Industry - Data Breach
Executive Summary
Home security company ADT confirmed a data breach on April 20 affecting customer information including names, phone numbers, and addresses, with a small percentage of records also containing dates of birth and partial Social Security numbers. The breach occurred after hackers from the ShinyHunters group allegedly used a voice phishing attack to compromise an employee's single sign-on account and access ADT's Salesforce system, and are now threatening to leak the stolen data unless ADT pays a ...
What Happened
On April 20, 2026, home security company ADT detected and terminated unauthorized access to its customer database after hackers from the ShinyHunters group allegedly used a voice phishing attack to compromise an employee's Okta single sign-on account. The attackers then accessed ADT's Salesforce system and stole customer records containing names, phone numbers, addresses, and in a small percentage of cases, dates of birth and partial Social Security numbers. ShinyHunters listed ADT on their data leak site, claiming to have stolen 10 million records and threatening to release the data unless ADT pays a ransom by April 27, 2026.
Who Is Affected
ADT customers and prospective customers in the United States are affected, with the company confirming it has contacted all impacted individuals. While ADT did not confirm the exact number of affected records, ShinyHunters claims the breach includes over 10 million customer records. No payment information such as bank accounts or credit cards was accessed, and customer security systems themselves were not compromised.
Why It Matters
This breach demonstrates the ongoing vulnerability of companies to social engineering attacks targeting employee single sign-on credentials, which can provide attackers with broad access to multiple internal systems. ADT is a major home security provider, making the exposure of customer contact information and partial identity data particularly concerning as it could enable targeted fraud or social engineering attacks against customers. This is ADT's third disclosed data breach since August 2024, indicating persistent security challenges at the company.
What You Should Do
If you are an ADT customer, monitor for any communications from the company regarding this breach and watch for suspicious phone calls, emails, or text messages that may use your stolen information to appear legitimate. Be especially cautious of anyone claiming to be from ADT or other service providers who already know your personal details, as this could be a sign of fraud. Consider placing a fraud alert on your credit reports if your date of birth or partial Social Security number was included in the breach, and review your financial accounts for any unauthorized activity.
Summary generated from verified sources and reviewed before publication. How we summarize.
Sources