In the world of cybersecurity, ethical hacking proactively identifies security vulnerabilities before malicious actors (i.e., unethical hackers) can exploit them. By simulating real-world attacks, organisations can strengthen defences, protect sensitive data, and maintain public trust. In the physical security world, ethical hacking can transform cybersecurity of security systems from a reactive struggle into a strategic safeguard. We asked our Expert Panel Roundtable: What is the role of ethical hacking as it relates to physical security?

Next-generation (Next-Gen) technologies are products, services, or infrastructures that represent a significant leap forward rather than a small, incremental update. In the physical security industry, NextGen products are those that enable disruptive change, breakthrough performance, and a fundamental change that renders previous products obsolete. We asked our Expert Panel Roundtable: What is the next generation of physical security solutions, and how will they change the industry?

Emphasising proactive rather than reactive security shifts the focus from dealing with crises and damage control to prevention. Advantages of a proactive approach include cost efficiency, better business continuity, and fewer crises that draw attention away from strategic improvements. Staying ahead of threats is a core mission of the security department, and technology has evolved to enable security professionals to deliver on that mission better than ever. We asked our Expert Panel Roundtable: How are security systems transitioning from reactive to proactive, and what is the benefit?

Multiple technology trends are transforming the physical access control market. There is a fundamental shift away from physical cards and keys toward digital identities — mobile credentials, digital wallets, biometrics, and cloud-native access platforms. These next generation access solutions are radically reshaping how buildings operate, protect staff, and perform functionally. At the same time, AI and analytics solutions are being layered onto these physical access control systems to support predictive threat detection and behavioural insights. Access data itself is becoming an asset for sustainability, space optimisation, and smart building initiatives. Risk, impact operations and experience The annual HID Global Security and Identity Trends Report highlights these and other issues The annual HID Global Security and Identity Trends Report highlights these and other issues. The survey cites improving user convenience as a priority for nearly half of organisations, while 41% are focused on simplifying administration, and 28% struggle with system integration. These are not theoretical challenges, they are day‑to‑day friction points that add cost, increase risk, impact operations and experience, and, of course, must be addressed. HID Global’s commercial focus HID Global’s commercial focus is to help organisations digitise their access control — with mobile identities, biometrics, and cloud platforms — and then to use the data to deliver more value. “We are turning access control from an operational cost into a software-driven asset that improves efficiency, supports Environmental, Social, and Governance (ESG) goals and even creates new revenue opportunities,” says Steven Commander, HID Global’s Head of Consultant Relations. The impact of digital transformation Digital transformation is the method of moving access control from hardware and physical credentials Digital transformation is in the process of moving access control from hardware and physical credentials to a software-driven, integrated experience. The transformation strengthens security while also improving user convenience — transforming the “pavement to the desk” journey. HID enables this shift through mobile credentials, biometrics, cloud-native platforms, and solutions that allow third-party applications to run on door hardware. “This helps customers turn access data into operational and commercial outcomes, while also improving the overall user experience,” says Commander.  Digital transformation in access control is not focused on chasing the latest trends. Rather, transformation is about turning software, data and integration into outcomes that matter to customers, says HID. “Security becomes stronger and more adaptive,” says Commander. “Operations become simpler and more cost‑effective. Experiences become seamless and consistent. Sustainability moves from ambition to action. And the financial case becomes clearer as efficiencies are banked and new value streams emerge.” The challenge of futureproofing with long lifecycles Given that physical security technologies will be in place for 15 to 20 years, it is important to plan for how systems can evolve over time. Considering how rapidly security threats, compliance standards, and user expectations change, 15 to 20 years is a long time. The decisions made at the beginning of a system’s lifecycle can either limit flexibility later (which will be costly) or enable long-term adaptability. Support for open standards such as Open Supervised Device Protocol (OSDP) is therefore important Choosing products and platforms that are open, interoperable, and designed for updates can enable future-proof projects. Support for open standards such as Open Supervised Device Protocol (OSDP) is therefore important.  