Uplink, a Lithia Springs, Georgia-based alarm communications brand owned by M2M Services, said a cyber incident disrupted alarm and interactive security services used by dealers and monitored accounts across the United States.
A bulletin reviewed by DysruptionHub and signed by a company executive said the incident began April 2 at about 8 p.m. Eastern. The notice said the company suspended and isolated affected services as a precaution while teams worked on hardware and software fixes. It said the affected units were models manufactured before June 2023.
Public status updates later identified the affected product as Alula’s BAT-MINI communicator. Alula, which merged with M2M Services in 2023, markets BAT-MINI as a device that connects existing security panels to central-station monitoring and app-based remote features over cellular or internet networks.
The company said the disruption was identified April 3, that service began returning later that day, and that all BAT-MINI services were restored by April 4. Before full recovery, the company said alarm signaling had returned while some interactive features remained intermittently unavailable.
The incident appears to have been more than a routine software outage. When alarm communications and related interactive services are disrupted, dealers and customers can lose offsite alarm reporting, app controls and remote visibility into system events, even if alarm hardware at a property continues working locally.
Uplink’s parent company, M2M Services, has not publicly identified the cause of the incident or said whether any security infrastructure was directly affected. It also remains unclear whether attackers exploited the affected devices or whether the company took them offline as a precaution while addressing a newly discovered vulnerability. DysruptionHub did not receive a response to an emailed request for comment.
Chip in once
If this reporting helped you, a one-time tip helps cover hosting, tools and future investigations.
Support us monthly
A small monthly pledge keeps independent coverage and our reader tools online for everyone.
The incident fits a pattern in which cyber problems at specialized vendors disrupt operational services used by others. Similar downstream effects appeared in the 2025 CodeRED emergency-alert incident and the 2026 Intoxalock attack, while the 2024 CDK breach showed how a compromise at a behind-the-scenes provider can ripple across thousands of customer locations.
M2M Services acquired Uplink in 2022 and later merged with Alula, bringing the brands under the same company. The combined business says it provides alarm communicators, connectivity and interactive services to professional security dealers and integrators.
Key details remain unresolved. The company has not said what caused the incident, whether any data was accessed, or how many dealer and end-user accounts were affected.
