TP-Link, the most popular router network brand in the US, is under investigation by several US departments.
According to a publication by The Wall Street Journal, which quotes sources familiar with the matter, the investigation could lead to a ban by the US authorities.
TP-Link routers have been under scrutiny for quite some time and were previously identified as potential national security risks.
Last month, an investigation by Microsoft found a covert Chinese botnet that operated on compromised TP-Link routers. The botnet targeted think tanks, governments, and other organizations across North America and Europe.
WSJ sources claim that TP-Link routinely ships its routers to customers with security flaws, which the company often fails to address. The company also doesn’t engage with security researchers who are concerned about them.
TP-Link’s spokesperson told the outlet that its security practices “are fully in line with industry security standards,” while the Chinese cybersecurity authority blamed the US for two cyberattacks against large Chinese tech companies.
Established in China in 1996 by two brothers based in Shenzhen, TP-Link is one of the world’s largest providers of WiFi networking and smart home devices.
The company sells over 160 million products annually to more than 170 countries worldwide, and its routers are the top choice in the US.
The popularity of TP-Link routers skyrocketed after the pandemic. In 2019, the company had around 20% of the US market share. Now, its routers comprise around 60-65%. TP-Link routers are also a top choice by Amazon.
Many US government agencies, including the Defence Department, use TP-Link equipment.
According to some sources, TP-Link routers do not appear to be related to the attack by a group named Salt Typhoon. However, the recent attack could have drawn the attention of US authorities.
The Commerce, Defense, and Justice departments have opened probes into the company. The upcoming Trump administration could take action against it.
A number of vulnerabilities
TP-Link routers have a long history of vulnerabilities. A Microsoft investigation found that the TP-Link botnet employed an average of 8,000 compromised devices in 2023 and was used to target governmental agencies.
Back in August, US lawmakers called for an investigation into the company over concerns that China could use its WiFi devices to launch state-sponsored hacking campaigns.
Previously, it was revealed that Chinese intelligence used TP-Link routers in a hacking campaign targeting government officials across the European Union.
Last year, the Cybernews research team produced its own exclusive report documenting numerous security flaws in the default firmware and the web interface app of the TP-Link AC1200 Archer C50 (v6) router.
Furthermore, in 2023, the US Cybersecurity and Infrastructure Agency identified a remote code exploitable flaw in TP-Link routers.
Your email address will not be published. Required fields are markedmarked