In addition, systems built on open controller platforms — such as Mercury — enable organisations to switch software providers or expand functionality without replacing core door hardware. Architectural openness is key to system lifecycles and maximising the return on investment (ROI) from a chosen solution. Digital credentials and mobile access Flexibility and upgradeability should also be top of mind when it comes to endpoints like access control readers. While RFID cards are still commonplace, there is a clear trend toward digital credentials and mobile access. Readers that support both allow organisations to transition at their own pace, without committing to a full system overhaul. A long system lifecycle does not mean technology should remain static. Security, particularly cybersecurity, demands more frequent updates. Technologies that support firmware upgrades in the field extend the value of a deployment while helping organisations keep pace with emerging threats. In that sense, lifecycle thinking is not just about longevity — it’s about maintaining resilience and readiness over time. Applying biometrics and mobile identities Biometrics is becoming mainstream as a credential alternative, strengthening security without adding friction Biometrics is becoming mainstream as a credential alternative, strengthening security without adding friction. Many organisations are now deploying biometrics to support fast, seamless access journeys, with adoption already around 39% in access control according to HID’s recent research.  In addition, 80% of organisations surveyed expect to deploy mobile identities within the next five years. Full technology integration enables tap‑to‑access without opening an app; the user journey becomes faster, safer, and more convenient. “It is where the industry is headed and we are at the vanguard of this,” says Commander.    Ongoing challenge of cybersecurity At HID Global, cybersecurity is embedded into everything, from corporate processes and development practices to the solutions they bring to market. “Our approach ensures that customers can strengthen their overall security posture, not only by deploying secure products but by benefitting from HID’s commitment to the highest industry standards,” says Commander. HID holds multiple globally recognised certifications, including ISO 27001, ISO 14298, SOC Type 2 and CSA STAR, which demonstrate their robust information security and cloud security practices. In addition, HID’s SEOS® secure chipset is independently SEAL-certified, providing one of the most advanced levels of protection available on the market today. “Ultimately, this means organisations are not just purchasing isolated secure products; they are implementing solutions developed and delivered within a comprehensive, cybersecure framework,” says Commander. “When deployed according to best practices, HID solutions enable customers to achieve the highest levels of resilience against evolving physical and cyber threats.” Developing green and sustainable solutions A huge amount of waste is generated from the manufacture of plastic RFID access cards Digital credentials align with the sustainable solutions that everyone wants. A huge amount of waste is generated from the manufacture of plastic RFID access cards. Over 550 million access cards are sold annually. This creates 2,700 tons of plastic waste and 11,400 tons of carbon, based on a PVC card weighing 5 grams.  Therefore, digital credentials self-evidently reduce the reliance on plastic cards (helping reduce carbon emissions by up to 75% according to HID’s research), while leveraging access control system data supports energy optimisation by shutting down or reducing systems in unused spaces. Energy use and CO₂ emissions can be cut dramatically, showing how access systems can contribute to sustainability goals and green building certification. What is the latest in smart buildings? Smart buildings increasingly rely on mobile access control as the backbone for digital services. Real-time access data enables new services such as automated room bookings, HVAC control, lift/elevator calling, e-bike hiring, and so on. Smart buildings increasingly rely on mobile access control as the backbone for digital services The financial upside is clear; smart, digitally transformed buildings can deliver around 8% higher yields per square foot versus traditional office space. Operational savings accrue from reduced administration, the removal of card production and shipping, and lighter IT support. This creates a value cycle — better experiences drive adoption, adoption fuels monetisation, and monetisation funds further improvements. Achieving technology impact in the real world One standout project is One Bangkok – a $3.9 billion mixed used development in Thailand – which demonstrates the scale of what can be achieved when access control data is used for optimisation, particularly when it comes to monitoring facilities usage and occupier behaviours. By switching lights off or lowering the temperature in unused rooms, for example, the One Bangkok building demonstrates this potential with a 22% reduction in energy consumption, saving 17,000 MWh and 9,000 tons of CO₂ annually.  Sustainability is a key factor in contributing to how properties are valued. And sustainability extends far beyond digital credentials having a lower environmental impact than plastic cards.  Buildings with recognised sustainability certifications often command rental premiums of around 6%, and three‑quarters of security decision‑makers now consider environmental impact in their procurement assessments.

