Lithuania to block Chinese inverters with cybersecurity legislation

Facebook
Twitter
LinkedIn
Reddit
Email
SolarPower Europe has already said enhanced cybersecurity requirements should be introduced for components such as inverters. Image: BayWa r.e.

Lithuanian lawmakers have adopted legislation designed to limit the ability of Chinese inverter manufacturers to remotely access the country’s solar and wind power plants.

According to Lithuanian reports, 79 MPs voted in favour of the amendment to the Law on Electricity, which will impose greater security measures on electricity generation and information management systems to insulate them from the influence of “hostile countries”, as designated by the country’s National Security Strategy.

This article requires Premium SubscriptionBasic (FREE) Subscription

Unlock unlimited access for 12 whole months of distinctive global analysis

Photovoltaics International is now included.

  • Regular insight and analysis of the industry’s biggest developments
  • In-depth interviews with the industry’s leading figures
  • Unlimited digital access to the PV Tech Power journal catalogue
  • Unlimited digital access to the Photovoltaics International journal catalogue
  • Access to more than 1,000 technical papers
  • Discounts on Solar Media’s portfolio of events, in-person and virtual

Or continue reading this article for free

In the case of solar PV, this applies most obviously to Chinese inverter manufacturers. In theory, the digital and cloud infrastructure around inverters allows them to be remotely controlled, or turned off altogether, which can prove a security risk.

From 1 May 2025, operators of new Lithuanian power plants over 100kW in capacity will have to ensure that additional safeguards are in place for the information management systems and inverters at their sites. Existing sites will have to meet the requirements by 1 May 2026.

Lithuania is seeking to install 5.1GW of solar PV capacity by 2030 under its National Energy and Climate Plan (NECP), which was updated last year.

European solar trade bodies have previously called for greater cybersecurity strategies as digital infrastructure and data become increasingly important in the development of physical energy resources. The European Solar Manufacturing Council (ESMC) stated its approval of the Lithuanian law on Linkedin this morning, and called for the wider uptake of similar policies:

“ESMC welcomes these important changes included into the law. We are expecting and looking forward for such kind of decision to be replicated in the other EU Member States. The application of NZIA resilience criterion to all solar and wind power plants and storage devices irrespective of the installed power capacities is a good opportunity to prevent our information management systems from the remote controllability risks. (sic).”

In a paper published in July, SolarPower Europe called for a solar-specific strategy to address growing cybersecurity risks, including higher compliance requirements for inverters, tracker systems and batteries.

PV Tech Premium published an article from cybersecurity firm Claroty about the major risks facing the solar sector as it becomes a more prominent target for cyber attacks. The distributed nature of PV in comparison with traditional, vertically integrated fossil fuel generation plants makes it particularly vulnerable, Claroty’s William Noto wrote, and breaching one inverter can allow attackers to access others within the same network.

2 December 2025
Málaga, Spain
Understanding PV module supply to the European market in 2026. PV ModuleTech Europe 2025 is a two-day conference that tackles these challenges directly, with an agenda that addresses all aspects of module supplier selection; product availability, technology offerings, traceability of supply-chain, factory auditing, module testing and reliability, and company bankability.
10 March 2026
Frankfurt, Germany
The conference will gather the key stakeholders from PV manufacturing, equipment/materials, policy-making and strategy, capital equipment investment and all interested downstream channels and third-party entities. The goal is simple: to map out PV manufacturing out to 2030 and beyond.

Read Next

June 30, 2025
Eni subsidiary Plentiude has started operations at the northern block of its 330MW Renopool solar portfolio in Spain.
June 30, 2025
Australian module manufacturer Tindo Solar has secured a 30MW solar module supply agreement to power Australia's first "net zero pipeline”.
June 27, 2025
Renewables investment platform Nexwell Power has signed a round of power purchase agreements (PPAs) with “one of the largest” US tech companies for solar PV capacity to be built in Spain.
June 27, 2025
Statkraft has signed PPAs with Better Energy to purchase energy from two solar power plants in Poland with a total capacity of 64GWh.
June 27, 2025
Solar developer Lightsource bp has signed a power purchase agreement (PPA) with a subsidiary of Taiwanese energy firm HD Renewable Energy (HDRE).
June 27, 2025
PV Tech spoke to Monika Paplaczyk about recent changes in the UK energy mix and opportunities for investors in the solar sector.

Subscribe to Newsletter

Upcoming Events

Upcoming Webinars
June 30, 2025
10am PST / 6pm BST
Solar Media Events
July 1, 2025
London, UK
Solar Media Events
July 1, 2025
London, UK
Media Partners, Solar Media Events
July 2, 2025
Bangkok, Thailand
Media Partners, Solar Media Events
September 2, 2025
Mexico City, Mexico