A Timesys Deep Dive Embedded Systems Newsletter

September 2022

Poisoning Attack Risk: Unpatched DNS bug affects millions of routers and IoT devices

According to Bleeping Computer: “A vulnerability in the domain name system (DNS) component of a popular C standard library that is present in a wide range of IoT products may put millions of devices at DNS poisoning attack risk. A threat actor can use DNS poisoning or DNS spoofing to redirect the victim to a malicious website hosted at an IP address on a server controlled by the attacker instead of the legitimate location.”

Need more info on these vulnerabilities?

Want to stay ahead of threats? Lucky you: we launched the Timesys CVE Dashboard and update it weekly with details on the dangerous security vulnerabilities that could be affecting your device.

Take me to the CVE Dashboard

Tech 50 Finalist

Timesys Named 2022 Tech 50 Category Finalist for Cybersecurity

Each year, the Pittsburgh Technology Council celebrates the most successful and innovative companies in Southwestern Pennsylvania at their Tech 50 Awards event, and this year, Timesys is honored to be nominated and named a Tech 50 Finalist for Cybersecurity! The 2022 Tech 50 Awards event will be held on Wednesday, November 9 at the Westin Convention Center in Pittsburgh, PA.

With more than 20 years of embedded development experience, Timesys’ broad portfolio, embedded expertise, and extensive partner ecosystem are used by over 1000 customers to develop leading products and applications including medical, automotive, industrial, networking, aerospace, and Internet of Things (IoT) solutions.

At Timesys, we understand how every company that creates new electronic devices is faced with a decision: speed to market, new must-have features, and security. Typically, companies can only pick two. But with tools like Vigiles and the other security services offered by Timesys, companies no longer have to pick between speed to market, new must-have features, and security. They can have all three.

The 2022 Tech 50 Awards event will be held on Wednesday, November 9 at the Westin Convention Center in Pittsburgh, PA.


Recap: NXP Tech Day in Boston

5 Things You Need to Know About Cybersecurity for IoT, Intelligent Edge, and Medical Devices

On Wednesday and Thursday, Timesys shared the “5 Things You Need to Know About Cybersecurity for IoT, Intelligent Edge, and Medical Devices” in order to mitigate risk with proactive security processes, went over “What I Wish I Knew About My Security Before Designing My Product,” and even discussed how to “Protect My Customer’s Al/Ml Algorithms With Device Encryption And Secure Key Storage” at the NXP Tech Day in Boston.


Linux OS and BSP Maintenance

Can You Reduce the Cost of Long-Term Maintenance for Your Product AND Stay Secure?

At Timesys, we understand how product security updates and addressing security vulnerabilities reported by customers can be time-consuming work that takes more resources, time, and investment than are readily available. We understand how you want to keep your products secure and your customers safe. That’s why we offer Linux OS and BSP Maintenance, so you can take advantage of our deep expertise to maintain your Linux OS and BSP for the full lifecycle of your device and stay ahead of security threats.

  • Boost Compliance with a Continuous Security Feed and CVE Monitoring with Our Best-In-Class Tool, Vigiles
  • Enjoy Seamless Workflow Integration and Collaborative Triage and Development for Releases
  • Meet Your Release Schedules with an Update Cadence That Meets Your Product Security Policy
  • Get Results That Don’t Break Your Budget by Maintaining Your OS and BSP for Half the Cost of Doing it Yourself

Avoid frequent maintenance cycles, high staffing costs, and priority conflicts by signing up for Timesys’ Linux OS/BSP Maintenance service.

Get long term security updates and maintenance for your embedded device for half the cost of a junior engineer. 

When's the Last Time You Got What You Really Wanted?

Make your dreams a reality. Your vulnerability management dreams. Help us out with your feedback and you can guide the roadmap for the vulnerability management features that make it faster to build and maintain secure products which let you sleep easier at night.


Take a short Timesys Survey for a chance to win $50

Learn with Timesys

Read Up On Embedded Security With Our Blogs

Stay in your workflow with Command Line Interface for Timesys’ Embedded Board Farm

Timesys’ Embedded Board Farm (EBF) lets you seamlessly access your hardware boards from anywhere as if it were right next to you. And we’ve just made it even easier and more convenient by adding our command line interface (CLI)! Learn more about EBF with this blog:

Upcoming Events

Conferences Around the World You Don’t Want to Miss

3rd Annual Medical Device & Diagnostic Cybersecurity Conference

October 18th and 19th, Boston, MA, USA

Arriving for the first time in USA, this dual-track conference features exclusive dedicated interactive sessions that will provide new insights and latest development on medical device software, safety, and security. Experience an inspirational mix of presentations, interactive round table discussions, and unparalleled global networking, supported by real-life business examples, case studies, knowledge sharing Q&A sessions and learning opportunities.


Do you know what’s in your software?

How SBOM Management Can Mitigate Your Security Risks

October 11 @ 11 AM EDT / 8 AM PT

In this new live webinar and Q&A session, you’ll learn essential ways to keep your device secure throughout the entire product lifecycle:

– What is in your software
– How to prepare for the next cyberattack
– How to manage software supply chain risks
– And much more!


Subscribe to our newsletter so you don’t miss a thing.