The Toshiba Product Security Incident Response Team (PSIRT) is an organization responsible for addressing the security vulnerabilities found in the products of Toshiba Group.

Roles

Toshiba Group has a product security risk management system designed to reduce the security risk of its products.
The TOSHIBA-SIRT*1 handles all queries concerning product security from the organizations concerned in Japan and abroad. All such queries are handled through an enhanced escalation system so as to improve the security quality of the Group’s products. The TOSHIBA-SIRT, which has the functions of both CSIRT*2 and PSIRT*3, supervises the cyber security measures of the entire Toshiba Group and provides support for all group companies in Japan and abroad.
Toshiba PSIRT is committed to ensuring that vulnerability information acquired from customers and organizations concerned is properly managed within Toshiba Group and to promptly responding to product security incidents while interacting with the Information Security Early Warning Partnership.
In addition, Toshiba PSIRT shares vulnerability information across Toshiba Group with the aim of preventing similar vulnerabilities. It also incorporates security quality requirements into in-house quality regulations on product development so as to reduce the security risk of the products shipped.

*1 SIRT:Security Incident Response Team
*2 CSIRT:Computer Security Incident Response Team
*3 PSIRT:Product Security Incident Response Team

Vulnerability Handling System

*4 External organizations:

JPCERT/CC (Japan Computer Emergency Response Team Coordination Center),
IPA (Information-technology Promotion Agency, Japan),
CISA (Cybersecurity and Infrastructure Security Agency), etc.

Vulnerability disclosure policy

Click here to view our vulnerability disclosure policy.

List of vulnerabilitiy advisories

Announcements

Contact Information

Click here for contact information.