    Solink®, the pioneer in agentic vision intelligence, announced the general availability of Solink AI Agents, designed to bring intelligence to every part of business operations. These new capabilities turn existing video footage into action — reducing theft, preventing threats, and driving measurable revenue outcomes across every physical location.   Most enterprises have invested heavily in AI. The result? More insights. More dashboard. More workflows. More data to interpret. But insights alone don’t eliminate theft, prevent threats, or grow revenue. With Solink AI Agents, every business operates with 24/7 intelligence that closes the gap between what happened and what to do next, driving high-value outcomes in the real world, across every physical location.   “For years, businesses have invested in systems that tell them what happened. The next phase is systems that help them decide what to do next,” said Mike Matta, CEO and co-founder of Solink. “With Solink AI Agents, we are closing the gap between insight and action, putting the full power of agentic intelligence to work.”   AI agents headline at Solink's Agentic AI Summit AI Agents will be unveiled today, June 23 at 12:00 PM ET, at Solink’s Agentic AI Summit where AWS, Comcast Business, and Goldman Sachs are taking part as sponsors.    Their participation reflects a shared belief that the future of AI will be defined not by insights generated, but by high-value outcomes delivered. Turning video into context and the outcomes are already real Acting as a force multiplier, Solink AI Agents monitor cameras and operational data in real time, surfacing only the events that require human intervention. The agents deter theft before it spreads, flag threats before they escalate, and identify revenue opportunities before they’re lost. This is true workforce augmentation: the speed and scale modern enterprises need to drive real business outcomes.   Solink AI Agents come with a library of pre-built agents designed to deliver real outcomes from day one through intelligent discovery: Overnight Guard: A virtual security presence that monitors sites after hours — catching threats and deterring loss without the overhead. Loss Prevention: Catch anomalies like sweethearting, discount abuse, and fraudulent returns at unprecedented scale. Stop shrink before it spreads. Store Readiness: Monitor visual compliance across locations — ensuring stores are clean, organised, and meeting brand standards to enforce SOPs at scale. “We’re using Solink agentic AI to tackle organised retail oil theft. We were able to drive an arrest based on an alert we received,” said Khalil Salem, Head of Loss Prevention and Corporate Security at a large convenience store/retail business. Enabling tailored intelligence and outcomes with custom agents   Not every business challenge can be solved with a pre-built agent. Solink’s Custom AI Agents allow organisations to create agents tailored to their unique workflows, priorities, and operational goals — reasoning across video and operational data to deliver outcomes specific to each organisation’s needs. To join Solink’s Agentic AI launch, visit the Agentic AI Summit registration page.     

Group-IB, a creator of predictive cybersecurity technologies to investigate, prevent, and fight digital crime, today unveils its Top 10 Masked Actors for 2026 – a definitive ranking of the most prolific cybercriminal groups operating globally. The list is drawn from Group-IB's High-Tech Crime Trend Report 2026, which identifies 2026 as the year the supply chain became cybercrime's most exploited attack surface. Across more than 1,550 frontline investigations and extensive monitoring of the criminal underground, Group-IB analysts observed a structural transformation in how attacks are orchestrated: threat actors are no longer targeting victims directly, but embedding themselves into the trusted infrastructure and third-party ecosystems that organisations depend on — amplifying their reach, compressing detection windows, and maximising disruption across entire industries simultaneously. Novelty of technical evolution The 2026 Top 10 Masked Actors ranking is determined through a rigorous, adversary-centric methodology, scoring each group across six dimensions: financial impact, victims, volume of threats during the operational lifespan, novelty of technical evolution, growth of affiliates, and notoriety. The result is an intelligence-led framework that goes beyond listing who the top threat actors are — it explains why they matter, and how their tactics are reshaping the future of cybercrime. Scattered Spider - Linked to some of the most high-profile attacks of the past year, Scattered Spider has risen to global notoriety through a combination of social engineering mastery and unprecedented operational scale. This decentralised cybercriminal community demonstrated the power of the supply chain attack vector in a single 2025 operation that compromised 130+ organisations across the technology sector - showing how loosely affiliated actors can cascade a downstream supply chain and rival the impact of traditional organised crime. Lazarus - A highly sophisticated, state-linked threat actor blending cyber espionage with large-scale financial crime. Lazarus earns its place, primarily for its financial impact, responsible for over $6.5 billion in cryptocurrency theft within its lifespan, and over $2.02 billion in 2025 alone - making it one of the most financially destructive threat actors documented.  