US officials are investigating potential national security risks linked to the Chinese telecom company TP-Link, whose internet routers are widely used in American households. Concerns focus on how these devices may allow for unauthorized access to U.S. infrastructure by China-backed hackers. The probe, initiated by the Commerce Department, could lead to a ban on TP-Link routers in the U.S.
US investigates TP-Link over national security concerns
The Commerce Department’s inquiry into TP-Link comes amid an alarming pattern of cyberattacks tied to Chinese hackers, including a recent revelation of an expansive hacking campaign that compromised at least eight U.S. telecommunications providers. This campaign reportedly targeted senior political figures, posing new risks to national security. U.S. authorities are keen to assess the vulnerabilities in telecom infrastructure, especially in light of past intrusions involving Chinese threat actors.
Founded in 1996, TP-Link has become a dominant player in the global market for small office and home office (SOHO) routers, reportedly holding about 65% of the U.S. market share for these devices. A spokesperson for TP-Link’s U.S. operations told CNN, “We welcome opportunities to engage with the federal government to demonstrate that our security practices are fully in line with industry security standards.” Meanwhile, the company, which underwent restructuring to establish a headquarters in California, has not been accused of any wrongdoing.
Trump effect: 140 Chinese tech firms hit by expanded U.S. restrictions
Ongoing investigations, including one from the Department of Justice into TP-Link’s pricing practices, raise questions about the sustainability of its market position. TP-Link routers are the default internet devices for over 300 U.S. internet service providers and have infiltrated networks of government agencies such as the Defense Department and NASA. Reports indicate that a botnet comprised largely of compromised TP-Link devices is being used in cyberattacks, posing serious implications for national security.
As part of its investigation, the Commerce Department has also looked into the U.S. subsidiary of China Telecom, which has faced scrutiny for the potential risks associated with its equipment. The Federal Communications Commission revoked China Telecom Americas’ license in early 2022, citing significant national security concerns. In November 2022, it restricted five additional Chinese companies from selling communication equipment in the U.S. due to similar threats.
Despite no direct evidence that TP-Link routers were exploited in recent attacks, officials are conducting thorough assessments of security practices across the telecom sector. The hacks, attributed to a group called Salt Typhoon, have highlighted potential industrial espionage tactics employed by China. Brendan Carr, appointed by Trump to lead the Federal Communications Commission, criticized the state of cybersecurity in U.S. telecom systems, emphasizing the need for stronger defenses against foreign threats.
Increasing scrutiny on Chinese telecom equipment
The current investigation is not an isolated concern but forms part of a broader narrative of tension in U.S.-China cyber relations. Chinese government representatives have dismissed U.S. allegations of cyberattacks, with Liu Pengyu, a spokesperson for the Chinese Embassy in Washington, urging the U.S. to “stop broadening the concept of national security” to suppress Chinese firms, according to CNN.
Recent events underscore the context within which these investigations occur. Reports of intense surveillance by Chinese hackers have encouraged U.S. officials to increase scrutiny on hardware and software involved in communications networks. Many in the industry concede that new security regulations are inevitable, given the damage caused by foreign incursions into sensitive telecommunications infrastructures.
Featured image credit: TP-Link Community
