast out last quarter. We had several pressing matters between multiple team members, and we apologise. So, we’ll move swiftly on to this quarter’s predictions.

Vulnerability Forecasting Colloquium, New Threat Hunting SIG, and International Partnerships Drive Global Cybersecurity Impact

Message from the Chair; Digital Sovereignty and Communities; Member Spotlight; FIRST CORE; Special Interest Group Updates; Training and CCB; Strategic Initiatives Amplification, Video Series Completion and LinkedIn Growth Surge; Upcoming Events

Message from the Chair; Incident Response Hall of Fame 2025 Recipient: Richard (Rich) D. Pethia, CERT/CC; New Board Member: Graciela Martinez Giordano; Building Bridges is fine, but you have to use them; Board Roles & Responsibilities; FIRST Welcomes New Members and Thanks Sponsoring Teams!; Women of FIRST; Strategic Campaign Success, Video Series Launch and Global Media Recognition; Upcoming Events

Annual conference unveils new funding initiatives, platforms and tools, leadership appointments, and expanded global capacity building programs

Pioneer behind the first CERT honored for launching a global movement in cybersecurity

New initiative empowers cybersecurity and incident response teams worldwide through capacity building and community development

Cyber Incident Simulation: Piecing Together an Attack Through a Public Policy Lens

Peter Lowe, FIRST’s DNS Abuse Policy Ambassador, shares a review of the APAC DNS Forum in Hanoi, Vietnam, where he met with representatives from various organizations and had valuable discussions about DNS abuse and data sharing.

Last year I opened a presentation with this: «Human error are the words cyber security guys use when they don't know shit». The response was laughter. But I think it is true. Here's why, and why it's relevant to incident responders.

Message from the Chair; Strategy and Governance: Launch of the FIRST Strategy Framework; FIRST Welcomes New Members and Thanks Sponsoring Teams!; Special Interest Group Updates; The role of National CERTs/CSIRTs in Implementing the UN Norms of Responsible Behavior in Cyberspace; Growth Stack Media Q1FY25 PR Highlights: Media Coverage Expansion & Successful Campaigns; Green Copenhagen; FIRST on Social Media; and Upcoming Events

We’re expecting 9006 +/- 1259 vulnerabilities this quarter, as we close out the year.

Flagship events in Raleigh, Berlin, and Copenhagen set to strengthen international cybersecurity collaboration amid surge in cross-border security incidents

The FIRST Board of Directors is introducing a new structured approach to strategic planning, aimed at enhancing the organization’s ability to fulfill its mission and solidify its position as a global leader in cybersecurity and incident response.

In 2025 we expect another record-breaking year of CVE production. This year we expect 45505 +/- 4,363 CVEs to be published in the calendar year (CY). There’s a 5% chance the actual number exceeds the maximum (49868) and a 5% chance is less than the minimum (41142). Rather than give you a false sense of precision, it’s probably far easier to say we expect between 41-50k of vulnerabilities in calendar year CY 2025.

In 2025 we expect another record-breaking year of CVE production. This year we expect 45505 +/- 4,363 CVEs to be published in the calendar year (CY). There’s a 5% chance the actual number exceeds the maximum (49868) and a 5% chance is less than the minimum (41142). Rather than give you a false sense of precision, it’s probably far easier to say we expect between 41-50k of vulnerabilities in calendar year CY 2025.

In calendar year 2024 we had another record breaking 40,704 CVEs published.