this post was submitted on 18 Dec 2024
322 points (97.9% liked)

Technology

60052 readers
2865 users here now

This is a most excellent place for technology news and articles.


Our Rules


  1. Follow the lemmy.world rules.
  2. Only tech related content.
  3. Be excellent to each another!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, to ask if your bot can be added please contact us.
  9. Check for duplicates before posting, duplicates may be removed

Approved Bots


founded 2 years ago
MODERATORS
 

TP-link is reportedly being investigated over national security concerns linked to vulnerabilities in its very popular routers.

you are viewing a single comment's thread
view the rest of the comments
[–] [email protected] 20 points 4 days ago (3 children)

Someone in the comment section posted a good question. Which specific routers that TP-Link makes are the issue?

Is it all routers that they make or is this just because they are selling inexpensive routers that have become a large part of the US market?

Does someone have an article that isn’t biased one way or the other that gives a list of effected routers ?

[–] [email protected] 6 points 4 days ago

Which specific routers that TP-Link makes are the issue?

They are presumably talking about CovertNetwork-1658 and the reason there's no list of routers is because no one has publicly described the vulnerability that is being leveraged.

My guess is that the vulnerability is present on most of their routers. I'm basing that opinion on the fact that previous CVEs issues against TP-LINK have impacted their most popular product lines like Archer and Deco.

It's possible that this is related to CVE-2024-21833 which was open in January of 2024, update in July of 2024, then updated again in late November of 2024.

[–] [email protected] 5 points 4 days ago* (last edited 4 days ago) (1 children)

Does someone have an article that isn’t biased one way or the other

We're literally inside an imperial core.

that gives a list of effected routers ?

If there was a list of effected routers, TP-Link would most likely have patched them.

[–] [email protected] -2 points 4 days ago (1 children)

Most likely old routers still sold on Amazon instead of the latest WiFi 7 models on the website~

[–] [email protected] 1 points 4 days ago (1 children)

Why would you assume that? They probably all use the same base.

[–] [email protected] 1 points 3 days ago (1 children)

TP-Link is popular because of their cheap options while easy-to-setup for average joe families.

[–] [email protected] 2 points 3 days ago (1 children)

Right, but I'm not seeing a reason that only the older routers would have these vulnerabilities. I'm guessing the base OS for all of them is quite similar.

[–] [email protected] 1 points 3 days ago

Well, they also don’t offer more than 2 updates on their proprietary software… so you can just categorise them as vintage or out of service like Apple especially for even older hardware that’s $20 or less like Tenda which is also another Chinese brand.

[–] [email protected] 2 points 4 days ago* (last edited 4 days ago)

They don't care. They want to ban TP-Link as a company, routers are just an excuse.

This is the same people that keep blocking US gdpr legislation, so we know for a fact they don't care about us, they just care about not being able to spy themselves.