Catch up on stories from the past week (and beyond) at the Slashdot story archive

 



Forgot your password?
typodupeerror
×
China United States

US Weighs Banning TP-Link Router Over National Security Concerns (msn.com) 49

U.S. authorities are investigating Chinese router manufacturer TP-Link over national security risks and considering banning its devices, WSJ reported Wednesday, citing sources familiar with the matter. The Commerce, Defense and Justice departments have launched separate probes into the company, which controls approximately 65% of the U.S. home and small business router market.

Microsoft reported in October that Chinese hackers had compromised thousands of TP-Link routers to launch cyberattacks against Western targets, including government organizations and Defense Department suppliers. The company's routers are widely used across federal agencies, including the Defense Department and NASA. The Justice Department is also examining whether TP-Link's significantly lower pricing violates federal anti-monopoly laws, the report said.

US Weighs Banning TP-Link Router Over National Security Concerns

Comments Filter:
  • Matters? (Score:4, Insightful)

    by markdavis ( 642305 ) on Wednesday December 18, 2024 @08:11AM (#65021953)

    Would this really matter? By they time they get around to banning anything, a different Chinese company will pop up and make the same thing with the same cheap price and same lax of security.

    • Re:Matters? (Score:5, Insightful)

      by aaarrrgggh ( 9205 ) on Wednesday December 18, 2024 @08:25AM (#65021973)

      TP-Link should have been banned a long time ago, so yes it is quite late. The reality though is that getting back that dominant market position requires significant time and resources, and until you have the large install base the scale of the security risk is limited. Similar measures should be made for other Chinese brands. Of course it is better to do it based on a security audit rather than nationality, but that is a little harder to implement.

      • Re:Matters? (Score:5, Insightful)

        by StormReaver ( 59959 ) on Wednesday December 18, 2024 @08:37AM (#65021993)

        Chinese relations need to revert back to how they were before Tricky Dick through us all under the bus.

        • by gtall ( 79522 )

          It was also Kissinger, and they both threw Taiwan under the bus as well.

          • by GoTeam ( 5042081 )

            It was also Kissinger, ...

            Looking like that, he talked his way into Jill St. John's bed. Enough said.

        • The strategy of engagement successfully led to the end of wars in South East Asia. The problem is that the entire point of the strategy was forgotten once U.S. businesses developed a taste for the cheap labor of China.
          • by butlerm ( 3112 )

            By the mid 1970s China and Vietnam were on opposite sides due to a dispute over Cambodia so much so that China tried unsuccessfully to invade Vietnam in 1979. You could make the case that Nixon's withdrawal from Vietnam helped lead to the end of wars in South East Asia but selling out our friends in Taiwan to the People's Republic of China by stealing their seat on the UN Security Council, having them expelled from the UN, breaking off formal diplomatic relations, declaring them a non-country and ultimatel

    • Re:Matters? (Score:5, Interesting)

      by Zocalo ( 252965 ) on Wednesday December 18, 2024 @08:52AM (#65022033) Homepage
      Regardless of how you feel about TP-Link, or Chinese products in general, the spin on this one seems like it's pretty strong and probably trying to sway public opinion in favour of a potential ban. TP-Link has 65% of the market, so assuming a random sampling of compromised routers of *course* they're going to be the majority of compromised routers in the "CovertNetwork-1658" botnet Microsoft is referring to. And, of those compromised routers, how many were more likely compromised through some lame setup of the router by the ISP that provided it rather than a backdoor or other software flaw, e.g. a significant number of compromised devices of a given type all within the IP range of a single ISP?

      Also, let's say they pull a Huawei style ban and demand the ISPs replace any devices they've supplied to end users as part of a service setup bundle, etc. (tinfoil: with one the US definitely has access to a backdoor on instead of a potential one that gives the PRC access)? Since TP-Link seems to be a very popular brand for ISP supplied packages, that's not going to be particularly cheap. As a quick guesstimate; 65% of approx 130m homes in the US (not all of which will have Internet) + businesses, etc. is likely to be somewhere around 75m routers deployed, many of which are probably ISP supplied. Who pays for that? My money is on the taxpaper, one way or another.
      • >> how many were more likely compromised through some lame setup of the router by the ISP

        Maybe its just that "TP-Link routers are routinely shipped to customers with security flaws, which the company often fails to address" like the article states.

    • Would this really matter? By they time they get around to banning anything, a different Chinese company will pop up and make the same thing with the same cheap price and same lax of security.

