当前位置:首页 > 报告详情

深入剖析电网漏洞:影响太阳能发电系统的新漏洞和攻击.pdf

上传人: 竿*** 编号:981793 2025-11-29 45页 3.30MB

1、#BHAS BlackHatEventsA Closer Look at the Gaps in the Grid:New Vulnerabilities and Exploits Affecting Solar Power SystemsDaniel dos Santos,Francesco La Spina,Stanislav DashevskyiForescout Technologies#BHAS BlackHatEventsWho we areDaniel dos SantosFrancesco La Spina#BHAS BlackHatEventsPart 1:Motivatio

2、n and Background#BHAS BlackHatEventsWhy analyze solar power systems?Image sources:https:/en.wikipedia.org/wiki/Growth_of_photovoltaicshttps:/www.ief.org/news/the-remarkable-rise-of-solar-powerhttps:/www.iea.org/news/how-solar-energy-could-be-the-largest-source-of-electricity-by-mid-century#BHAS Blac

3、kHatEventsOverview of solar power systemsUserManufacturer cloudInverterSolar PanelsPower GridCommsdongleMobileappSolar PV panels generate DC power,which is converted to AC by invertersThese inverters are grid-connected andcloud-connected IoT devicesEnable remote monitoring and managementSometimes re

4、quire an extra dongle/data loggerLarge attack surfaceInverters(comm dongles)are not supposed to be accessible directly via the internetHowever,they are managed via the vendors cloud,web apps and mobile appsLots of other components we dont include in this talk:batteries,EV chargers,etc.HTTPMQTTModbus

5、Web appNetworkSerialElectricLegend#BHAS BlackHatEventsExample 1:Growatt architecture and appImage source:https:/ BlackHatEventsExample 2:Sungrow iSolarCloudImage source:http:/:8181/docs/a1-0/d3.md#BHAS BlackHatEventsExample 2:Sungrow iSolarCloud App#BHAS BlackHatEventsExample 2:Sungrow WiNet-S dongl

6、eRemember that they should not be accessible?2,600 with exposed HTTP server on ShodanThousands more similarly exposed from other manufacturersMillions more managed via apps/cloudsImage source:https:/ query:https:/www.shodan.io/search?query=http.favicon.hash%3A792201344#BHAS BlackHatEventsSolar power

word格式文档无特别注明外均可编辑修改,预览文件经过压缩,下载原文更清晰!
三个皮匠报告文库所有资源均是客户上传分享,仅供网友学习交流,未经上传用户书面授权,请勿作商用。
根据《A Closer Look at the Grid: New Vulnerabilities and Exploits Affecting Solar Power Systems》报告,以下是全文关键点: 1. 太阳能系统,特别是逆变器,存在大量安全漏洞,攻击面广泛。 2. 93个已知漏洞影响34个供应商,其中80%为高或临界风险。 3. 2022年以来,有六个漏洞被网络机器人利用。 4. 研究发现46个漏洞影响SMA、Growatt和Sungrow等三家公司。 5. SMA存在远程代码执行漏洞,Growatt存在数据泄露和账户接管漏洞,Sungrow存在多个IDOR和硬编码凭证问题。 6. 攻击者可能通过MQTT协议控制逆变器,影响电网稳定性。 7. 研究建议用户和制造商加强安全措施,包括更改默认密码、定期更新软件、进行渗透测试等。
安全危机!" 黑客的下一个目标?" 光伏系统漏洞如何影响我们?"
客服
商务合作
小程序
服务号
折叠