In a significant move to bolster national cybersecurity defenses, the Federal Communications Commission (FCC) has officially prohibited the authorization of all new foreign-manufactured consumer internet routers. The decision, announced Monday by FCC Chairman Brendan Carr, classifies these devices alongside other high-risk equipment previously deemed security threats, such as foreign-made drones banned in late 2023.
The updated FCC equipment list now explicitly excludes consumer-grade routers produced outside the United States, effectively blocking their import, marketing, and sale without prior agency approval. This regulatory shift responds to what officials describe as systematic exploitation of security vulnerabilities in foreign-sourced routers by malicious actors.
“Malicious actors have weaponized security gaps in foreign-made routers to launch attacks against American households, disrupt critical networks, enable espionage operations, and facilitate large-scale intellectual property theft,” the FCC stated in its official announcement.
While existing foreign-made routers remain operational for current users, the ban specifically targets all new device models entering the market. The ruling mandates that any newly developed router manufactured internationally must undergo rigorous FCC evaluation before gaining market access in the United States.
Manufacturers seeking approval must now navigate a complex conditional authorization process that requires full disclosure of foreign investors and influences within their corporate structure. Additionally, companies must submit detailed plans for transitioning router production facilities to American soil.
The regulatory action follows Friday’s interagency national security determination that overseas-produced internet routers present “unacceptable risks” to United States infrastructure. Government assessments cited three major cyberattacks between 2024-2025—codenamed Volt, Flax, and Salt Typhoon—that exploited router vulnerabilities to target critical infrastructure. Official investigations attributed these attacks to entities operating within or on behalf of the Chinese government.
This policy creates substantial challenges for major router brands dominant in the American market, including TP-Link—a Chinese-manufactured product line that ranks among Amazon’s bestsellers—and even US-based companies like Netgear that manufacture products abroad. The regulation applies regardless of where routers are designed, focusing exclusively on production location.
Limited exemptions may be granted for routers receiving approval from the Department of Defense or Department of Homeland Security, though neither agency has yet approved any specific router models for exception. Currently, Starlink’s Texas-manufactured routers represent one of the few consumer options produced entirely within the United States.