First Solar Exceeds Q1 Expectations Amid Robust Demand and Strategic Capacity Expansion
Key Insights
The European Commission has delayed its anticipated probe into cybersecurity risks posed by Chinese solar panel inverters, despite earlier commitments to investigate.
Industry experts warn that significant volumes of Chinese solar hardware, potentially vulnerable to remote access, are already installed across Europe, threatening grid stability.
Concerns center on the potential for hostile actors to compromise over three gigawatts of solar capacity, which could lead to widespread blackouts if exploited.
Lobby groups are urging immediate EU-level risk assessments and the development of industry-specific regulations to mitigate these escalating cybersecurity threats.
Brussels, August 1, 2025 – The European Commission has yet to initiate its long-anticipated investigation into cybersecurity vulnerabilities within the solar panel supply chain, a delay that industry experts warn is exposing the European grid to significant risks. Despite commitments made in March to probe potential threats from Chinese-manufactured solar inverters, which convert photovoltaic energy for grid integration, no formal assessment has commenced as the Commission enters its summer recess. This inaction comes amidst escalating concerns that foreign components could allow hostile actors remote access to critical energy infrastructure, potentially compromising grid stability across the continent.
The Commission had indicated in March its intent to investigate risks associated with solar panel inverters, particularly their susceptibility to remote manipulation. These concerns were amplified in May following reports of suspicious Chinese components found in solar installations within the United States. However, a Commission spokesperson confirmed to Euractiv that “no risk assessment has started,” offering no specific timeline for its commencement, only stating that an investigation "could start soon."
This regulatory inertia is alarming industry stakeholders who highlight the rapid deployment of potentially vulnerable hardware across Europe. More than ten companies are estimated to have access to over three gigawatts (GW) of solar capacity, a volume that, if compromised, could severely threaten grid stability and precipitate widespread blackouts. Christoph Podewils, secretary-general at the European solar producer lobby group ESMC, emphasized the urgency, stating, “Time is of the essence.” He warned that approximately 200 GW of Chinese inverters, which are internet-controlled and receive regular software updates, could potentially be used to install malicious code.
Jan Osenberg, head of system integration at the SolarPower Europe lobby group, echoed these sentiments, asserting, “It’s crucial that we have an EU-level risk assessment sooner rather than later.” He further advocated for the development of “industry-specific regulations” to effectively address these emerging cybersecurity threats, noting that an “EU assessment is the next step in delivering that framework.”
The volume of potentially vulnerable equipment continues to grow. The EU imported approximately 100 GW of these panels in 2024, with similar import levels projected for the current year. This ongoing influx underscores the critical need for immediate regulatory action to safeguard Europe's rapidly expanding solar energy infrastructure against potential cyber exploitation and ensure the resilience of its power grids.