Solar panel stations could fall prey to this devious security hack

Craig Hale

July 6, 2023 at 10:10 AM·2 min read

Renewable energy stations, particularly in Japan, could be at risk of disruption by hackers thanks to a Contec product vulnerability that has been exploited.

Japanese company’s SolarView products enable active monitoring of solar farms, and have been installed in an estimated 30,000 locations to date according to company information.

The vulnerability, which has been tracked as CVE-2022-29303 since it was identified in April, was awarded a score of 9.8 out of 10, making it ‘critical.’

Smart solar panel modules hack

This, along with more than 20 other exploits, forms part of what Palo Alto Networks describes as a mission to spread a variant of the Mirai botnet. IoT devices have been a clear target of the attacks, with victims including TP-Link, Netgear, and Zyxel.

> These are the best malware removal tools

> A new Mirai variant is targeting IoT devices - here's how to stay safe

> CISA is worried that critical infrastructure is vulnerable to ransomware attacks

This is especially troubling because the Mirai botnet which was first discovered in 2016 shows no signs of slowing down. That, in combination with the rise in IoT devices, presents potential for widespread disruption.

For SolarView products in particular, the CVE description reads: “SolarView Compact ver.6.00 was discovered to contain a command injection vulnerability via conf_mail.php.”

VulnCheck suggests that at least 600 SolarView systems are indexed on Shodan, a search engine used to locate Internet-connected devices. While it’s unclear how many devices are still running firmware version 6.00 from 2019, it’s clear that a substantial number of solar panel operators could be at risk of disruption. Furthermore, VulnCheck believes that the vulnerability has existed since at least version 4.00. The most up-to-date version is now 8.10.

Contec, the maker of the SolarView series, has not published any information on the security concern, but general advice to keep all Internet-connected devices updated to the latest firmware still stands.

Boost your home or business cybersecurity with the best endpoint protection software and best firewalls