MuddyWater - A state-aligned cyber espionage group targeting government, financial services, and logistics sectors, notable for its broad geographic reach across 113 countries. Its defining characteristic, operational tempo: between October 2025 and March 2026, MuddyWater deployed three new malware variants, illustrating the velocity of adversary development cycles that defenders must now anticipate. Tycoon 2FA -The dominant force in Phishing-as-a-Service (PhaaS), Tycoon 2FA controls 89% market share of the adversary-in-the-middle PhaaS segment. It’s SaaS subscription model has commoditised enterprise credential theft at scale - enabling thousands of attacks across cloud environments globally and lowering the barrier for less technically sophisticated actors to execute high-impact campaigns. GoldFactory - First identified by Group-IB in 2024, GoldFactory is a technically advanced threat cluster that has demonstrated a unique capability: stealing biometric data to bypass facial recognition authentication in mobile banking fraud. Operating 15 infections per day across active campaigns, the group has begun to expand beyond its original APAC focus, with new Spanish-language code artefacts signalling deliberate geographic expansion. TX-NFC - A commercialised ecosystem that emulates contactless payment systems on fraudsters' devices, offered via subscriptions from $45 a day to $1,050 per three months. As contactless payments continue to expand globally, TX-NFC’s available attack surface grows with them. The group is expanding into English and Russian-speaking cybercrime ecosystems. Shadow Silk - A financially motivated group specialising in obfuscation and long-duration evasion, Shadow Silk has been observed operating undetected within critical infrastructure and government entities across multiple regions — remaining concealed for over 12 months in one documented instance. Its ability to persist inside high-value environments without triggering detection places it among the most operationally mature actors on this year's list. Bloody Wolf - A persistent threat group prioritising long-term access and surveillance over immediate financial gain. Operating primarily in Central Asia with a focus on government organisations, Bloody Wolf employs geo-fenced delivery infrastructure to maintain a targeted, low-profile foothold — a tradecraft increasingly associated with actors seeking strategic, intelligence-gathering objectives. Teste PHP - In under a year, Teste PHP has built a financial crime operation spanning five Spanish-speaking countries, using malicious browser extensions that silently harvest credentials in real time. Its rapid geographic expansion and aggressive victim acquisition rate illustrate the relentless pace at which new cybercriminal operations can scale in the current ecosystem. DarkBlinders - An emerging threat cluster targeting aviation and telecommunications sectors in the Middle East, DarkBlinders holds the highest TTP evolution score on this year's list — a metric derived from the frequency and breadth of changes to its tactics, techniques and procedures over a 12-month period. Unlike actors operating from a static playbook, DarkBlinders continuously monitors its own exposure and adapts its methods to invalidate existing detection signatures, making it one of the most operationally agile adversaries currently tracked by Group-IB. Commercialisation of attack infrastructure “The supply chain has become cybercrime’s most powerful multiplier. What our investigators documented across more than 1,550 cases last year tells us that attacks are no longer targeting victims in isolation - they are embedding themselves into trusted infrastructure and third-party ecosystems to cascade across entire industries at once.” “A single point of compromise reached over 130 organisations in one operation we tracked. At the same time, the commercialisation of attack infrastructure - phishing platforms with 89% marketshare, NFC fraud sold on subscription - is closing the capability gap between sophisticated and unsophisticated threat actors fast. For defenders, the response has to be adversary-centric: understanding how these specific adversaries evolve, not just what they did last quarter, but predicting through AI driven intelligence what they will do next.” - Dmitry Volkov, Chief Executive Officer, Group-IB. Featuring frontline investigators The top 10 Masked Actors ranking is underpinned by Group-IB’s unique position at the intersection of threat intelligence and global law enforcement collaboration. Group-IB’s intelligence has directly supported operations with INTERPOL, Europol, AFRIPOL and national agencies resulting in the arrest and prosecution of cybercriminals worldwide, providing it with unmatched visibility into how threat actors operate, adapt, and reconstitute following disruption. This law enforcement cooperation is a core differentiator in the quality and depth of intelligence informing the 2026 ranking. To accompany the ranking, Group-IB will release the second season of its Masked Actors podcast series, launching on 30th June with an in-depth episode on Scattered Spider. The episode, available on all major podcast platforms, will feature special guest Seán Doyle. Lead, Cybercrime Atlas Initiative, at the World Economic Forum, examining how the group exploits a single trusted entry point to cascade across hundreds of downstream organisations. Subsequent episodes will cover each ranked actor in turn, featuring frontline investigators and expert commentary on emerging cybercrime trends.

