Multiple government agencies in the US are investigating Chinese router giant TP-Link. The company’s alleged connection to cyberattacks has put it in the crosshairs of the Commerce, Defense, and Justice departments. These investigations could lead to a potential ban on TP-Link routers in the US.
The news of these investigations first broke out with an exclusive report from The Wall Street Journal. According to the report, TP-Link currently holds a 65% share of the US home and small business router market. Their sales boomed during the pandemic-driven shift to remote work. It is also the best-selling router brand on Amazon.
What triggered the investigations?
Microsoft’s October report linked thousands of TP-Link devices to a Chinese hacking network. These compromised routers were used in cyberattacks targeting Western organizations, NGOs, and even US Defense Department suppliers.
This is a huge threat to US national security. TP-Link routers are reportedly used in US government agencies, including the Defense Department and NASA. While no evidence suggests TP-Link willingly collaborates with Chinese state-sponsored hacking, the potential for exploitation remains a pressing concern.
Ramifications of the potential ban
If a ban goes into effect, it will be the largest removal of Chinese tech from US infrastructure since the 2019 Huawei ban. The government is concerned about TP-Link’s lack of engagement with security researchers to fix vulnerabilities. Critics say TP-Link’s ties to the Chinese military through its founders and research partnerships make it riskier.
Their low-cost strategy has made routers available to millions, outpricing Netgear and Cisco by more than 50%. Removing TP-Link from the equation would mean higher prices and a huge gap for US-based router manufacturers to fill.
Own a TP-Link router?
While no ban has been implemented yet, TP-Link users should remain vigilant. The implications for everyday users are chilling. Unpatched routers with known security flaws create easy backdoors for hackers.
Regularly updating router firmware, enabling strong passwords, and using built-in security features can mitigate some risks. Businesses and government agencies relying on TP-Link routers should evaluate alternatives and prepare contingency plans for a potential market shake-up.