WHAT’S INSIDE:

• Cybersecurity news: 11 CVEs you need to know about
• Meet VigiShield Secure by Design: Security, simplified
• Key insights from our 2022 cybersecurity survey
• New security blogs: DM-Verity Without an Initramfs and Securing U-Boot
• Upcoming events: from Pittsburgh to Nuremberg, and Security Vulnerability Management 101

Cybersecurity in the news

The 11 CVEs You Need to Know About

Have you heard about this BusyBox flaw, these Azure Defender critical hijacking bugs, or this damaging heap buffer overflow flaw? With an average of 50 new CVEs every day, how do you cut through the noise and take action on the vulnerabilities that pose the largest threat to your device?

We've launched the Timesys CVE Dashboard, updated weekly with details on the dangerous security vulnerabilities that could be affecting your device.

Meet VigiShield Secure by Design

Security, simplified.

Security is a complex, time-consuming, ever-evolving process that requires deep expertise across many disciplines. With VigiShield Secure by Design, we've distilled the security feature implementation process down into an easy-to-understand, PSA certified, maintainable Yocto security layer that can be configured to meet your current customer and regulatory (e.g. NISTIR 8259A and ETSI EN 303) requirements. 

VigiShield leverages widely used open source technologies, enables underlying hardware capabilities for best performance, and implements the security best practices recommended by regulatory and industry-specific bodies (FDA, IEC, etc).

With security built-in using VigiShield, device manufacturers can focus more on innovation during the product development process and get to market faster.

The results are in!

Get your copy of the 2022 Timesys Cybersecurity Survey results! Featuring insights from more than 100 industry professionals, this infographic presents key learnings on the state of the industry for cybersecurity.

Learn with Timesys

Read up on embedded security with our two latest blogs

DM-Verity Without an Initramfs

Learn how you can implement file system verification on your embedded system without the use of an initramfs. This can significantly save boot time and storage requirements in many situations.

Securing U-Boot: A Guide to Mitigating Common Attack Vectors

Learn about ways in which you can protect and secure U-Boot implementations on your embedded systems. This involves signed FIT images, environment protections, and serial console disablement methods.

Upcoming Events

Conferences Around the World You Don't Want to Miss

Security Vulnerability Management 101

Tool & Techniques to Monitor and Remediate Vulnerabilities in Your SBOM

May 26 @ 12 PM ET / 9 AM PT

In this monthly live webinar and Q&A session, you'll learn:

- Why you need to manage your open-source software risks 
- How to generate an accurate SBOM (Software Bills of Materials) and why it matters
- Tools and techniques to monitor and remediate vulnerabilities in your SBOM
- And much more!

Can't make it on May 26th? Reply to this email and we'll send you the event recording, or watch previous webinars here.

www.timesys.com

Timesys, the Timesys logo, and Vigiles are trademarks or registered trademarks of Timesys Corporation. Linux is a registered trademark of Linus Torvalds in the United States and other countries. All other company and product names mentioned are trademarks and/or registered trademarks of their respective owners.