US authorities are considering a ban on TP-Link routers due to concerns over their potential role in Chinese cyber attacks. The popular router manufacturer, which holds approximately 65% of the US market for home and small business routers, is under investigation by the Departments of Commerce, Defense, and Justice.
The probes were initiated following a letter from US lawmakers to the Biden administration, urging an investigation into TP-Link over fears that their Wi-Fi routers could be exploited in cyber attacks against the country.
The lawmakers cited Chinese laws requiring companies to aid state military and intelligence objectives, as well as frequent Chinese state-backed cyber attacks exploiting routers.
According to the WSJ report, US officials might prohibit the sale of TP-Link routers in the country next year. Measures against TP-Link would probably be the responsibility of the upcoming Trump administration.
Free Webinar on Best Practices for API vulnerability & Penetration Testing: Free Registration
TP-Link’s routers have been linked to several security concerns. In October 2024, Microsoft reported that a Chinese hacking group had compromised thousands of TP-Link devices to launch cyberattacks against Western targets, including government organizations, think tanks, and defense contractors.
The US Cybersecurity and Infrastructure Agency had previously identified vulnerabilities in TP-Link routers that could be exploited to execute remote code.
The company’s dominant market position is partly attributed to its low-cost routers, which are widely available on platforms like Amazon.com. The Justice Department is investigating whether TP-Link’s pricing strategy violates laws against selling goods below production costs.
TP-Link has responded to these concerns, stating that its security practices are “fully in line with industry standards” and that it welcomes opportunities to engage with the US government to demonstrate its commitment to the US market and consumers. The company also claims it takes “timely and appropriate action” to mitigate known vulnerabilities.
If implemented, the ban could take effect as early as next year. The potential action against TP-Link is part of a broader US effort to address national security risks associated with Chinese technology companies.
The investigation and potential ban highlight the growing tensions between the US and China in the technology sector, as well as the increasing focus on cybersecurity in home and small business networks.
As the situation develops, how this will impact the US router market and consumer choices for internet connectivity devices remains to be seen.
Investigate Real-World Malicious Links, Malware & Phishing Attacks With ANY.RUN – Try for Free