A Closer Look at the Gaps in the Grid: New Vulnerabilities and Exploits Affecting Solar Power
Black Hat Asia 2025 · Day 2 · Briefings
This talk, presented by Daniel and Franchesca from Forescout Technologies, delves into critical cybersecurity vulnerabilities discovered in widely deployed solar power systems. As solar energy rapidly expands globally, projected to become the largest source of electricity by mid-century, the security posture of its underlying infrastructure becomes paramount. The research highlights significant gaps in the security maturity of leading solar inverter manufacturers, demonstrating how these weaknesses could be exploited to compromise individual installations or even orchestrate attacks with potential destabilizing effects on regional power grids.
AI review
This talk from Forescout cuts through the noise and delivers. They've dropped a bomb on the solar energy sector, exposing critical vulnerabilities across major inverter manufacturers. The deep dive into Xtensa ROP for Sungrow dongles isn't just academic; it's a blueprint for grid-scale attacks. This isn't just another 'IoT security' talk; it's a stark, actionable warning about a rapidly expanding attack surface that could genuinely destabilize power grids. Essential viewing for anyone serious about critical infrastructure security.