A security firm has found that some wind turbines and solar electricity systems are vulnerable to easy exploits. It was found that the manufacturers had completely failed to include security features.
The possible consequence of a cyber attack is the interruption of energy supplies. According to the Industrial Control Systems Cyber Emergency Response Team (ICS-CERT), the most disconcerting aspect related to the security vulnerabilities is the low level of skill necessary for their exploitation.
The security outfit, Maxim Rupp were able to establish that the XZERES 442SR Wind Turbine; Sinapsi eSolar Light; and the RLE Nova-Wind Turbine have several security flaws.
The XZERES 442SR has a vulnerability that would allow a hacker to alter the root password and change the direction of the wind vane.
It was found that the RLE Nova-Wind Turbine the passwords to access the web interface are stored in a plaintext file.
RLE International have not commented on the vulnerabilities at the time of writing.
0 comments:
Post a Comment