U.S. agencies are weighing a ban on TP‑Link routers over national security and antitrust concerns tied to the firm's Chinese origins. TP‑Link says it split into separate entities, runs global R&D from the U.S., and manufactures in Vietnam, arguing its devices are not uniquely vulnerable. Experts say insecure defaults are an industry problem; if officials have proof of malfeasance, they should make it public.
Is Your Wi‑Fi Router A National Security Risk? The TP‑Link Controversy Explained
Your Wi-Fi Router Was Probably Made in China. Does That Mean It's a National Security Threat?
U.S. regulators are debating whether a popular brand of home routers poses a national security risk. Agencies led by the Department of Commerce are reportedly preparing to restrict sales of TP‑Link devices, citing the company's Chinese origins and concerns that Beijing could access sensitive data or introduce hidden vulnerabilities.
Background
In 2024, President Joe Biden signed the Protecting Americans From Foreign Adversary Controlled Applications Act, which targeted TikTok and similar apps by requiring separation from foreign parent companies or removal from the U.S. market. On the first day of his second term, President Donald Trump signed an executive order postponing the law's rollout, but his administration has continued to use federal authority to limit perceived risks from Chinese technology.
What Officials Say
Senior cybersecurity voices have raised alarms. Rob Joyce, a former White House cybersecurity adviser, testified before the House Select Committee on the Chinese Communist Party in March 2025, arguing that China is 'undercutting our market to deliver Chinese‑controlled technologies into our homes' and calling the trend a 'significant national security concern.' Regulators worry that devices with ties to China could be updated or controlled in ways that create access or hidden flaws.
TP‑Link's Response
TP‑Link rejects the charge that its products are Chinese‑controlled. The company says it split into two entities, with a U.S. headquarters overseeing global research and development, and that its routers are manufactured in a company‑owned facility in Vietnam. In public statements, TP‑Link says no government — including China — has access to its designs or manufacturing decisions.
Security Evidence And Expert Views
Security researchers note that threat actors linked to Chinese intelligence services have, in some cases, abused compromised TP‑Link routers in attacks against Microsoft customers and others. TP‑Link and independent experts counter that such incidents do not prove unique vulnerabilities: attackers exploit any accessible device, and public data do not show TP‑Link being singled out more often than rival brands.
Perspective: Cybersecurity journalist Brian Krebs observes that much of the consumer router market 'sources hardware from China and ships products that are insecure fresh out of the box,' meaning default settings and weak configurations, not provenance alone, often drive risk.
CNET also interviewed four cybersecurity experts who concluded TP‑Link routers are no less secure than typical consumer devices from other makers. The consensus among these observers is that insecure defaults and poor user configuration are the larger, industry‑wide problem.
Antitrust Concerns And Geopolitical Context
Beyond security, the Justice Department's antitrust division has reportedly opened a probe into whether TP‑Link engaged in predatory pricing — selling below cost to gain share and later raise prices after competitors are weakened. In May 2025, Senator Tom Cotton and other lawmakers urged Commerce Secretary Howard Lutnick to ban TP‑Link sales, citing both national security and alleged pricing practices.
Some officials and analysts say a potential ban could also serve as leverage in broader U.S.‑China negotiations. TP‑Link called that idea 'nonsensical,' but it underscores how commercial, legal and geopolitical pressures intersect in this case.
Market Share And Stakes
The Wall Street Journal reported TP‑Link held roughly 65 percent of the U.S. home and small‑business router market by 2024, a figure the company disputes, saying industry data place its unit share closer to 35 percent. If true, TP‑Link's scale helps explain both heightened scrutiny and the potential market impact of any ban.
Bottom Line
Attackers have exploited TP‑Link devices, but so have they exploited many other internet‑connected products. Independent experts emphasize insecure defaults and poor configuration as the key industry problem. If U.S. officials believe TP‑Link uniquely threatens security or engaged in unlawful conduct, they should disclose the evidence supporting those claims so the public and industry can respond appropriately.
Help us improve.
