Last updated 1 month ago
Home security firm ADT confirmed a data breach in April 2026, impacting 5,488,888 unique email addresses. The breach was publicly disclosed after threat actor ShinyHunters listed ADT on its extortion site as part of a 'pay or leak' campaign. Affected data includes names, phone numbers, physical addresses, and in a small percentage of cases, dates of birth and the last four digits of Social Security numbers or Tax IDs.
The attack was perpetrated by the threat actor group ShinyHunters, who exfiltrated the data and demanded payment to prevent public release. The initial access vector and exploitation method have not been disclosed. The exfiltrated data types include plaintext contact information and partial sensitive identifiers, but no full Social Security numbers or financial account details were confirmed compromised.
ADT has contacted all affected individuals and advised them of the incident. No regulatory actions, litigation, or ransom payment details have been reported at this time.
Extortion attack by ShinyHunters, data exfiltrated and listed on 'pay or leak' site
ADT's breach underscores the critical need for robust access controls and monitoring to detect and prevent unauthorized data exfiltration by external threat actors. The exposure of partial Social Security numbers and Tax IDs, even for a small subset, highlights the importance of data minimization and encryption of sensitive identifiers at rest. Organizations in the security industry must prioritize defense-in-depth strategies, including network segmentation and anomaly detection, to mitigate the impact of extortion-driven attacks.
Sign in to join the discussion.
Company
Industry
Location
Disclosed
Records Affected
Attack Vector
Threat Actor
Continent
Country
Industry
Attack Vector
Threat Actor