Business Wire

Quectel response to FCC about IoT module security

7.9.2023 16:03:00 EEST | Business Wire | Press release

Share

Quectel Wireless Solutions, a global IoT solutions provider, today commented on the recent letter and response being published by the FCC and the Select Committee of the US Congress questioning if Quectel’s IoT modules represent a potential security risk.

“We welcome the opportunity to work with the FCC and other U.S. government entities to demonstrate our compliance and best practice device security approach, says Norbert Muhrer, President and CSO, Quectel Wireless Solutions. “We are committed to contributing to the advancement of a smarter world by delivering best-in-class and secure products. This commitment is evidenced by our extensive device OEM customer base and our constant focus on providing our customers with the best and most secure modules in the industry.”

The Select Committee to the US Congress’ letter to the FCC had several misconceptions about how Quectel modules work. Quectel’s clarification regarding the statements made in the letter is as follows.

Committee letter: “Connectivity modules are typically controlled remotely and are the necessary link between the device and the internet.”

Quectel’s U.S. customers or their customers’ third-party suppliers/service providers handle device and data management exclusively. Firmware updates are managed and controlled by the device original equipment manufacturer (OEM), not Quectel.

Committee letter: “Serving as the link between the device and the internet, these modules have the capacity both to brick the device and to access the data flowing from the device to the web server that runs each device”

The control of Quectel modules resides with the microcontroller unit (MCU) or central processing unit (CPU) embedded within the customer's device. Quectel itself does not possess any control; instead, this authority rests solely with the OEM – the entity responsible for developing the device. Remote management of the device is achievable solely through the OEM's device management platform. A notable instance of this, referred to in the letter, is the widely covered case involving John Deere agricultural equipment, where just the OEM typically can disable the equipment by accessing and shutting down its own MCU’s controlling the machine.

Committee letter: “As a result, if the CCP can control the module, it may be able to effectively exfiltrate data or shut down the IoT device.”

Once Quectel modules leave the factory and are delivered to its customers, Quectel customers own the data, and Quectel has no access to any of the data collected. The ownership, control, storage, and modification of the data generated by IoT devices within the market firmly rest with the OEM device makers and its customers. Even in the rare cases outside of the U.S. where Quectel resells the connectivity service of a wireless carrier, Quectel does not have access to the device data.

Committee letter: “This raises particularly grave concerns in the context of critical infrastructure and any type of sensitive data.”

Applications that require high security, such as critical infrastructure, typically use private access point names (APNs) and other methods which strictly control and monitor network access. This can be used to control and monitor any data flowing to and from the device. Critical infrastructure is meticulously fashioned with a multi-tiered security approach defined and implemented solely by the device OEM, not Quectel.

The cellular industry is heavily regulated and requires intensive testing and accreditation. Carrier and regulatory certifications are executed by trusted third-party labs and carrier labs, assuring that the module complies with strict technical requirements. The Quectel modules have obtained certifications from the FCC, PCS Type Certification Review Board (PTCRB) and major carriers throughout the world, which underlines Quectel’s commitment to meeting rigorous industry standards.

In addition to cellular modules, Quectel also provides Wi-Fi, Bluetooth and GNSS modules and antennas. As a GSMA member, Quectel and its carrier partners comply with all cellular industry regulations and applicable standards to ensure that end customer data is securely transmitted between customer device and mobile network operator. Quectel does not have access to ANY of the device data.

Quectel is committed to delivering high-quality, best-in-class, secure modules and go above and beyond industry standard practices by conducting independent third-party cyber security audits. More recently Quectel also retained the security firm Finite State, which is auditing and penetration testing the security of its modules through rigorous security testing, improved software supply chain visibility, and comprehensive software risk management. Quectel is also participating in the formulation of new industry security certification standards, such as the CTIA Cybersecurity Certification Working Group and pursuing additional cyber security certifications from various U.S. entities as new standards are formulated and adopted.

Qualcomm manufactures the chipsets and software platforms that are at the core of the Quectel modules. “Our Qualcomm partnership underlines the importance we place on working with well-trusted and secure partners from across the ecosystem to deliver high-quality solutions globally,” Mr. Muhrer continues. “Quectel's impact on the global IoT industry is profound. We supplied millions of cellular modules to support the distribution of Covid-19 vaccines for leading U.S. and global organizations including Pfizer, Johnson & Johnson, and other leading suppliers of vaccines. This underscores our commitment to playing a pivotal role in critical global initiatives.”

About Quectel

Quectel’s passion for a smarter world drives us to accelerate IoT innovation. A highly customer-centric organization, we are a global IoT solutions provider backed by outstanding support and services. Our growing global team of 5,900 professionals sets the pace for innovation in cellular, GNSS, Wi-Fi and Bluetooth modules as well as antennas and services.

With regional offices and support across the globe, our international leadership is devoted to advancing IoT and helping build a smarter world.

For more information, please visit: www.quectel.com, LinkedIn, Facebook, and X (formerly known as Twitter).

To view this piece of content from cts.businesswire.com, please give your consent at the top of this page.

Contact information

Media contact: media@quectel.com

About Business Wire

For more than 50 years, Business Wire has been the global leader in press release distribution and regulatory disclosure.

