The US has banned new foreign-made consumer internet routers over national security concerns. In an update on Monday to a list of equipment viewed as not secure enough for use, the Federal Communications Commission (FCC) added all consumer-grade routers made outside the US. This places routers, which are widely used in homes and businesses to connect devices to the internet, on the same level as foreign-made drones, which were banned at the end of last year.
The FCC stated, 'Malicious actors have exploited security gaps in foreign-made routers to attack American households, disrupt networks, enable espionage, and facilitate intellectual property theft.' While individuals can continue using foreign-made routers already in their possession, the ban applies specifically to new device models.
This significant move stems from increasing worries that routers serve as easy targets for foreign adversaries. Notably, TP-Link, a popular brand manufactured in China, became a focal point of US political concern following a series of cyberattacks last year.
Going forward, any new router made outside the US will require FCC approval before importation, marketing, or sale. Manufacturers must disclose foreign investments or influences and provide plans for US-based production as part of this approval process.
The FCC's policy revision follows a decision by national security agencies indicating that overseas internet routers posed unacceptable risks to the US infrastructure and supply chain. Reports of past cyberattacks—identified as Volt, Flax, and Salt Typhoon—directly linked foreign router vulnerabilities to incidents targeting critical US systems, with investigations pointing towards actors associated with the Chinese government.
Most internet routers are produced outside the US, particularly in Taiwan or China. The FCC has clarified that even routers designed in the US but built abroad fall under this ban. Popular router brands like Netgear manufacture their products overseas, although Starlink, belonging to Elon Musk's SpaceX, stands as an exception due to their production in Texas.
The FCC stated, 'Malicious actors have exploited security gaps in foreign-made routers to attack American households, disrupt networks, enable espionage, and facilitate intellectual property theft.' While individuals can continue using foreign-made routers already in their possession, the ban applies specifically to new device models.
This significant move stems from increasing worries that routers serve as easy targets for foreign adversaries. Notably, TP-Link, a popular brand manufactured in China, became a focal point of US political concern following a series of cyberattacks last year.
Going forward, any new router made outside the US will require FCC approval before importation, marketing, or sale. Manufacturers must disclose foreign investments or influences and provide plans for US-based production as part of this approval process.
The FCC's policy revision follows a decision by national security agencies indicating that overseas internet routers posed unacceptable risks to the US infrastructure and supply chain. Reports of past cyberattacks—identified as Volt, Flax, and Salt Typhoon—directly linked foreign router vulnerabilities to incidents targeting critical US systems, with investigations pointing towards actors associated with the Chinese government.
Most internet routers are produced outside the US, particularly in Taiwan or China. The FCC has clarified that even routers designed in the US but built abroad fall under this ban. Popular router brands like Netgear manufacture their products overseas, although Starlink, belonging to Elon Musk's SpaceX, stands as an exception due to their production in Texas.
