Security testing had been limited, leaving potential issues in firmware, update mechanisms, and cloud communication. Any exploit affecting dosage commands, uptime, or telemetry could impact patient safety and jeopardize large contracts.The OEM required an independent security assessment and a clear remediation plan aligned with regulatory expectations.

With Zymr’s support, the manufacturer:

• Uncovered 19 issues across firmware, BLE, OTA, and cloud APIs
• Implemented secure boot, TLS 1.3, and stronger device identity
• Improved monitoring and alerting for anomalous device behavior
• Cleared FDA pre‑submission cybersecurity review without major findings

‍