The Federal Communications Commission (FCC) has announced plans to prohibit the import and sale of new foreign-manufactured consumer routers in the United States, citing significant cybersecurity and national security concerns. Under the new policy, such devices will be barred from the U.S. market unless they receive explicit approval from the Department of Homeland Security (DHS) or relevant defense authorities.
According to the FCC, the decision is based on assessments from the Executive Branch that determined these foreign-made routers present unacceptable risks. As a result, impacted products can no longer be authorized, marketed, or sold in the U.S. without special clearance.
Under the policy, consumer routers manufactured outside the United States will be added to the FCC’s Covered List. Exceptions will be granted only if DHS or defense-related agencies verify that the devices do not pose a threat to U.S. communications networks.
“Today, the Federal Communications Commission updated its Covered List to include all consumer-grade routers produced in foreign countries,” the FCC said in its announcement. “Routers are the boxes in every home that connect computers, phones, and smart devices to the internet. This action follows a determination by a White House convened Executive Branch interagency body with appropriate national security expertise that such routers pose unacceptable risks to the national security of the United States or the safety and security of United States persons.”
The Covered List, maintained by the FCC under the Secure and Trusted Communications Networks Act, identifies communications equipment and services believed to threaten U.S. national security. Items placed on the list are effectively banned from receiving authorization and cannot be legally marketed or sold in the country.
U.S. officials have warned that foreign-made routers introduce substantial supply chain and cybersecurity risks, with the potential to impact the economy, critical infrastructure, and national defense. Broader policy guidance emphasizes the need to reduce reliance on foreign components in essential technologies.
These concerns are supported by evidence showing that foreign-manufactured routers have been exploited by threat actors for hacking, espionage, and intellectual property theft. Such devices have been linked to major cyber-espionage campaigns, including Volt Typhoon, Flax Typhoon, and Salt Typhoon, which have targeted U.S. critical infrastructure.
Manufacturers are still permitted to seek Conditional Approval by demonstrating that their products meet U.S. security requirements. The restrictions apply only to new router models, meaning devices that are already in use or were previously authorized may continue to be sold and operated without restriction.
At present, only a small number of products have received approval, including certain drones and software-defined radios produced by companies such as SiFly Aviation, Mobilicom, ScoutDI, and Verge Aero. Router vendors may apply for Conditional Approval, while domestically manufactured products such as Starlink routers are exempt from the ban.
The FCC reiterated that insecure consumer routers, particularly those used in home and small office environments, have already been leveraged for cyber intrusions, surveillance, and data theft. Weakly secured devices can also be hijacked and incorporated into botnets capable of launching large-scale cyberattacks, posing risks to both infrastructure and the broader economy.
Found this article interesting? Follow us on X(Twitter) ,Threads and FaceBook to read more exclusive content we post.
