Prepare for cyber-physical attacks

SMART Access & Identity 2024 Information Security, Access Control & Identity Management

As the security landscape continues to evolve, organisations must fortify their security solutions to embrace the changing needs of the security and technology industries. Nowhere is this more present than with regard to cybersecurity. As the threat of cyber-physical attacks grows in number and complexity, organisations worldwide will be forced to reconsider the preparedness of their cybersecurity and physical security systems.

In Gallagher’s Security Industry Trends Report1 released in December 2023, Gallagher Security Cyber Architect, Rob Cowsley says, “Cybersecurity and physical security are often inherently linked to one another; it is difficult to have a secure physical solution without considering elements of cybersecurity, and impossible to avoid physical components within a cyber-secure environment. It is becoming increasingly important for businesses to consider both to achieve a holistic security solution.”

To address the shifting needs of organisations and use feedback from its end users and channel partners, Gallagher continues its commitment to customer-centric manufacturing and innovation to address its customers’ current and emerging security needs.

In November 2023, Gallagher released the Controller 7000 (C7000). Designed to deliver stronger cyber protection, new capabilities, scalability, and functionality, the C7000 will help organisations fortify their protections in preparation for future unknown threats.

The C7000 has been developed with powerful cybersecurity functionality; only Gallagher-approved firmware can run on the device, software with known vulnerabilities is prevented from being installed, it is impossible to clone or counterfeit the device, critical cryptographic keys are stored securely; and security infrastructure generates, processes, and stores cryptographic keys and certificates, preventing supply chain attacks. Altogether, the C7000’s layers of baked-in cyber protections equip users with responsive and adaptable technology to safeguard against sophisticated cyber threats for many years to come.

“We hold our products to a higher standard by subjecting them to some of the most rigorous testing in the industry; employing a combination of in-house and third-party penetration testing and collaborating with everyone, from standards accrediting bodies, to hobbyist hackers to fortify our solutions against the threats of the future. As a result, our solutions meet the cybersecurity needs of both commercial entities and those operating in high security, like government bodies, militaries, and critical infrastructure sites,” says Cowsley.

Cybersecurity is not exclusively up to the manufacturer. End users also bear responsibility for maintaining their systems to protect against threats.

One major source of vulnerability is outdated hardware. As cyber risks evolve, out-of-support hardware that no longer receives security updates, or is unable to use the latest protections, leaves end users open to attacks that could have been prevented by an upgrade. Many hackers who find vulnerabilities are finding them in legacy hardware, further exposing the danger these parts pose to end users and the people, data, and assets they aim to protect.

Even running routine regular audits on systems can be an effective tool to safeguard against threats. Audits can reveal problems like blank passwords on highly privileged accounts, or tampering with door sensors, enabling end users to maintain their defences and safeguard against their own worst-case scenarios.

Maintaining cybersecurity can be a challenge, especially as the threat landscape evolves at such a rapid pace. Technologies with built-in cybersecurity reduce the burden of maintenance on users and help ensure systems remain up-to-date and fortified against threats. As Gallagher’s future growth and product roadmap develops, C7000 users will have the foundation in place to immediately benefit from new developments and features as they are released through streamlined updates. Users will have continuous value delivered over the lifespan of the controller, making the return on investment in cybersecurity and functionality worth it for many years to come.

“Cybersecurity is not a destination; it is a continuous journey, and only those prepared to evolve alongside the threat landscape will be able to take their customers on that journey with them,” concludes Cowsley.

[1] www.securitysa.com/*gallagher5


Credit(s)




Share this article:
Share via emailShare via LinkedInPrint this page



Further reading:

Managed security solutions for organisations of all sizes
Information Security News & Events
Cyber attackers have become significantly more sophisticated and determined, targeting businesses of all sizes. PwC’s Global Digital Trust Insights Survey 2025 Africa and South Africa highlights the urgent need for organisations to implement robust cyber risk mitigation strategies.

Read more...
Data resilience at VeeamON
Technews Publishing SMART Security Solutions Infrastructure Information Security
SMART Security Solutions attended the VeeamON Tour in Johannesburg in August to learn more about data resilience and Veeam’s initiatives to enhance data protection, both on-site and in the cloud.

Read more...
Identity, Security & Access Alliance focuses on intelligence and integration
SMART Security Solutions Ideco Biometrics BoomGate Systems Bosch Building Technologies Technews Publishing Integrated Solutions Surveillance Access Control & Identity Management
The Identity, Security & Access Alliance (ISAA) hosted several launch events in Johannesburg in August, showcasing the participating companies’ technical solutions with a primary focus on the solutions made possible by integrating high-quality systems to deliver comprehensive solutions.

Read more...
Troye exposes the Entra ID backup blind spot
Information Security Infrastructure
If you trust Microsoft to protect your identity, think again. Many organisations naively believe that Microsoft’s shared responsibility model covers Microsoft Entra?ID – formerly Azure AD – but it does not.

Read more...
Secure data protection without hardware lock-in
Infrastructure Information Security News & Events
New Veeam Software Appliance empowers IT teams to achieve instant protection with Veeam’s fully preconfigured, software-only appliance, delivering enterprise-ready simplified deployment and operational efficiency, robust cyber resilience.

Read more...
Check Point launches open, vendor-neutral MDR services
Information Security News & Events Products & Solutions
New Check Point MDR 360° and MXDR 360° offerings deliver 24/7 managed continuous threat monitoring protection across endpoints, cloud and network environments with built-in identity threat detection and 160+ integrations across hybrid, multi-vendor environments.

Read more...
Credential theft surges in South Africa
NEC XON Information Security
NEC XON issues a critical cybersecurity warning about the dual threat of massive credential theft and AI-powered cyberattacks sweeping across the region, with an increasing number of incidents and evolving threat tactics.

Read more...
Want effective Attack Surface Management? Think like an attacker.
Information Security
Effective ASM requires companies to think like attackers, anticipate risks, and act decisively to reduce exposure by knowing their environment, deploying a structured approach, leveraging capable tools, and addressing both internal and external risks.

Read more...
The growing role of hybrid backup
Infrastructure Information Security
As Africa’s digital economy rapidly grows, businesses across the continent are facing the challenge of securing data in an environment characterised by evolving cyberthreats, unreliable connectivity and diverse regulatory frameworks.

Read more...
POPIA non-compliance puts municipalities at risk
Information Security Government and Parastatal (Industry)
Digital responsibility must go beyond POPIA compliance to recognising that privacy and service delivery are fundamentally linked. Despite this, only 51 out of 257 municipalities submitted their mandatory data protection and access to information reports in 2024.

Read more...










While every effort has been made to ensure the accuracy of the information contained herein, the publisher and its agents cannot be held responsible for any errors contained, or any loss incurred as a result. Articles published do not necessarily reflect the views of the publishers. The editor reserves the right to alter or cut copy. Articles submitted are deemed to have been cleared for publication. Advertisements and company contact details are published as provided by the advertiser. Technews Publishing (Pty) Ltd cannot be held responsible for the accuracy or veracity of supplied material.




© Technews Publishing (Pty) Ltd. | All Rights Reserved.