this post was submitted on 16 Dec 2024
29 points (100.0% liked)

Technology

37800 readers
489 users here now

A nice place to discuss rumors, happenings, innovations, and challenges in the technology sphere. We also welcome discussions on the intersections of technology and society. If it’s technological news or discussion of technology, it probably belongs here.

Remember the overriding ethos on Beehaw: Be(e) Nice. Each user you encounter here is a person, and should be treated with kindness (even if they’re wrong, or use a Linux distro you don’t like). Personal attacks will not be tolerated.

Subcommunities on Beehaw:


This community's icon was made by Aaron Schneider, under the CC-BY-NC-SA 4.0 license.

founded 2 years ago
MODERATORS
 

All it takes is one hacker and a batch of faulty solar panels to threaten the safety of Europe’s electric grid.

Vangelis Stykas, a cybersecurity consultant, said he figured out how to do it. Using a laptop and smartphone at his home in Thessaloniki, Greece, Stykas bypassed firewalls in panels around the world and gained access to more power than runs through Germany’s entire system.

The “white-hat hacker,” who tests software so companies can fix flaws, said he got far enough inside the controls that he could have turned the devices off, dramatically tipping the supply-demand balance for the power network. Such a drastic fluctuation could stress a grid to the point where it shuts down as a fail-safe, he said.

The exponential growth of rooftop solar systems means millions more connection points to the grid, creating a massive vulnerability that hackers could exploit. The most serious impact may be cascading grid failures across the continent. That risk is a growing concern for utilities and governments dealing with more cyberattacks every year.

[...]

The average number of weekly cyberattacks on utilities worldwide doubled within two years to about 1,100, and they’re occurring more frequently as digitalization takes hold, the International Energy Agency said. The European Union suffered more than 200 reported cyberattacks on energy infrastructure last year, and that number has “largely increased in recent years.”

[...]

“There’s some naivete about the risk,” Harry Krejsa, director of studies at the Carnegie Mellon Institute for Strategy & Technology in Pittsburgh, told the Columbia Energy Exchange podcast last week. “It should be more of a concern than is widely perceived today.”

[...]

The threat is serious enough that NATO ran a security drill in Sweden to find and fix vulnerabilities in solar, wind and hydroelectric systems.

The military alliance says it’s the world’s first such exercise, and the scenario comes amid wars in Ukraine and the Middle East, and the West’s fracturing relationships with Russia and China. The latter is the biggest maker of solar panels.

[...]

you are viewing a single comment's thread
view the rest of the comments
[–] 30p87@feddit.org 21 points 5 days ago (6 children)

Why do those things need network connectivity? I can only imagine for reading live power data to coordinate overall power production, but couldn't you just make it read only?

[–] thelucky8@beehaw.org 10 points 5 days ago (2 children)

This is a good question. There's is no reason why this -and a lot of other things imho- must be connected.

[–] Hirom@beehaw.org 6 points 5 days ago* (last edited 5 days ago)

In addition to not connecting stuff unnecessarily, connected devices that consume/produce lots of power need safeguards.

Like a random 0-60sec timer for remote power on/off operations. 50000 panels powering down over 60sec is easier to handle than if they do that simultaneously.

[–] Buelldozer@lemmy.today 2 points 5 days ago

How do you have a SmartGrid if the nodes aren't able to communicate with each other or log data?

load more comments (3 replies)