Also on August 13, John Moolenaar, Chairman of the US House Select Committee on the Chinese Communist Party, and Raja Krishnamoorthi, Ranking Member of the Committee, wrote to Commerce Secretary Gina Raimondo urging an investigation into TP-Link. Lawmakers say “open source information” suggests TP-Link products could pose a security risk.
“TP-Link’s extraordinary level of vulnerability and required compliance with PRC law is disturbing in and of itself. When combined with the PRC government’s regular use of SOHO routers such as TP-Link to carry out widespread cyberattacks on the US, it is alarming,” the letter reads.
In October, Microsoft published an analysis highlighting that vulnerable TP-Link devices were part of the operations of “CovertNetwork-1658,” a hacking operation linked to China. These routers are reported to have provided a network of egress IPs that concealed subsequent attacks on critical US infrastructure, part of a broader campaign called Volt Typhoon.
Source link