Click here to view this message in a browser window.

Timesys embedded software development and security newsletter September 2021

Embedded Systems
A Timesys Deep Dive

March 2022


Cybersecurity in the news

Critical Hijacking Bugs That Can Lead to Full Network Compromise Discovered in Azure Defender for IoT

Two CVEs scored a 10 out of 10 for severity

According to The Register:

"SentinelOne this week detailed a handful of bugs, including two critical remote code execution vulnerabilities, it found in Microsoft Azure Defender for IoT.

These security flaws, which took six months to address, could have been exploited by an unauthenticated attacker to compromise devices and take over critical infrastructure networks."

Read the full article.

Want the full scoop on the headline-making CVEs you need to know about? We've launched the Timesys CVE Dashboard, updated weekly with details on the dangerous security vulnerabilities that could be affecting your device.

Take me to the CVE Dashboard


Get early access to the results from our industry-wide survey

Sign up to be added to our early access list. You'll be among the first to read the industry insights from our cybersecurity survey.

I want early access to survey results

Learn with Timesys

Read up on Yocto security with our two latest blogs

Yocto Security: Automating compliance using OpenSCAP

Whether you are looking to embrace security automation or trying to meet regulatory compliance requirements, SCAP can play an important part of your security toolbox. Leveraging the OpenSCAP project, one can get a jumpstart in building secure devices that can be easily audited in an automated fashion. 

Read the blog


Yocto Security: Logging with auditd

The Linux audit framework is a security system which can provide accurate information about almost all security-relevant actions running processes may take on a system. The logs created using the audit framework can be used to investigate potential security incidents. Read the full blog for info on installation to using rules files and beyond.

Read the blog

Upcoming Events

Conferences Around the World You Don't Want to Miss


Embedded Online Conference

A conference for embedded systems engineers

April 25-29, online

So much learning to do, and so little time. Luckily, this is a week-long online conference jam-packed with interesting topics.

Be sure to stop by the "demo" area to see our new Embedded Board Farm video!

Learn More | Register




Cybersecurity industry event

May 4, Pittsburgh, PA

Join us in our hometown for the 7th annual Cyburgh, a forum for cybersecurity, IT, and business professionals to engage with and learn from peers, thought leaders, and solution providers.

Our very own Al Feczko will present a tech talk on software supply chain security.

Check out Cyburgh


2nd European Medical Device & Diagnostic Cybersecurity + Software Development & Compliance 

Joint live conference

May 17-18, Brussels

We are thrilled to be sponsoring this year's event, and our very own Maciej Halasz will be presenting on securing the open source embedded software supply chain for medical devices. 

Learn More


Embedded Technology Convention USA 2022

Embedded Technologies & Systems Showcase

June 8-9, Las Vegas, NV

Join us at the Embedded Tech Convention with 5000 of our closest friends! Discover the latest technological innovations and trends, expand your industry knowledge and extend your global professional network.

Register To Attend


Security Vulnerability Management 101

Tool & Techniques to Monitor and Remediate Vulnerabilities in Your SBOM

April 28 @ 12 PM ET / 9 AM PT

In this monthly live webinar and Q&A session, you'll learn:

- Why you need to manage your open-source software risks 
- How to generate an accurate SBOM (Software Bills of Materials) and why it matters
- Tools and techniques to monitor and remediate vulnerabilities in your SBOM
- And much more!

Yes! I want to register for the live webinar and Q&A

Can't make it on April 28th? Reply to this email and we'll send you the event recording, or watch previous webinars here.

Timesys blog logo YouTube logo Linkedin logo Twitter logo  Facebook logo

Timesys, the Timesys logo, and Vigiles are trademarks or registered trademarks of Timesys Corporation. Linux is a registered trademark of Linus Torvalds in the United States and other countries. All other company and product names mentioned are trademarks and/or registered trademarks of their respective owners.

Copyright ©2022 Timesys Corporation
Our address is 1905 Blvd of the Allies, Pittsburgh, PA 15219, USA

If you do not wish to receive future Timesys Corporation email communications or would like to manage your communication preferences, click here.