ADT Faces Data Breach with Claims of 10 Million Records Stolen by ShinyHunters

Severity: High (Score: 69.0)

Sources: newsroom.adt.com, Cybersecuritynews, Notebookcheck, www.bleepingcomputer.com

Summary

ADT has confirmed a data breach that occurred on April 20, 2026, involving unauthorized access to customer data. The breach was detected by ADT's cybersecurity systems, which promptly activated response protocols. Affected data includes names, phone numbers, addresses, and in some cases, dates of birth and the last four digits of Social Security numbers or Tax IDs. Importantly, no payment information was compromised. The hacker group ShinyHunters has claimed responsibility, asserting they stole over 10 million records and demanding a ransom. ADT has initiated a forensic investigation with third-party cybersecurity experts and is cooperating with law enforcement. The company has notified impacted individuals and is offering complimentary identity protection services. This incident marks ADT's second breach in a short span, following a previous breach that exposed customer records in August 2025. Key Points: • ADT confirmed a data breach affecting customer data on April 20, 2026. • ShinyHunters claims to have stolen over 10 million records and issued a ransom demand. • No payment information was accessed, and ADT is offering identity protection services to affected individuals.

Key Entities

• ShinyHunters (apt_group)
• Data Breach (attack_type)
• ADT (company)
• CWE-200 - Exposure of Sensitive Information (cwe)
• CWE-287 - Improper Authentication (cwe)
• T1041 - Exfiltration Over C2 Channel (mitre_attack)
• T1078 - Valid Accounts (mitre_attack)