Researchers at Zhejiang University have identified a new cybersecurity vulnerability dubbed “Bit2Watt,” where malicious GPU workloads manipulate a data center’s power consumption to interfere with local electrical grids. According to the team’s paper published on Arxiv.org, these high-frequency power fluctuations could potentially destabilize renewable-energy-integrated power systems.
How Bit2Watt Manipulates Electrical Infrastructure
The Bit2Watt attack exploits the way modern data centers draw power. By running custom workloads that rapidly switch between high and low computational intensity, an attacker can create high-frequency ripples in electricity demand. Zhejiang University researchers found that these fluctuations propagate from the GPU hardware through the data center’s power delivery chain and into the local electrical grid.

Unlike traditional cyberattacks that target software or industrial control systems, Bit2Watt uses legitimate cloud resources. An attacker renting space on a GPU cluster can execute these power-modulating tasks without needing elevated privileges. The researchers successfully demonstrated this in a lab setting, achieving power modulation frequencies between 1.5 kHz and 6 kHz on NVIDIA hardware.
The name “Bit2Watt” refers to the concept of software “bits” being used to influence physical “watts” in the power grid, creating a bridge between digital workloads and electrical infrastructure.
Why Renewable-Powered Data Centers Are Vulnerable
Modern hyperscale data centers are increasingly relying on inverter-based renewable energy sources like solar power. According to the research, these systems lack the stability provided by traditional rotating generators. Because they rely on fast power electronics, they are more susceptible to the harmonics introduced by rapid, synchronized GPU power draws.
In a simulated worst-case scenario involving 1,000 synchronized GPUs on a 1 MW system, researchers observed current harmonic distortion rising to 46.8%. This level of distortion was sufficient to render the simulated system unstable, potentially leading to cascading failures on local transmission networks.
Can This Attack Be Detected?
Detecting Bit2Watt activity remains a significant challenge for cloud operators. Because the malicious activity is embedded within standard AI training jobs—or mimics legitimate computational intensity—it is difficult to distinguish from normal operations. The researchers noted that standard monitoring tools often sample power data too slowly to capture the high-frequency signatures required to identify these attacks.
To mitigate these risks, the researchers suggest that data center operators implement higher-resolution power monitoring and improve coordination with electrical grid providers to identify abnormal modulation patterns in real-time.
Future Risks: Watt2Bit Feedback
The researchers also explored a secondary effect they call “Watt2Bit.” This occurs when the degraded power quality—caused by the initial Bit2Watt attack—feeds back into the data center. This can lead to disrupt computing equipment or even the creation of side channels that could be used to leak sensitive information from the data center’s equipment.

Frequently Asked Questions
- Is Bit2Watt an active threat? No. It is currently a proof-of-concept demonstrated through laboratory experiments and simulations.
- Does this attack require special access? No. The research shows it can be carried out by a standard cloud customer using existing, legitimate GPU resources.
- What is the primary danger? The primary concern is the potential for current harmonic distortion to destabilize electrical grids that rely heavily on renewable energy and power electronics.
- How can data centers defend against it? Suggested defenses include better workload scheduling, dedicated high-frequency power monitoring, and closer collaboration between IT and utility operators.
Have you observed performance anomalies in high-density computing environments? Share your thoughts in the comments or subscribe to our newsletter for the latest updates on emerging cybersecurity infrastructure threats.