      Probably doesn’t even take a company change to plasti-dip the same box in a different color and slap a new logo on it. Could probably be done in a couple of days. Or hours, if the graphics guy in Marketing is feeling it that morning after a third cup of coffee.

      Yeah, it’s weird the invoice is coming from the same address, but the guy buying 5,000 of them only gives a shit about the number in the bottom right corner. They don’t put addresses there.

  • by greytree ( 7124971 ) on Wednesday December 18, 2024 @08:15AM (#65021965)
    What about all the cheap webcams that *require* the use of a chinese server?

    What we need is a blanket ban on any device not letting the purchaser simply choose what IPs the device will ever talk to.
    • by geekmux ( 1040042 ) on Wednesday December 18, 2024 @09:34AM (#65022139)

      What about all the cheap webcams that *require* the use of a chinese server? What we need is a blanket ban on any device not letting the purchaser simply choose what IPs the device will ever talk to.

      Line up 100 consumers. Ask them what an “IP” is. Ask them if they know why they should know.

      You’ll see rather quickly why GUIs are written for toddlers, and why admin functions were reduced to an touchscreen-enabled app permanently logged in, a while ago.

      • by gtall ( 79522 )

        GUIs are also good for when you cannot be arsed to recall or look up arcane Unix CLI syntax because you are only using the particular command once every 5 years.

        Apple had a good one for their MPW development system. It could either use some unixy-like text commands or you could pull up a dialog box for that command and use radio buttons, check boxes, and text fields. It built the command for you as you worked the GUI. Then you could execute it right there or copy and paste it into another window. It was won

    • The vast majority of IoT apps on cell phones communicate with their devices via Chinese web services. It is not just webcams. Changing the color of light bulbs in a home informs China of your mood.
  • OpenWRT support (Score:5, Informative)

    by drinkypoo ( 153816 ) <drink@hyperlogos.org> on Wednesday December 18, 2024 @08:51AM (#65022031) Homepage Journal

    I have a TP-Link router. I am not afraid of it because I have reflashed it with OpenWRT. A lot of their routers run Linux and are supported by OpenWRT.

    Pretty much all consumer routers come from China so you don't really have a choice about where the hardware comes from. But you do have a choice about the software, if you look at the OpenWRT ToH [openwrt.org] before you buy. Buying a router which isn't supported by them is a very bad idea. Yes, there are some other distributions as well. Maybe you think one of them is better, you do you etc. But I want one well supported option and that's as close as you can get.

    • Yeah, I used to do that, but the OpenWRT ip V6 support was terrible. It had much fewer functions enabled than the stock TP-LINK. Which was sad.
      Also how... often do you update OpenWRT. In my experience it was far behind on a lot of security updates for key parts, like openssl. I could have gone down the rabbit hole of trying to update the dependency and rebuilding but that was a pain I wasn't willing to accept. I moved on to a different platform not based on an existing consumer router.
      • Routers with more RAM and flash are most likely to support newer OpenWRT. Buy one of those.

        You can update packages, or where supported, you can update the whole system. More resources, more interest, more support.

    • The software and firmware of ALL devices must be open-sourced, or at least made public for inspection.

      I distrust closed software, but currently it cannot be avoided. Then I have to decide - do I prefer the US or the Chinese to spy on me? Americans would chose Chinese spying, because China has less power over US citizens than Uncle Sam.

      If the problem lies in hardware and hard-coded components, then the US government is duty-bound to reveal this and provide proper evidence. Simply banning Chinese stuff doe

    • But you do have a choice about the software, if you look at the OpenWRT ToH [openwrt.org] before you buy.

      And one of the major problems with this method is that the list is somewhat limited relative to the hardware on the shelves, and the hardware on the shelves has a tendency to be retailer-specific. It's easy for Best Buy to make a price match guarantee when they have exclusivity on the model, rinse/repeat for most other retailers. Even worse are the revisions; Router X rev.1 might support OpenWRT, while rev.2 might not.

      A good amount of this has to do with the different chipsets that don't provide drivers for

    • I don't suppose they're also going to ban Cisco and Netgear: US confirms takedown of China-run botnet targeting home and office routers [therecord.media]: "KV targets Cisco and Netgear"

      Over and over, including with TP-Link, you find two common threads: (1) default/weak passwords, and (2) unpatched firmware. I haven't found a single reference to an attack that accused or implied that TP-Link intentionally installed backdoors to allow APTs to gain control, The problem is that consumers don't change their password or patch th

    • by flink ( 18449 )

      What I do is run a dedicated OPNSense (FreeBSD) firewall/router on a mini PC appliance and have a few stand-alone WIFI access points. Everything goes through a dedicated managed switch, so only the OPNSense device sees internet traffic.