Manufacturing pioneers face a relentless pressure to achieve more with less. They must improve productivity, reduce downtime, maintain safety, and remain compliant, while simultaneously juggling skills shortages, tighter regulations, and rising costs. For firms with European operations, preparing for the proposed Industrial Accelerator Act (IAA) is another consideration. For manufacturing leaders looking to stay ahead of these opportunities and headwinds, technology is becoming a critical solution that can help them see more, know more, and act faster across their operations. Informing strategic decisions Historically, video surveillance was perceived as solely a security tool, but modern, AI-powered video solutions are capable of delivering value across operations by tackling broader industry issues such as workplace safety, supply chain management, and predictive maintenance. AI-powered video systems can help manufacturers solve many of their practical, everyday problems by providing detailed data, insights, and recommendations that can automate compliance, prevent downtime, and inform strategic decisions. Thermal imaging cameras Every manufacturer worries about unplanned downtime because it disrupts productivity and reduces profitability. In worst-case scenarios, it can negatively impact brand reputation, total product availability or product availability timelines. The earliest warning sign that isn’t always picked up quickly is temperature changes. Equipment and electrical systems can be monitored using thermal imaging cameras, with automatic alerts sent to operators if the system detects abnormal temperatures so they can investigate further. This offers a proactive monitoring solution that will identify potential issues before they lead to failures or fires. If overheating occurs, production supervisors are immediately alerted and can use the insights to perform the necessary preventive maintenance tasks before the situation worsens. Providing temperature alerts The latest generation of early fire detection cameras combines thermal radiometry with visible imaging lenses, detecting flames through the visible channel while also providing temperature alerts. This enables users to take preventative actions quickly, and before a fire spreads. Ensuring worker health and safety is critical in manufacturing operations. The EU’s European statistics on accidents at work (ESAW) research found that a third of non-fatal accidents at work in the EU occurred on industrial sites, and that workers in manufacturing have the highest likelihood of suffering a non-fatal accident at work (80.9%). Over a quarter (27.1%) of accidents at work in the EU were caused by individuals losing control of a machine, tool, or transport/handling equipment. Unsafe machinery operations Intelligent AI-powered video analytics can help operators to identify potential risks in real-time, such as spillage or unsafe machinery operations, before they impact worker safety. Rapid detection allows for faster emergency response and more accurate incident documentation, improving safety and ensuring compliance with industry standards. Object detection and tracking can identify and alert operators to forklifts moving in an unsafe manner or into unexpected areas, so nearby workers can be warned. Likewise, equipment malfunctions, spills, or fallen objects can be quickly identified, reported to operators, and proactively addressed before they cause harm. Cameras can also detect if a worker is wearing incorrect PPE. Integration with audio systems or workforce communication platforms can automatically notify workers of the required protective equipment. Improper lifting techniques and poor handling of hazardous materials can also be identified, so impacted workers can be educated on correct handling and lifting techniques. Rising customer expectations Providing operators with a comprehensive overall site awareness in real time, promoting safe driving and handling behaviour, and proactively monitoring moving objects are some of the best ways to save lives, protect workers, minimise compliance infractions and reduce costly legal expenses. With tight schedules and rising customer expectations, delivery delays, inventory errors and packaging mistakes can quickly erode trust and profit margins. From the factory floor to the loading dock, for manufacturers, making every second count is essential, as lost productivity kills profitability. Indeed, shipping and delivery errors occur for many reasons, and any issues can create negative attention for a brand. Barcode reading capabilities AI-powered video systems with integrated barcode reading capabilities can monitor and verify package movements throughout the logistics process, from receiving and handling to dispatch. By combining video evidence and barcode data in a single device, they deliver enhanced traceability, accuracy and operational efficiency.  The ability to quickly match video footage with package handling history enables operators to respond quickly and effectively to customer queries about delivery times, missing items or product damage. This helps to build trust and accountability across the supply chain.  Future-ready manufacturing organisation Video data is a rich source of insight into daily operations, potential bottlenecks, machine performance, and package movements that senior leaders can use to inform their rotas and schedules, maintenance, delivery timelines and more. Seeing video surveillance as the strategic differentiator that it is today is the first step in building a future-ready manufacturing organisation. Smart manufacturers understand that video isn’t limited to security but improves productivity, reliability, and long-term competitiveness.

