Qlink Wireless, the company behind the qlink and qwire wireless smart thermostats, is getting hacked.
Qlink announced Tuesday that its servers were compromised, and it said the hack had affected more than 1.5 million users.
The company is asking users to login again, and the hack will be repaired in a matter of hours.
QLink Wireless, which is owned by Verizon, has about 6.4 million monthly active users.
The hack, which was first reported by The Verge, was discovered by security researcher Christopher Barrett of CrowdStrike, who was trying to help Qlink improve security on its servers.
Barrett said he found the hack on Wednesday, and said he suspects that a third party, likely a third-party vendor, was responsible for the breach.
“I believe the hack was done by a third group, probably a third entity,” Barrett said, noting that he has not confirmed the group’s identity.
Qlink says that a “system was breached and a large amount of user data has been compromised.”
The hack was “completely unrelated” to the company’s QLink Wi-Fi app, and Qlink said it’s working with Verizon to fix the issue.
Verizon says that it has patched the security holes and that its systems are “up to date.”
The Qlink app is available on Verizon phones and on the company web site.QLink says it will not be disabling users’ Wi-fi connections until the hack is fixed.
The hacker also said that he “is willing to pay for a fix” to prevent the breach, but that Verizon was not offering one.