U.S. lawmakers are calling for a thorough investigation into TP-Link Technologies, a Chinese-owned company, due to concerns that its routers could be exploited by the Chinese government for cyberattacks. This move reflects growing unease about the security risks posed by TP-Link’s widely used WiFi devices in the U.S.
Call for Investigation
On August 13th, Representatives John Moolenaar (R-MI) and Raja Krishnamoorthi (D-IL) sent a letter to Commerce Secretary Gina Raimondo, urging a probe into TP-Link’s security practices. They expressed alarm over the “unusual degree of vulnerabilities” in TP-Link routers, which they believe could endanger U.S. national security. The lawmakers have requested a comprehensive report on these risks by the end of August and suggested that the department evaluate whether restrictions on TP-Link products are warranted.
Concerns Over Chinese Influence
The congressmen are worried that TP-Link might be vulnerable to Chinese government influence due to China’s strict data protection and national security laws. According to their letter, TP-Link could be compelled to comply with demands from the Chinese government, including sharing sensitive data. This raises fears that TP-Link routers could be used for state-sponsored cyberattacks against the U.S.
Moolenaar and Krishnamoorthi referenced recent cyber activities by the Chinese APT group Volt Typhoon, known for infiltrating home and office routers to attack U.S. infrastructure. They pointed out that while most compromised devices in similar attacks were from other manufacturers, TP-Link routers have also been involved in such incidents.
Previous Security Issues and Ongoing Risks
The letter also noted a hacking campaign last year where Chinese intelligence allegedly used TP-Link routers to target EU government officials. FBI Director Christopher Wray had previously described Chinese cyber activities as a major threat, reinforcing the lawmakers’ concerns about TP-Link’s vulnerabilities.
Founded in 1996 in Shenzhen, China, TP-Link is a major global provider of WiFi and smart home devices, selling over 160 million products annually. Despite claims of severing ties with its Chinese operations and restructuring, the lawmakers argue that TP-Link routers are still made with Chinese technology, potentially maintaining security risks.
Implications for National Security
Moolenaar and Krishnamoorthi, who lead the House Select Committee on U.S.-China strategic competition, argue that more information is needed to determine if TP-Link routers are particularly susceptible to Chinese hacking. They also worry that Beijing could pressure TP-Link to provide sensitive U.S. information, echoing fears associated with the debate over banning TikTok.
The letter highlights that U.S. cyber analysts have found vulnerabilities in home equipment across the industry, with TP-Link products frequently cited. The congressmen find these vulnerabilities troubling, given TP-Link’s connections to Chinese law.
Recent Cybersecurity Challenges
Concerns about TP-Link are supported by a history of security issues. Hackers have long exploited vulnerabilities in TP-Link routers, using them to carry out attacks or create botnets for disrupting online services. In December 2023, the U.S. Justice Department dismantled a botnet involving compromised routers from multiple manufacturers, including TP-Link.
Additionally, cybersecurity firm Check Point linked a series of attacks on European foreign affairs entities to a Chinese state-sponsored group called “Camaro Dragon.” This group reportedly used a firmware implant in TP-Link routers to gain control of infected devices.
Next Steps
The Commerce Department has promised to address the lawmakers’ concerns through appropriate channels. The representatives have requested a threat assessment and mitigation plan by August 30th, utilizing the Information and Communication Technology Services (ICTS) framework to potentially restrict technology from foreign adversaries.
TP-Link has not yet publicly responded to the allegations but claimed through Reuters that it does not sell routers in the U.S. The company also stated it had completed a global restructuring, separating its U.S. and Singapore operations from its Chinese parent.
The Chinese Embassy has called for evidence-based conclusions rather than speculative accusations. As the Commerce Department’s investigation unfolds, its results could significantly impact TP-Link’s future operations in the U.S. and broader concerns about foreign technology’s influence on national security.