Dragos, Inc., a pioneer in cybersecurity for operational technology (OT) environments, announces the release of EmberAI, an OT-native AI built on the Dragos Intelligence Fabric, the world's largest OT cybersecurity data set. EmberAI gives every analyst immediate access to Dragos’s OT-specific intelligence gained from over a decade of OT actions, activity, and knowledge. Putting historical and real-time intel in the hands of every security analyst, EmberAI enables teams to gain detailed visibility into assets, vulnerabilities, and network activity across their OT environment. They can prioritise threats by operational impact and act on findings specific to their environment. EmberAI empowers every analyst, regardless of experience, to move from alert to informed action faster, and make defensible decisions grounded in real adversary data. Extended operational technology Threat activity against critical infrastructure is accelerating.  The OT cybersecurity skills needed to address these complex tactics and techniques continue to grow, and the shortage of professionals who can meet that demand continues to widen. Existing tools prioritise visibility over understanding, and general-purpose AI lacks the operational context to distinguish a critical exposure from background noise or to prioritise threats by their actual impact on operations. In OT, any delayed or incorrect decision can have direct consequences for operational safety, resilience, and control. Organisations responsible for securing extended operational technology (xOT) environments, including power grids, manufacturing plants, water systems, pipelines, and data centers, need AI that is built on the right intelligence and grounded in operational reality. EmberAI helps analysts across the full range of experience—from IT practitioners and plant engineers operating in OT environments to seasoned OT professionals—to see, understand, and act with the confidence of an OT expert. They can prioritise what matters operationally, and act effectively on findings that threaten safe operations. Frontline operations for OT environments “We built EmberAI to harness Dragos’s decade-plus of experience in threat intelligence, incident response, adversary tracking, and frontline operations for OT environments,” said Robert M. Lee, CEO and Co-Founder, Dragos. “It is hard to reproduce this depth of OT-specific expertise and build AI that understands and can action OT specific findings." In our opinion, Gartner® guidance on AI for cyber-physical system (CPS) security supports this approach: "Favour solutions that use a highly tuned, CPS-specific intelligence engine, instead of risking intellectual property and data sovereignty by feeding sensitive operational telemetry into an opaque, cloud-based global model." Critical infrastructure environments The Dragos Intelligence Fabric is built on over five petabytes of daily OT telemetry, 10-plus years of adversary tracking across named OT threat groups, proprietary OT vulnerability research as a CVE Numbering Authority, asset and protocol research spanning more than 600 OT protocols, and frontline incident response experience from critical infrastructure environments. The Dragos Intelligence Fabric continuously learns as new intelligence surfaces, field insights accumulate, and threat groups adopt new behaviours. This foundation enables EmberAI to operate on a principle that distinguishes it from generic AI: OT specific intelligence applied in context. EmberAI is central to Dragos's xOT security strategy to secure the full extended operational technology environment that influences critical operational processes. As Dragos’s xOT integrations expand the Intelligence Fabric with new data sources, EmberAI's intelligence and capabilities will grow with it. Irrelevant technical signals Intelligence-Driven Query Engine: Analysts ask questions in plain language and receive precise, OT-contextual answers grounded in the Dragos Intelligence Fabric. This eliminates the need to manually pivot across disconnected tools or correlate data from multiple sources. Contextual Correlation Across the Environment: EmberAI connects assets, vulnerabilities, threat intelligence, and network activity into a unified, real-time understanding. Decisions are based on full operational context, not isolated or irrelevant technical signals. Adversary-Informed Guidance: Detections and alerts are mapped to known OT threat groups, observed attack patterns, and real behaviors drawn from the Dragos Intelligence Fabric. Analysts understand not just what is happening, but what it means for their environment and how to prioritise their response. Workflow Acceleration and Automation Support: From alert triage to incident summaries and reporting, EmberAI reduces hours of friction laden and often error-prone manual work. Analysts spend less time gathering data and more time making informed decisions. Expert-Built OT Skills: Dragos analysts are building and validating a rich library of guided, repeatable workflows that encode the same expertise they apply during proactive services, investigations, and incident response. This library will be available soon. Continuous Learning Through the Intelligence Fabric: As new intelligence and field insights surface, the Dragos Intelligence Fabric evolves and EmberAI becomes more efficient and effective. Enabling defensible workflows The analyst remains in control at every step. Every recommendation that EmberAI surfaces is transparent and auditable, enabling defensible workflows. Customer data never leaves the customer's environment. EmberAI operates inside the Dragos Platform deployment the organisation already controls. These design choices reflect a foundational ‘human in the loop’ principle for OT: the person responsible for protecting an environment must own the final decision. EmberAI is generally available today inside the Dragos Platform.

