Potential TP-Link ban: top alternative routers for faster connectivity


With the US reportedly eyeing a TP-Link equipment ban, we examine some of the best alternatives to this popular yet potentially risky brand.

In just over a couple of years, TP-Link routers, made by the Chinese networking company TP-Link, became by far the most dominant router brand in the US.

At least such is the trend based on statistics provided by the Wall Street Journal (WSJ), which didn’t specify the source. The publication claims that in 2019, TP-Link routers made up around a fifth of routers sold in the US for consumers and small businesses, while the current share stands at 65%.

ADVERTISEMENT

TP-Link itself disputes such claims but does not provide exact figures. The company points to a report by Lansweeper, estimating that the TP-Link Router market share in the US is just 12%.

Yet given the affordable price of the company’s routers, the broad spectrum of products, and the fact that routers are the top choice on Amazon, a mere 12% market share appears too low, even with the most conservative estimates.

In any case, this figure may soon drop significantly, as the US authorities are reportedly considering a TP-Link ban.

According to the WSJ report, US officials claim that TP-Link routinely ships its routers to customers with security flaws, which the company often fails to address, and doesn’t engage with security researchers.

In addition, a previous report by Microsoft concluded that hackers had exploited the company’s products, while Cybernews researchers found a number of security flaws in the company’s production.

Ernestas Naprys Marcus Walsh profile Konstancija Gasaityte profile Paulius Grinkevicius
Don’t miss our latest stories on Google News

So, what risks do TP-Link routers pose? Should claims by the US authorities be examined in light of the fact that there is a trade war between the US and China? What would be the benefits of a TP-Link ban, and what are the best alternatives for consumers?

Let’s tackle these questions with the help of a few experts.

Supply chain transparency is important

ADVERTISEMENT

TP-Link routers are often listed among the best options on various consumer tech websites, and they usually cost less than competitors. However, price isn’t the only reason users buy them.

“TP-Link has introduced advanced technologies attractive to consumers, such as WiFi 6 and HomeCare features with built-in antivirus protection and robust parental controls, which are attractive to security-conscious consumers. And TP-Link users routinely report satisfaction with the ease of setup and the overall functionality of their devices compared to competitors,” Tom Pace, CEO of cybersecurity company NetRise tells Cybernews.

This, along with aggressive marketing strategies, partnerships with major retailers, and partly through their widespread availability through internet service providers, has allowed the company to capture significant market share in the US.

However, TP-Link routers, like other network devices with limited supply chain transparency and known vulnerabilities, pose significant cybersecurity risks to both governmental and public sectors.

“The risks include backdoors that attackers could exploit to gainunauthorized access that can result in espionage, data breaches, compromised

communications, theft of personal data, financial fraud, or hijacking of home networks for use in broader cyberattacks,” Pace says, adding that there are many more.

According to the expert, when considering alternatives to the Chinese company, users should prioritize manufacturers that show a strong commitment to securing their entire software supply chain.

Key characteristics include providers that offer detailed software bills of materials, vendors that manage vulnerabilities proactively, and make sure that their products are verified independently.

Among some notable alternatives he lists are Netgear, Cisco, Linksys, Ubiquiti Networks, Arista Networks, and Juniper Networks. “These companies are well-positioned to meet the increased demand for secure networking equipment, potentially benefiting from a shift away from TP-Link products,” Pace says.

For the average user, though, buying network equipment from the listed manufacturers most often results in higher prices and a more complex user experience.

ADVERTISEMENT

Tyler Cooper, editor-in-chief of BroadbandNow, points out that virtually every consumer-grade manufacturer has experienced some level of exploitation and/or vulnerability over the years.

However, the company's consumer guidance most often recommends Netgear, Linksys, and Amazon eero routers, as they are made in the US.

“These companies seem to be the frontrunners when it comes to benefiting from TP-Link's ban because they have the greatest number of networking devices and the largest share of the router market. That said, Asus and Google also make routers, so we could see consumers going to them as a likely alternative as well," Cooper explains.

The experts say users should base their selection on how fast their home internet plan is, as well as the number and age of their devices. They list a few TP-Link alternatives.

A WiFi 6 router, such as the Netgear Nighthawk XR1000, Linksys Max-Stream, or Amazon eero 6+ mesh Wi-Fi system should be fine for people with internet connections below 300 Mbps and fewer devices.

If a user’s home has speeds between 300 Mbps and 1 Gbps, as well as devices built after 2019, then they should consider WiFi 6E for expanded speeds. According to Cooper, the Linksys Hydra Pro 6E, Netgear Nighthawk RAXE300, or Amazon eero Pro 6E series of routers are all great options for this technology.

“If users have the latest and greatest devices and an internet plan with speeds greater than 1 Gbps, they’ll want a router with WiFi 7, such as the Amazon eero Max 7, Netgear Nighthawk RS600, or Linksys Velop Pro 7,” Cooper says.

More evidence?

So, how likely is a TP-Link ban? Will it become another major China company banned by the US along with Huawei?

ADVERTISEMENT

According to Cooper, a ban is not out of the question at this point, though the US government has yet to put forward any tangible evidence of TP-Link being a conduit for state-sponsored cyberattacks.

“For more clarity, I think we’ll need transparency from the government about the specific vulnerabilities, and whether they exist at rates higher than average across the industry. We also need to know if compromised devices are delivered in that state with built-in exploits or if it happens after they have been in use for a bit,” he says.

However, the expert thinks that some of these answers will not be provided, as intelligence agencies don’t tend to “cite their sources” when it comes to national security.

Meanwhile, Pace states that the likelihood of the ban increases as concerns about supply chain security and national security risks escalate.

“Precedents such as the US bans on Huawei and ZTE equipment indicate a strong willingness to take decisive action when national security is at stake. With TP-Link routers linked to exploitable firmware vulnerabilities and a lack of transparency in their software supply chain, these concerns could lead to similar regulatory measures,” he says.