#solarinverters — Public Fediverse posts

EU moves to ban high-risk inverters from China over cybersecurity threats

The European Commission will gradually eliminate the use of Chinese-made inverters in EU-funded energy projects, a major step…
#Europe #EU #EuropeanCommission #economicsecurity #energyinfrastructure #EnergySystems #energytransition #EUcountries #EU-fundedprojects #RenewableEnergy #solarinverters #theCommission #TheEuropeanCommission
https://www.europesays.com/europe/30679/

#Solarinverters, crucial for home energy installations, are becoming potential entry points for #cyberattacks. The #vulnerabilities in EG4 Electronics’ inverters, highlighted by CISA, underscore the industry-wide security concerns. The #aggregatevulnerability of a rapidly expanding network of interconnected devices raises concerns about the security of the #energygrid. https://techcrunch.com/2025/08/15/how-your-solar-rooftop-became-a-national-security-issue/?eicker.news #tech #media #news

malicious npm packages (again) targeting cryptocurrency projects, CEOs cranky over CVEs, and BlackLock gets pantsed - here's your Friday wrap up in Infosec News 👇

🔗 https://opalsec.io/daily-news-update-friday-march-28-2025-australia-melbourne/

Here's a quick rundown of what's inside:

📦 npm Package Nightmare: 10 packages compromised by an infostealer campaign targeting developer environments. Sensitive data was siphoned off to a remote host. Most of the packages are still available on npm, so be careful!
🦊 Firefox Flaw: A critical sandbox escape vulnerability (CVE-2025-2857) patched in Firefox 136.0.4. Windows users, update ASAP! This one's similar to a Chrome zero-day used in espionage campaigns.
🏥 Ransomware Reckoning: Advanced, a UK healthcare IT provider, slapped with a £3.1 million fine after a LockBit ransomware attack. Lack of vulnerability scanning and poor patch management were key factors.
🌐 Extension Exploitation: Browser extensions can be bought and repurposed, posing a sneaky threat to enterprises. An extension was bought for $50 and was quickly repurposed to redirect traffic.
⚡ Solar Scare: Dozens of vulnerabilities in solar inverters could let attackers disrupt power grids. Remote code execution, device takeover, and more are possible.
😠 CrushFTP Clash: CEO responds aggressively to VulnCheck after critical unauthenticated access vulnerability (CVE-2025-2825) is released. Vulnerability disclosure and patching processes need to be improved!
🕵️‍♀️ Pegasus in Serbia: Journalists targeted with Pegasus spyware, marking the third time in two years that Amnesty has found Pegasus deployed against Serbian civil society.
🤖 Mamont Malware: Russian authorities arrest three for developing the Mamont Android banking trojan. This malware steals financial data and spreads through Telegram.
🦹 Ransomware Reverse: Resecurity infiltrates the BlackLock ransomware gang, gathering intel to help victims. LFI vulnerability exploited, and data shared with authorities.

Stay vigilant out there, folks! 🛡️

#Cybersecurity #InfoSec #Vulnerability #Ransomware #Malware #npm #Firefox #Pegasus #SolarInverters #DataBreach #ThreatIntel #CyberThreats #SecurityNews #WebAppSec #ZeroDay #PatchManagement #infostealer #blacklock #crushftp #mamont

Sol-Ark manufacturer reportedly disables all Deye inverters in the US

https://solarboi.com/2024/11/17/sol-ark-oem-disables-all-deye-inverters-in-the-us/