      I actually use Omada APs, which happen to be made by TP-Link. If there are back doors that could be exploited by someone else, well, I keep my management network on a separate VLAN from my WIFI and "public" ethernet drops with no internet access, so no TP-Link/Omada hardware

  • by xack ( 5304745 ) on Wednesday December 18, 2024 @09:06AM (#65022065)
    Assume any device is backdoored, that includes chips from "allies" as well.
  • ... to target the largest of the remaining 35%.

    Actually, "they" almost certainly have multiple zero-day attacks in the bag, and will just devote more time to finding new ones in less popular systems.

    I wonder how many are targetting TP-Links flashed with OpenWRT. Very unlikely to be no attention there, if "flashing your router" was ever a significant thing.

  • Who the sh** named this company?

  • by zephvark ( 1812804 ) on Wednesday December 18, 2024 @09:11AM (#65022087)

    "The Justice Department is also examining whether TP-Link's significantly lower pricing violates federal anti-monopoly laws"

    Do you know what's exactly NOT characteristic of a monopoly? Lower prices. TP-Link doesn't own nearly enough of the market to have a monopoly, either. Not like Microsoft! But, hey, Microsoft is an American monopoly.

    This looks like yet another ploy to steal foreign businesses to benefit greedy American corporations. It has nothing to do with security and everything to do with the Almighty Dollar.

  • Like the CIA can't fake all these hacks to look like they're from China.

  • All of this consumer router stuff is garbage. I remember a few years ago when I had some cable modem from Spectrum. Now, the configuration I had was basically that my Spectrum crap fed into my own access point so I could control it. Unfortunately, I found out that Spectrum kept "updating" their access point, and every time they turned some kind of built-in wireless functionality on. And they had the (outer) network password and everything else. Now, that wasn't really a security problem because my own equip

    • by Samare ( 2779329 )

      some neighbor kid started pirating my wireless

      Sounds like you were using WEP at the time or no WiFi security at all.

      Software-wise, OpenWrt is the way to go with these consumer routers.
      Gargoyle is nice too (and easier to use) while still being OpenWrt based, if your router is supported.

      • some neighbor kid started pirating my wireless

        Sounds like you were using WEP at the time or no WiFi security at all.

        Wow...So, wireless connectivity has changed up since 2004; it's been well over a decade since routers shipped with either WEP or a truly open SSID.

        Spectrum's modems now are all-in-one appliances that are modems, routers, switches, and APs in a single box. For the general public, this is probably a net positive, but Spectrum also has a habit of letting that appliance broadcast "SpectrumWIFI", which enables people to use that public-ish system from the modem of its customers (it has a captive portal login so

  • The list keeps growing... and now the scope is expanding. Kinda surprising that the government is using so much TP-Link. I'm sure contractors that care won't install it.

    https://www.acquisition.gov/df... [acquisition.gov].

  • Solid German engineering, much better and still reasonably affordable.
  • by KlomDark ( 6370 ) on Wednesday December 18, 2024 @10:17AM (#65022223) Homepage Journal
    I need TP-Link for my bunghole!
  • I have used a lot of TP-Link routers with OpenWRT in the past. They were awesome (except hardware quality. They all needed replacement in a few years, but then the wifi tech was also advancing)

    https://openwrt.org/toh/hwdata... [openwrt.org]

    They just worked out of the box, and even sometimes using the original firmware's update page. (Yes, just download the open source firmware, open router, upload, and reboot).

    At one point they locked the bootloader.

    And everything went downhill from there.

    Their excuse? US people installi

    • TP-Link wasn't exactly the only one to do that. In 2015, The US FCC (Federal Communications Commission) passed legislation designed to block people from changing certain WiFi settings, to avoid radio interference with other devices. WiFi radio power had to be implemented in hardware so that end users couldn't modify it. For example, the FCC wanted to make sure end users didn't override country settings or power limits which might affect radio power. Some hardware vendors reacted to the legislation in an e
  • Cicso routers are even made in china, and even many of the ones labelled 'made in the USA' were only assembled here. The chips are still in their original chinese manufactured state. Banning things from china is a bad idea until AFTER you have the supply chain in place to replace them. We don't and won't have this for a long time.
    • by wwphx ( 225607 )
      My thoughts exactly. I know of no manufacturers off-hand who make routers here, and I have to buy one every two years or so. Not looking forward to this.

"Engineering without management is art." -- Jeff Johnson

Working...