Yahoo Sports
Best RBs for 2024 fantasy football, according to our experts
The Yahoo Fantasy football analysts reveal their first running back rankings for the 2024 NFL season.
Yahoo Sports
Ranking all MLB City Connect jerseys, from the Dodgers at No. 28 to the Marlins at No. 1
With every participating team having released their set, let's rank and grade them all.
Yahoo Life
Dwayne 'the Rock' Johnson is showing off his gnarly bruise from a ruptured bursa sac. What is that?
It probably looks worse than it is: Experts say Johnson's elbow injury should heal on its own.
Yahoo Sports
U.S. Open: Phil Mickelson’s long walk into the sunset
Lefty never did get his U.S. Open win, and it's looking like he never will.
Yahoo Sports
Something’s up with the Braves, Paul Skenes’ standing ovation, the Dodgers make a trade
Jake Mintz and Jordan Shusterman examine what’s wrong with the 2024 Atlanta Braves, Paul Skenes receiving a standing ovation on the road, the Dodgers making a trade and MLB dropping the ball in regards to Rintaro Sasaki.
Yahoo Celebrity
As the WNBA surges in popularity, all eyes are on its players. Stylists share what it's like to dress the league's stars.
All eyes are on the WNBA and its players. Their stylists are rising to the occasion.
Yahoo Sports
Charles Barkley announces he will retire from broadcasting after 2024-25 season
Next season will be the end of an era for both TNT and Charles Barkley.
Yahoo Sports
Michael Chandler responds after Conor McGregor pulls out of long-awaited UFC 303 fight
It's really hard to overstate just how badly agreeing to fight Conor McGregor has worked out for the 38-year-old Chandler.
Yahoo Sports
Alex Verdugo goes full heel after homering on first pitch at Fenway Park since Yankees-Red Sox trade
The Red Sox traded Verdugo to the Yankees last offseason.
Yahoo Life Shopping
Shocking storage unit horror stories from Reddit – and how to avoid your own
Storage units can be sketchy places, and these disasters from Redditors are perfect examples of why.
Yahoo Sports
Houston Astros release first baseman José Abreu
The Astros released Abreu, who is still owed more than $30 million, after sending him to the minors in April.
Yahoo Sports
Best fantasy football quarterbacks for 2024, according to our experts
The Yahoo Fantasy football analysts reveal their first quarterback rankings for the 2024 NFL season.
Yahoo Sports
College World Series 2024 Day 1: Tennessee and North Carolina both earn walk-off wins
Day 1 of the College World Series began with a dramatic walk-off win for North Carolina over Virginia and Florida State surprising Tennessee.
Yahoo Personal Finance
Should you open a savings account or CD before the Fed's next meeting?
The Fed is set to meet this month and decide whether to adjust the federal funds rate. Here’s how that decision might influence your savings and CD interest earnings.
Yahoo Life Shopping
Margot Robbie just rocked these New Balance sneakers shoppers say 'are like walking on air'
Need comfortable, supportive shoes for summer? Shoppers give these celeb-approved kicks high marks.
Yahoo Sports
Conor McGregor withdraws from UFC 303 main event vs. Michael Chandler due to injury, Dana White announces
Conor McGregor's three-year layoff from the UFC is getting even longer.
Yahoo Finance
Chinese EVs are 'driving into Mexico' — and it's starting to worry the US
The early success of Chinese brands in Mexico and Latin America offers a glimpse into the expansion strategy for these carmakers outside of the world’s largest EV market.
Yahoo Sports
Fantasy football tight end rankings 2024
The Yahoo Fantasy football analysts reveal their first tight end rankings for the 2024 NFL season.
Autoblog
2025 Ford Expedition spy photos reveal major exterior overhaul
2025 Ford Expedition full-size SUV spy photos show a significantly changed exterior that takes cues from the recently updated F-150 pickup truck.
Yahoo Sports
One big thing for every NFC team heading into the 2024 season, Falcons fined for tampering | Zero Blitz
Jason Fitz and Frank Schwab talk about one big question they have for every NFC team as we head into the 2024 season, as well as the NFL fining the Falcons for tampering and the new “Receiver” show to debut soon.

News

Life

Entertainment

Finance

Sports

New on Yahoo

Solar panel stations could fall prey to this devious security hack

Smart solar panel modules hack

Recommended Stories

Best RBs for 2024 fantasy football, according to our experts

Ranking all MLB City Connect jerseys, from the Dodgers at No. 28 to the Marlins at No. 1

Dwayne 'the Rock' Johnson is showing off his gnarly bruise from a ruptured bursa sac. What is that?

U.S. Open: Phil Mickelson’s long walk into the sunset

Something’s up with the Braves, Paul Skenes’ standing ovation, the Dodgers make a trade

As the WNBA surges in popularity, all eyes are on its players. Stylists share what it's like to dress the league's stars.

Charles Barkley announces he will retire from broadcasting after 2024-25 season

Michael Chandler responds after Conor McGregor pulls out of long-awaited UFC 303 fight

Alex Verdugo goes full heel after homering on first pitch at Fenway Park since Yankees-Red Sox trade

Shocking storage unit horror stories from Reddit – and how to avoid your own

Houston Astros release first baseman José Abreu

Best fantasy football quarterbacks for 2024, according to our experts

College World Series 2024 Day 1: Tennessee and North Carolina both earn walk-off wins

Should you open a savings account or CD before the Fed's next meeting?

Margot Robbie just rocked these New Balance sneakers shoppers say 'are like walking on air'

Conor McGregor withdraws from UFC 303 main event vs. Michael Chandler due to injury, Dana White announces

Chinese EVs are 'driving into Mexico' — and it's starting to worry the US

Fantasy football tight end rankings 2024

2025 Ford Expedition spy photos reveal major exterior overhaul

One big thing for every NFC team heading into the 2024 season, Falcons fined for tampering | Zero Blitz