Amthal has completed an upgrade of the access control infrastructure at Lion Health Care, supporting the medical practice with a fully integrated system designed to manage security across a complex, high traffic healthcare environment. Lion Health Care in Stourbridge is a large, multi-disciplinary medical practice providing a broad range of primary care services to the local community. With a high volume of patients, staff and visitors moving through the building each day, the site requires carefully managed access across clinical, administrative and restricted areas. Access control system The project involved the full replacement and enhancement of an existing access control system, incorporating a combination of updated readers, controllers and wireless handle sets. In total, more than 50 doors across the site were brought into the upgraded system, creating a unified and centrally managed platform that aligns with the operational and governance requirements of a busy medical practice. Says Jürgen Versluis, Finance and Data Manager, Information Governance Lead and Senior Information Risk Owner at Lion Health Care, Stourbridge: “Maintaining the security of our premises and the sensitive information we hold is a fundamental part of how we operate, so it was important any upgrade strengthened both control and day to day usability.” Busy healthcare environment “The new system gives us a far more effective way to manage access across the site, while still aligning with our governance responsibilities. Carrying out the work overnight was essential, as it meant there was no disruption to patient care, and the team showed a clear understanding of how to work within the demands of a busy healthcare environment.” Delivering the upgrade within a live healthcare environment required careful planning, with all installation and commissioning carried out of normal operating hours to avoid disruption to patients and clinical services. An Amthal team of four engineers worked overnight to complete the critical phases, ensuring the system was fully configured, tested and operational. Information governance standards The upgraded system provides improved control over access permissions, enabling staff to manage entry points with greater accuracy and accountability. The inclusion of wireless handle sets also reduced the need for extensive cabling, allowing for a more efficient installation process across existing doors while maintaining the integrity of the building. Throughout the project, attention was given to ensuring the system configuration aligned with information governance standards, supporting auditability and secure access management across clinical and administrative areas. The result is a scalable solution that can be adapted as the practice evolves, with the flexibility to accommodate future changes in staffing, access requirements or building use. David Williamson, Business Development Manager at Amthal Fire & Security, concluded: “This project reflects the importance of delivering technical upgrades in a way that respects the operational realities of healthcare environments. Working overnight allowed us to complete a complex installation without interrupting day to day services, while ensuring the system was fully functional and ready for immediate use. The outcome is a cohesive access control solution that provides clarity, control and reliability across the entire site.”

The University of West London (UWL) is benefitting from enhanced fire safety visibility and streamlined system management thanks to the integration of AdvancedLive across multiple campuses. Over the past three years, the University has undertaken a significant investment programme to upgrade its fire protection infrastructure. This included systematically replacing legacy MxPro 4 and Kentec systems with next-generation MxPro 5 panels, ensuring consistency across six campuses in West London and Oxford. Faster incident response Most recently, Ruskin College, now part of the University of West London, underwent a seamless upgrade across its historic Oxford estate, which includes five main buildings such as the Rookery, first constructed in 1913. Despite the complexity of integrating newer extensions like the Callaghan Library, the project was completed without disruption, thanks to the adaptability and flexibility of the MxPro 5 platform. With more than 27 Advanced panels installed across education, office, and residential buildings, the University has now connected three of its main campuses to AdvancedLive, with plans to extend the platform further. Using map-based views, facilities teams and security staff gain a real-time overview of their fire system estate, enabling faster incident response and more efficient day-to-day management. Remote access capability For a large and dispersed organisation like UWL, the ability to locate alarms or faults quickly across complex buildings has been transformational. AdvancedLive’s intuitive dashboard and remote access capability allow fire isolations, enablements and weekly testing to be managed digitally, eliminating unnecessary site visits and reducing both costs and carbon footprint. The system configuration reflects the unique requirements of each campus: St Mary’s Road Campus operates 13 panels, with Apollo REACH wireless devices deployed within library pods and coincidence detection programmed across third-party systems. Ruskin College Campus features six panels, each building configured with bespoke cause-and-effect strategies, all reporting to central security points. Paragon House integrates four panels with phased evacuation and delays across its 12-storey tower block. Unified management interface Additional campuses, including Cavendish & Century and Drama Studio London, benefit from tailored programming for linked buildings and theatre operations respectively. In every case, AdvancedLive provides a unified management interface for system status, alarms, faults, and disablements. Jason Bennett, Division Manager at Alarm Communication Limited, who led the installation, said: “From both an admin and engineering perspective, AdvancedLive has been extremely positive. The live system view and detailed log make daily management much simpler, while remote access means the facilities team can react quickly and efficiently to any issue. The installation was straightforward, and Advanced’s support throughout the process was excellent.” Sustainable fire system management Salvy Vittozzi, Sales Manager for UK South East at Advanced, added: “The University of West London is a great example of how AdvancedLive can transform fire system oversight across a complex estate. By combining the proven reliability of the MxPro 5 panels with the real-time visibility of AdvancedLive, the University now benefits from a solution that’s not only robust today but also scalable for the future. It’s fantastic to see how this investment is already saving time, reducing unnecessary travel, and strengthening fire safety management.” Looking ahead, UWL plans to expand AdvancedLive connectivity to the remainder of its estate, ensuring consistent oversight and centralised control across all sites. For universities and multi-site organisations, the combination of MxPro 5 and AdvancedLive provides a powerful foundation for safe, efficient and sustainable fire system management.

