FCC Extends Software Update Window for Foreign-Made Routers

The Federal Communications Commission has extended the deadline for foreign-made consumer Wi-Fi routers to receive software and firmware updates ^[3].

This decision prevents millions of devices from becoming obsolete or insecure overnight. By allowing updates, the agency ensures that users who already own these devices can maintain basic security protections while the U.S. transitions away from hardware deemed a national security risk.

The FCC originally added all foreign-made consumer routers to its Covered List on March 23, 2024 ^[2]. This move was designed to mitigate risks posed by foreign hardware in U.S. networks. However, the agency said that cutting off software support too abruptly would leave consumers vulnerable to exploits.

Under the initial rule, these devices were permitted to receive updates until March 1, 2027 ^[1]. This timeframe was seen by some tech groups as too restrictive, prompting calls to scrap the cutoff entirely to avoid creating security holes in home networks.

In a shift this month, the FCC announced that the update window is now extended to at least Jan. 1, 2029 ^[3]. This extension provides a longer glide path for consumers to replace their hardware without losing critical security patches in the interim.

The agency said the move balances the need to protect national security with the practical necessity of consumer protection. While the routers remain on the Covered List, the extension acknowledges that a router without updates is often a greater security liability than one made by a foreign entity.