Rogue communication devices found in Chinese inverters

-editor- May 14, 2025
Made in China

In a startling revelation, U.S. energy officials have discovered undocumented communication devices embedded within Chinese-manufactured power inverters—critical components in renewable energy infrastructure. These rogue devices, capable of bypassing established firewalls, pose significant risks to national security by potentially allowing remote manipulation of energy systems.

The Discovery

Power inverters, essential for converting and directing energy from sources like solar panels and wind turbines into usable electricity, are predominantly produced in China. While these devices are designed for remote access to facilitate updates and maintenance, U.S. experts conducting security assessments have identified additional, undocumented communication modules, including cellular radios, within some units. These components were not listed in product documentation and could enable unauthorized remote control, potentially leading to grid destabilization or widespread blackouts.

National and International Repercussions

The discovery has intensified scrutiny over the reliance on Chinese technology in critical infrastructure. The U.S. Department of Energy (DOE) acknowledged the challenges posed by undisclosed functionalities in imported equipment and emphasized the need for comprehensive assessments of emerging technologies to ensure national security.

In response, some U.S. utilities, such as Florida Power & Light Company, are actively seeking alternatives to Chinese inverters to mitigate potential risks. Additionally, legislative measures are being considered to restrict the procurement of batteries and other energy components from Chinese firms linked to national security concerns.

European Measures

The concerns are not confined to the United States. Lithuania has enacted legislation to prohibit remote access by Chinese manufacturers to the control systems of solar, wind, and energy storage facilities exceeding 100 kW in capacity. The law, effective from May 1, 2025, for new installations and May 1, 2026, for existing ones, aims to safeguard the nation’s energy infrastructure from potential cyber threats.

Similarly, Estonia’s Foreign Intelligence Service has raised alarms about the risks associated with integrating Chinese technology into critical infrastructure, including the potential for espionage and disruption of energy systems.

Industry Response

The European Solar Manufacturing Council (ESMC) has expressed support for Lithuania’s proactive measures and advocates for similar actions across the European Union. The ESMC emphasizes the importance of preventing unauthorized remote control capabilities in energy systems to ensure the resilience and security of the power grid.

Conclusion

The uncovering of unauthorized communication devices in Chinese-manufactured inverters underscores the pressing need for rigorous security assessments and transparent supply chains in the energy sector. As nations worldwide transition to renewable energy sources, ensuring the integrity and security of the supporting infrastructure remains paramount.

For further information, please refer to the original Reuters report: Ghost in the machine? Rogue communication devices found in Chinese inverters.

 

More Stories

Marks & Spencer

M&S Confirms Customer Data Breach After Cyber Attack

-editor- May 15, 2025
Tuomas Valimaki

Nordics Plan Offline Card Payments to Counter Cyber Sabotage Threats

-editor- May 11, 2025
Apple Safari browser

Apple’s AI Search Ambitions Threaten Google’s Online Dominance

-editor- May 10, 2025