SafetyDetectives
$ United States dollar
$ United States dollar Euro£ British poundAED UAE dirhamARS Argentine pesoAU$ Australian dollarBGN Bulgarian levR$ Brazilian realCA$ Canadian dollarCHF Swiss francCLP Chilean pesoCN¥ Chinese yuanCOP Colombian pesoCZK Czech korunaDKK Danish kroneEGP Egyptian poundHK$ Hong Kong dollarHUF Hungarian forintIDR Indonesian rupiah Israeli new shekelINR Indian rupee¥ Japanese yen South Korean wonMX$ Mexican pesoMYR Malaysian ringgitNOK Norwegian kroneNZ$ New Zealand dollarPLN Polish złotyRON Romanian leuRUB Russian rubleSAR Saudi riyalSEK Swedish kronaSGD Singapore dollar฿ Thai bahtTRY Turkish liraNT$ New Taiwan dollarUAH Ukrainian hryvnia Vietnamese DongZAR South African rand

Researchers With Bitdefender Find Vulnerabilities Within Largest US Solar Grid

Tyler Cross
Tyler Cross Senior Writer
Published on: October 18, 2024
Tyler Cross Tyler Cross
Published on: October 18, 2024 Senior Writer

Researchers with the cybersecurity company Bitdefender exposed major vulnerabilities within the largest solar grid in the world.

Solarman and Deye’s PV plant management platforms produce more than 20 percent of the world’s solar energy and are critical components of the country’s power grid. Solar grids are quickly replacing traditional energy methods and creating a network of green energy worldwide.

While this is excellent news when it comes to beating global warming, it also means that having weak cybersecurity defenses could become a national disaster. These solar panels are often decentralized and each company has its cybersecurity standards.

Bitdefender’s researchers found a series of vulnerabilities that if acted upon would allow a threat actor to control inverter settings, essentially putting the entire grid at their fingertips — Solarman’s plants alone power over 10 million devices in more than 190 countries. A successful hack against them could cause international damage.

With the discovery of these vulnerabilities, it’s not unfair to say that for a brief moment, Bitdefender controlled 20% of the world’s solar power. Needless to say, this glaring threat was immediately reported to Solarman and Deye’s PV back in May 2022.

After several months of internal investigations and fixes, both companies have completely resolved the issues. Bitdefender confirmed the fixes by re-testing the same methods they used to hack into the plants in the first place.

However, this glaring vulnerability comes with some security implications.

“While most of our previous findings have a serious impact on the individual or on the internet itself, the flaws detailed in this research are fundamentally different,” Bitdefender explains in a recent blog post. “Access to devices interacting with the grid can have devastating effects on the proper functioning of the grid itself.”

If hackers had exploited either company, they could have stolen sensitive information and attempted to ransom or sell it on the dark web.

“These vulnerabilities pose a significant threat to grid security,” Bitdefender said.

About the Author
Tyler Cross
Tyler Cross
Senior Writer
Published on: October 18, 2024

About the Author

Tyler is a writer at SafetyDetectives with a passion for researching all things tech and cybersecurity. Prior to joining the SafetyDetectives team, he worked with cybersecurity products hands-on for more than five years, including password managers, antiviruses, and VPNs and learned everything about their use cases and function. When he isn't working as a "SafetyDetective", he enjoys studying history, researching investment opportunities, writing novels, and playing Dungeons and Dragons with friends.

Leave a Comment