SaiFlow's Blog

Featured

Reduce MTTR with SaiFlow's AI-Powered Threat & Incident Assistant for Energy Runtime Security

Security teams protecting energy infrastructure face a critical blind spot: they can see network anomalies, but without energy context, they can't tell if an alert is a real attack or operational noise. SaiFlow's Threat & Incident Assistant bridges that gap in under 40 seconds, delivering AI-powered verdicts, evidence, and prioritized response actions that shrink your exposure window when every minute counts.

Latest insights and industry updates

image of a traffic control center (for a mobility and transportation)

SaiFlow and Check Point Software Technologies Partner to Secure EV Charging Sites and Distributed Energy Networks

The rapid adoption of Electric Vehicles (EVs) has spurred the growth of EV Charging Stations and Distributed Energy Resources installations
image of a traffic control center (for a mobility and transportation)

eMSP and CPOs Could Expose EV Chargers to OCPP Hijacking

The SaiFlow research team discovered how an adversary can abuse leaked charging stations’ identifiers to perform a wide-scale DoS attack on the public charging infrastructure.
image of a traffic control center (for a mobility and transportation)

NIST Cybersecurity Framework for EV Extreme Fast Charging Infrastructure

The Electric Vehicle and Extreme Fast Charging (EV/XFC) networks and infrastructure. The newly officialized framework combines industry standards and best practices for securing the evolving EV charging sites and networks.
image of a traffic control center (for a mobility and transportation)

ABB Terra AC Improper Authentication Can Lead To EVSE Takeover (CVE 2023-0863 & CVE 2023-0864)

The SaiFlow research team has discovered two vulnerabilities in high severity allowing remote and unauthorized users, within the range of BLE to takeover the EV charger.
image of a traffic control center (for a mobility and transportation)

The Impact of API Vulnerabilities on CSMS Services & Charging Network Operators – The Use Case of ABB ChargerSync

SaiFlow research team discovered multiple critical vulnerabilities in ChargerSync CSMS allowing adversaries to access customers’ personal information and disrupt charging operations.
image of a traffic control center (for a mobility and transportation)

May 2023 Security Advisory for ABB Terra AC Charging Station

On May 17, 2023, ABB published an advisory for CVE-2023-0863 & CVE-2023-0864, an Authentication Bypass and Plaintext Communication vulnerabilities.