this post was submitted on 18 Dec 2024
323 points (97.9% liked)

Technology

60112 readers
2202 users here now

This is a most excellent place for technology news and articles.


Our Rules


  1. Follow the lemmy.world rules.
  2. Only tech related content.
  3. Be excellent to each another!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, to ask if your bot can be added please contact us.
  9. Check for duplicates before posting, duplicates may be removed

Approved Bots


founded 2 years ago
MODERATORS
 

TP-link is reportedly being investigated over national security concerns linked to vulnerabilities in its very popular routers.

you are viewing a single comment's thread
view the rest of the comments
[–] Erasmus@lemmy.world 20 points 1 week ago (3 children)

Someone in the comment section posted a good question. Which specific routers that TP-Link makes are the issue?

Is it all routers that they make or is this just because they are selling inexpensive routers that have become a large part of the US market?

Does someone have an article that isn’t biased one way or the other that gives a list of effected routers ?

[–] Buelldozer@lemmy.today 6 points 1 week ago

Which specific routers that TP-Link makes are the issue?

They are presumably talking about CovertNetwork-1658 and the reason there's no list of routers is because no one has publicly described the vulnerability that is being leveraged.

My guess is that the vulnerability is present on most of their routers. I'm basing that opinion on the fact that previous CVEs issues against TP-LINK have impacted their most popular product lines like Archer and Deco.

It's possible that this is related to CVE-2024-21833 which was open in January of 2024, update in July of 2024, then updated again in late November of 2024.

[–] technocrit@lemmy.dbzer0.com 5 points 1 week ago* (last edited 1 week ago) (1 children)

Does someone have an article that isn’t biased one way or the other

We're literally inside an imperial core.

that gives a list of effected routers ?

If there was a list of effected routers, TP-Link would most likely have patched them.

[–] avieshek@lemmy.world -3 points 1 week ago (1 children)

Most likely old routers still sold on Amazon instead of the latest WiFi 7 models on the website~

[–] sugar_in_your_tea@sh.itjust.works 1 points 1 week ago (1 children)

Why would you assume that? They probably all use the same base.

[–] avieshek@lemmy.world 1 points 1 week ago (1 children)

TP-Link is popular because of their cheap options while easy-to-setup for average joe families.

[–] sugar_in_your_tea@sh.itjust.works 2 points 1 week ago (1 children)

Right, but I'm not seeing a reason that only the older routers would have these vulnerabilities. I'm guessing the base OS for all of them is quite similar.

[–] avieshek@lemmy.world 1 points 1 week ago

Well, they also don’t offer more than 2 updates on their proprietary software… so you can just categorise them as vintage or out of service like Apple especially for even older hardware that’s $20 or less like Tenda which is also another Chinese brand.

[–] humble_pete_digger@lemm.ee 2 points 1 week ago* (last edited 1 week ago)

They don't care. They want to ban TP-Link as a company, routers are just an excuse.

This is the same people that keep blocking US gdpr legislation, so we know for a fact they don't care about us, they just care about not being able to spy themselves.