Pfluger, GOP colleagues request new FCC council mitigate risks from unsecured routers

U.S. Rep. August Pfluger (R-TX) recently spearheaded a call for the Federal Communications Commission (FCC) to use a forthcoming, newly established Council for National Security within the department to mitigate cybersecurity risks associated with unsecured routers.

“As the backbone of the internet, routers play a critical role in securing communications for consumers and businesses. When these devices are insecure, they can serve as gateways for cyberattacks,” wrote the 10 Republicans in an April 30 letter sent to FCC Chairman Brendan Carr. 

For example, weak, default, or easily predicted passwords make routers vulnerable to exploitation, according to the letter. 

“Malicious actors can exploit these vulnerabilities in routers to disrupt service, steal sensitive data, or even launch attacks against critical infrastructure,” the members wrote.

The recent proliferation of cybersecurity incidents underscores the need for the entire federal government to work together to address and deter cyber threats, wrote Rep. Pfluger and his colleagues, noting their increasing concerns about the prevalence of these devices and that unsecured routers may allow the Chinese Communist Party (CCP) to surveil American data or disrupt U.S. networks. 

“Although the Department of Commerce is reviewing whether or not to ban routers made by Chinese-owned companies in the future, many of these devices remain on our networks, which nefarious actors could still leverage,” they wrote, outlining several examples of how the CCP has tried to leverage private companies and create backdoors in U.S. critical infrastructure technology. 

The letter also highlighted that under Carr’s leadership, the Council for National Security could take action against the CCP by leveraging equipment authorization to require routers to allow only uniquely identifiable devices known to the household and securely authenticated by the network owner, among other suggested actions.

“We are confident that, under your leadership, we can advance national cybersecurity initiatives and create robust strategies to strengthen U.S. networks against cybersecurity threats,” the lawmakers wrote. “Together, we can foster a secure digital environment that instills trust and confidence among users nationwide.”