The Software That Keeps the Lights On During Blackouts Just Became an Attack Surface
The software that gracefully shuts down servers when the power fails — the digital safety net for hospitals, data centers, and utility control rooms — has vulnerabilities that let attackers do something more insidious than crash systems: rewrite the evidence. CISA's alert on Schneider Electric's PowerChute Serial Shutdown flags flaws that allow forging log data, resetting credentials, and overwriting critical files. That combination targets not just uptime, but the ability to know what happened at all.
Bottom Line
This is a moderate-severity vulnerability with an outsized conceptual lesson: the quiet software that manages backup power in critical facilities can be turned against the very concept of detection. No exploitation has been reported, and patching is straightforward — but the flaws' ability to forge logs and reset credentials means a patient attacker could use this layer to hide, not just to disrupt. The fix is easy; the blind spot it reveals is not.