Subscribe to releases from Business Wire

Subscribe to all the latest releases from Business Wire by registering your e-mail address below. You can unsubscribe at any time.

Latest releases from Business Wire

Incyte Data to Be Highlighted in Four Rapid Oral Presentations at the European Society for Medical Oncology (ESMO) Congress 2026 Support Efforts to Improve Outcomes in Difficult-to-Treat Cancers17.7.2026 20:10:00 EEST | Press release

Incyte (Nasdaq:INCY) today announced that it will highlight data from several programs in its oncology portfolio in six presentations at the European Society of Medical Oncology (ESMO) Congress 2026, being held October 23 - 27, 2026, in Madrid. “The data at ESMO will further illustrate Incyte’s commitment to advancing innovation for patients with cancer,” said Pablo J. Cagnoni, M.D., President, Incyte and Global Head of Research and Development. "Among the presentations are important updates from our KRAS G12D inhibitor in advanced pancreatic cancer and colorectal cancer, our TGFβR2×PD-1 bispecific antibody in microsatellite stable colorectal cancer and our CDK2 inhibitor in recurrent epithelial ovarian cancer – investigational approaches that reflect our focus on areas where there is significant need for novel therapies." Details on key data presentations at ESMO include: Rapid Oral Presentations INCB161734 (KRAS G12D) Safety and Efficacy of Oral KRAS G12D Inhibitor INCB161734 as Mono

STL Expands Its Optical Connectivity Portfolio in the US with the CONCAT Solution17.7.2026 15:24:00 EEST | Press release

STL Optical Connectivity NA, LLC, (STLOC), a U.S. subsidiary of STL (Sterlite Technologies Ltd.) [NSE: STLTECH], a leading connectivity solutions provider for AI-ready digital infrastructure, today announced that it launched its new advanced FTTH solution, CONCAT, after successfully completing field trials on the networks of one of the largest telecom service providers in the United States. Following successful field validation, CONCAT is now available to digital infrastructure providers seeking faster fiber rollouts with reduced deployment complexity and labor. It enables up to 71% in labor cost savings by eliminating most field splicing through factory-assembled, pre-connectorized fiber segments that deliver plug-and-play installation. CONCAT simplifies fiber deployment by shifting critical fiber preparation and termination into a controlled manufacturing environment ensuring consistent quality, faster installation, and lower operational risk in the field. CONCAT solution is ideal fo

China's ~$900B Live-Commerce Market Now Approaches US E-Commerce Scale17.7.2026 13:30:00 EEST | Press release

The center of gravity in global retail has shifted East. The formats now driving the fastest growth in global retail (live shopping, social commerce, and delivery in minutes) were pioneered and scaled in Asia, and most Western consumers have yet to adopt them. According to NIQ (NYSE: NIQ), a leading consumer intelligence company, in its global report The Commerce Revolution: Where East Meets West, the gap between East and West is still vast. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20260717253489/en/ China´s USD 900bn live shopping boom now approaches the scale of the US E-commerce The scale is already substantial. China's live-commerce market alone was worth roughly $900 billion in 2025, approaching the size of the entire US e-commerce market, according to market data cited in the report. Yet 68% of consumers in North America and 67% in Europe have never once bought a product through social media, and roughly two-thirds

Aqemia and Sanofi Expand Their Research Collaboration17.7.2026 13:30:00 EEST | Press release

Aqemia, the drug invention company combining generative AI and quantum-inspired physics to invent small molecule drugs, today announced the expansion of its multi-year research collaboration with the global pharmaceutical company, Sanofi. The expansion is marked by the nomination of a new therapeutic target and an additional payment. The collaboration, first announced in December 2023, makes Aqemia eligible to receive up to a total of $140 million in upfront and milestone payments across programs. It spans the drug discovery journey from the identification of the very first hits to the selection of a development candidate. Aqemia leverages Qemi, its proprietary physics-based generative AI platform, to design novel molecules addressing Sanofi’s targets of choice, working in close collaboration with Sanofi scientific teams. Sanofi leads wet lab research, development and commercialization. The collaboration now runs across continents, between Aqemia researchers in Paris and London and San

Ant International’s Alipay+ Connects Argentina's National QR Payment Scheme via PVS, Enabling for Cross-Border Digital Payment Nationwide at Millions of Merchants17.7.2026 13:17:00 EEST | Press release

Alipay+, a global digital payment gateway under Ant International, today announced that it will enable global travellers to make QR code payments at millions of merchants across Argentina through integration with the country's national QR payment scheme Transferencias 3.0, in partnership with PVS, a fintech company specialized in developing customized payment solutions in Latin America. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20260717276406/en/ By connecting to Argentina's national QR payment scheme, Alipay+ now enables global travellers in the country to make convenient QR code payments at merchants nationwide. This service helps to enhance global travellers' travel experiences in Argentina, allowing them to pay seamlessly at restaurants, malls and tourist attractions. Using an Alipay+ partner payment app, they can now scan the national QR code displayed at all merchants to make cross-border payments across Argentina,

In our pressroom you can read all our latest releases, find our press contacts, images, documents and other relevant information about us.

Visit our pressroom
World GlobeA line styled icon from Orion Icon Library.HiddenA line styled icon from Orion Icon Library.Eye