- Attackers are now targeting physical systems inside data center environments
- Power infrastructure vulnerabilities could shut down entire computing networks instantly
- Cooling system breaches may trigger overheating across server facilities
Modern data centers face a growing threat from cybercriminals who now target physical infrastructure components rather than just software systems, as attackers know compromising a single power device or climate control unit could trigger massive operational failures across entire computing facilities.
The financial stakes are extraordinarily high because downtime in these facilities often costs hundreds of thousands of dollars per hour.
Recent research from Claroty’s Team82 has now uncovered severe vulnerabilities in two essential categories of data center equipment widely deployed across major facilities, raising concerns for users everywhere.
The silent risks hiding inside power and climate systems
The first set of problems affects Vertiv’s Uninterruptible Power Supply (UPS) network cards, which maintain stable electricity during grid fluctuations or blackouts.
Any successful exploit of these flaws could effectively shut down every server and router depending on that power protection system.
The second discovery involves deeply buried weaknesses within Trane Tracer SC+ HVAC controllers that regulate temperatures in server rooms.
An attacker exploiting these issues could execute unauthenticated remote code and gain complete control over a building’s environmental management systems without any prior access credentials.
Standard protections such as antivirus software may not fully cover these systems because they directly control physical infrastructure rather than just data.
This creates a risk where malware or targeted attacks could…
