35,000 Internet-Connected Solar Power Systems Vulnerable to Cyberattacks

Forescout Research Vedere Labs has uncovered that nearly 35,000 solar power devices, including inverters, data loggers, and gateways from 42 vendors, are exposed on the internet with vulnerable management interfaces.

Identified using the Shodan search engine, these devices represent a critical cybersecurity risk to global power grids, especially as renewable energy sources like solar power become integral to energy infrastructure.

Exposed Devices Pose Significant Grid Security Risks

Europe dominates with 76% of these exposed systems, primarily in Germany and Greece, while Asia accounts for 17%.

The findings highlight a growing threat landscape where attackers could exploit these systems for botnet integration or as entry points into sensitive networks, potentially destabilizing power grids already grappling with the challenges of renewable integration.

The research, building on the earlier SUN:DOWN report which disclosed 46 new vulnerabilities in solar power systems, emphasizes that while cloud-managed inverters pose ...