U.S. energy officials are reviewing security risks posed by Chinese-made components in renewable energy systems after discovering hidden communication devices in some units, according to a report by Reuters.
The report revealed that undocumented components were found in several solar inverters and batteries made in China. These reviews are part of ongoing efforts by U.S. agencies to identify and mitigate vulnerabilities in imported energy technology.
Solar inverters, which convert solar energy into usable electricity for the power grid, are largely produced in China. Often described as the “brain” of solar systems, these devices manage power output and grid communication.
U.S. officials found communication modules in some Chinese-made inverters that were not listed in product specifications. Similar hidden features, including cellular radios, were reportedly found in batteries made in China.
Experts told Reuters that these extra components could allow unauthorized remote access, potentially bypassing cybersecurity protections. Such access could enable attackers to shut down or damage parts of the power grid.
The Department of Energy confirmed it is working to tighten oversight of hardware capabilities in imported systems. Officials declined to name specific manufacturers or disclose the number of units inspected.
Former National Security Agency Director Mike Rogers told Reuters the findings suggest China may be seeking to place Western infrastructure at risk. Representative August Pfluger, a member of the House Homeland Security Committee, said the Chinese government is targeting U.S. infrastructure and called for stronger controls on foreign equipment.
In February, lawmakers introduced the Decoupling from Foreign Adversarial Battery Dependence Act. The bill would bar the Department of Homeland Security from purchasing batteries from six Chinese firms starting in 2027. The list includes CATL, BYD, and Envision Energy. The legislation remains under review.
Concerns over bugged solar equipment have spread to Europe. The European Solar Manufacturing Council warned that more than 200 gigawatts of the continent’s solar capacity rely on inverters, many of them Chinese-made. The group called the threat “systemic” and urged the European Commission to establish stricter cybersecurity standards and require full disclosure of software components in imported devices.
SolarPower Europe and cybersecurity firm DNV recently published a joint report that labeled digital inverters as a critical vulnerability in the power grid. The report warned that a cyberattack affecting just 3 gigawatts of solar capacity could cause significant disruptions.
According to energy consultancy Wood Mackenzie, Chinese companies Huawei and Sungrow controlled more than 50 percent of the global solar inverter market in 2023. While neither company was named in the U.S. review, utilities are bracing for potential restrictions on Chinese-made inverters.
At a recent industry event in Munich, a European inverter manufacturer told PV Tech that the risk of remote shutdowns is real. The executive likened the threat to Russia’s gas supply cutoff during the Ukraine conflict, warning that few expected such a move until it happened.