Located in Calama, in Chile’s Antofagasta Region, El Loa Aerodrome is a strategic airport serving one of the country’s most important mining zones. With more than 1.4 million passengers handled annually, the airport plays a vital role in supporting regional mobility, business travel, and the operational needs of Chile’s mining industry. As passenger traffic continued to grow, El Loa Aerodrome required a more advanced security infrastructure capable of supporting continuous monitoring, passenger traceability, and reliable operation in a high-demand airport environment. Critical aviation workflows Challenges - El Loa Aerodrome needed a security system that could provide complete coverage across both indoor and outdoor areas. The client required continuous monitoring of the terminal, runway, boarding areas, restricted zones, corridors, waiting halls, and boarding gates, without blind spots. Another key challenge was passenger and luggage identification. In a busy airport environment, DGAC needed to accurately identify passengers and their baggage in real time, helping improve traceability and strengthen response capabilities in the event of incidents. The airport also had to manage security under high passenger flow. With more than 1.4 million passengers each year and continued growth in demand, the solution had to support daily operations without creating disruption. At the same time, it needed to integrate smoothly with DGAC’s existing systems and critical aviation workflows. Intelligent video surveillance system Solutions - To address these needs, Dahua Technology provided an integrated intelligent video surveillance system designed for critical airport environments. The solution combined high-definition monitoring, real-time visualization, continuous recording, remote access, and intelligent identification capabilities to support the airport’s operational requirements. Dahua bullet and dome cameras were installed in strategic areas across the airport, including the terminal, runway, boarding zones, and restricted areas. These cameras enabled high-definition monitoring of key locations and helped ensure that important operational spaces remained visible at all times. Real-time monitoring The system was designed to cover 100% of the airport’s critical zones, including corridors, waiting halls, and boarding gates. This helped DGAC establish a more complete security view of the facility, reducing blind spots and improving situational awareness across the building. A dedicated integrated monitoring centre was also implemented, allowing the operations team to view live video in real time. With remote access and continuous recording, the control room provided a reliable platform for daily supervision, incident verification, and security coordination. In addition, Dahua’s intelligent identification technology enabled the client to identify passengers and luggage more precisely. This improved traceability throughout the aerodrome and strengthened the team’s ability to respond quickly and effectively when security incidents occurred. Results - With Dahua’s intelligent video surveillance solution, El Loa Aerodrome significantly enhanced its security operations. The system now supports the safe management of more than 1.4 million passengers annually, while providing 24/7 real-time monitoring across the facility.

Comelit-PAC has worked with The Hillcrest Group of Companies to upgrade the door entry system at the Mary Slessor Building, combining GDX Next with Housing Central to simplify access management and support a more efficient service for residents and housing teams. The Mary Slessor Building in Dundee is a residential apartment block comprising eight apartments. When reviewing options for the upgrade, Hillcrest was looking for a video door entry solution to provide a reliable experience for residents while supporting more efficient day-to-day management. Existing cabling infrastructure A key requirement was the ability to utilise the building's existing wiring infrastructure, helping to minimise disruption and avoid the additional time and cost often associated with replacement projects. To meet these requirements, Hillcrest selected GDX Next, Comelit-PAC's door entry platform designed for social housing and residential environments. Covering the building's main entrance and all eight apartments, the system was installed using the existing cabling infrastructure, allowing the upgrade to be completed without extensive rewiring works throughout the building. Reducing installation costs Mike Biggam, Operations Supervisor (Electrical) at The Hillcrest Group of Companies, said: "We required a video door entry solution that would be reliable for residents while making the system easier for our teams to manage. The ability to retain the existing wiring infrastructure was a significant factor in our decision, helping minimise disruption and reduce installation costs. Combined with Housing Central, GDX Next has given us a more efficient way to manage access across the building." Alongside the door entry upgrade, Hillcrest implemented PAC's Housing Central platform to provide cloud-based management of access credentials. Through a centralised system, authorised personnel can manage access permissions remotely, reducing the need for routine site visits and enabling changes to be made quickly when required. Access management projects For Hillcrest, the project has delivered benefits for both residents and operational teams. Residents now have access to a video door entry system designed to support secure and convenient visitor management, while housing teams can administer access permissions remotely through a single platform. This provides greater visibility of the system and reduces the time required to manage routine access-related tasks. Margaret-Ann Sheppard, Business Development Manager at Comelit-PAC, concluded: "Successful access management projects start with understanding how our customers operate. By working closely with Hillcrest and understanding its requirements, we were able to deliver a solution that supports residents while giving housing teams greater visibility, flexibility and control over day-to-day access management."