The FCC Just Banned Every Foreign Made Router—Here's What It Means for Your Home Network

What the FCC Ordered

On March 24, 2026, FCC Chairman Brendan Carr announced that the agency has updated its Covered List to include all foreign made consumer routers. The order prohibits the approval of any new models manufactured outside the United States. Devices already on store shelves or in consumers' homes are not affected, and retailers can continue selling existing inventory.

The ban is not absolute. Routers that receive conditional approval from the Department of Defense or the Department of Homeland Security may still be imported. But the exemption process remains vague, and critics say the lack of transparency could create supply chain chaos or open the door to political favoritism.

Why Routers Are a National Security Problem

The FCC pointed directly to three Chinese state backed hacking campaigns as justification: Volt Typhoon, Salt Typhoon, and Flax Typhoon. Each campaign compromised consumer and enterprise routers to build covert networks inside American infrastructure.

• Volt Typhoon infiltrated US power grids, water systems, and telecommunications networks by exploiting home routers as relay points, maintaining access for years before detection.
• Salt Typhoon breached major US telecom providers including AT&T, Verizon, and T-Mobile, intercepting phone calls and text messages of government officials. The campaign exploited routers from multiple manufacturers, including American made Cisco hardware.
• Flax Typhoon built a botnet of over 360,000 compromised routers and IoT devices used for espionage and distributed attacks.

Chinese law requires domestic companies to assist government intelligence operations when asked. That legal obligation is what separates a Chinese made router from one manufactured in, say, Taiwan or South Korea, at least in the eyes of US regulators.

The TP Link Problem

The ban puts particular pressure on TP Link, one of the world's largest router manufacturers. Founded in China 30 years ago, the company has since moved its headquarters to Irvine, California, and was already under investigation by the Trump administration over its ties to Beijing.

TP Link said the ban "appears to affect virtually all new consumer grade routers being sold in the United States" and that it is "confident in the security of our supply chain." The company added that it has been planning to establish US based manufacturing to complement its existing facilities in Vietnam.

But cybersecurity experts have pushed back on the idea that TP Link is uniquely dangerous. The vulnerabilities exploited in the Typhoon campaigns were present across routers from multiple manufacturers, including American companies. TP Link's prevalence in attacks reflects its market share, not a specific backdoor.

What Critics Are Saying

The ban has drawn sharp criticism from cybersecurity experts and former government officials. A former FCC official told CyberScoop they have "a hard time believing this administration will roll out a sophisticated program" to manage the exemption process effectively.

Other concerns include:

• Price increases: With China commanding 60% of the consumer router market, restricting supply will inevitably push prices higher. Asian router company stocks fell on the news while US based NetGear shares jumped 12%.
• False sense of security: Salt Typhoon's most high profile breaches targeted Cisco hardware, an American company. Banning foreign routers does not fix the underlying vulnerability problem.
• Legal challenges: Experts expect court challenges similar to those facing the FCC's disputed foreign drone component ban.

What This Means for You

If you already own a foreign made router, nothing changes immediately. The ban only affects new imports. But as current inventory sells through and no new models can enter the market without conditional approval, expect fewer choices and higher prices.

Regardless of where your router was manufactured, the Typhoon campaigns succeeded because of unpatched vulnerabilities, not backdoors. The single most effective thing you can do is keep your router's firmware updated. Most modern routers support automatic updates. Turn that feature on.

Your router is the gateway to everything on your home network. Every device, every smart speaker, every laptop connects through it. If it is compromised, an attacker can monitor your traffic, redirect your DNS queries, and intercept unencrypted data. That includes email tracking pixels and marketing beacons that already collect data about your inbox activity.

The Bigger Picture

The router ban is part of a broader US strategy to decouple critical technology infrastructure from Chinese manufacturing. It follows similar restrictions on Chinese connected cars near military bases, Huawei 5G equipment, and DJI drones. The question is whether blanket bans actually make Americans safer, or whether they just create the appearance of security while the real vulnerabilities go unpatched.

The cybersecurity community has largely argued that targeted enforcement against specific companies with documented security failures would be more effective than a sweeping ban on all foreign hardware. But in the current political climate, "made in America" is proving to be a more marketable message than "patch your firmware."