Two US lawmakers want the Joe Biden administration to probe China’s TP-Link and its affiliates for potential national security risks from their widely used Wi-Fi routers over fears they could be used in cyberattacks against the US.
Republican representative John Moolenaar and Democratic representative Raja Krishnamoorthi, who lead the US house select committee on China, requested a commerce department probe in a Tuesday letter seen by Reuters.
According to research firm IDC, TP-Link, which focuses on the consumer market, is the top seller of Wi-Fi routers internationally by unit volume.
In calling for an investigation, the US legislators cited known vulnerabilities in TP-Link firmware and instances of its routers being exploited to target government officials in European countries.
“We request that commerce verify the threat posed by [China-affiliated small office/home office] routers —particularly those offered by the world’s largest manufacturer, TP-Link,” according to the letter to commerce secretary Gina Raimondo. They called it a “glaring national security issue”.
The commerce department said it would respond to the letter through appropriate channels. The Chinese embassy said it hopes authorities will “have enough evidence when identifying cyber-related incidents, rather than make groundless speculations and allegations.”
TP-Link, founded in China in 1996 by two brothers and based in Shenzhen, said in a statement that the company does not sell any router products in the US and that its routers do not have cybersecurity vulnerabilities.
Mounting concerns
The letter is a sign of mounting concerns that Beijing could exploit Chinese-origin routers and other equipment in cyberattacks on American governments and businesses.
The US, its allies and Microsoft last year disclosed a Chinese government-linked hacking campaign dubbed Volt Typhoon. By taking control of privately owned routers, the attackers sought to hide subsequent attacks on American critical infrastructure. The vast majority of affected routers, however, appeared to be from Cisco and NetGear, the justice department said in January.
Last year, the US Cybersecurity and Infrastructure Agency said TP-Link routers had a vulnerability that could be exploited to execute remote code.
Around the same time, US security company Check Point reported that hackers linked to a Chinese state-sponsored group used a malicious firmware implant for TP-Link to target European foreign affairs officials.
The commerce department has broad powers to ban or restrict transactions between US firms and internet, telecommunications and technology companies from “foreign adversary” nations like China, Russia, Cuba, Iran, North Korea and Venezuela if their products pose a national security risk. — Alexandra Alper, with Eduardo Baptista, (c) 2024 Reuters