The state of Texas has initiated a lawsuit against TP-Link Systems, alleging that the company misrepresented the security of its routers while enabling vulnerabilities that can be exploited by hackers associated with the Chinese government. This legal action stems from an investigation that began in October 2025, highlighting concerns over the safety of consumer data.
Texas Attorney General Ken Paxton criticized TP-Link for labeling its products as "Made in Vietnam," despite sourcing most components from China, which could potentially expose user data to government surveillance due to Chinese laws. Paxton emphasized that this lawsuit is part of a broader initiative to challenge companies aligned with the Chinese Communist Party.
The complaint cites a history of security breaches, including the use of TP-Link routers in a significant credential-theft botnet linked to various cyber-attacks on the U.S. Paxton is seeking monetary penalties and injunctions to ensure that TP-Link discloses the true origins of its products and obtains informed consent before collecting data from consumers.
Federal authorities have previously noted security vulnerabilities in TP-Link devices, with the Cybersecurity and Infrastructure Security Agency (CISA) identifying several actively exploited flaws in their hardware.