:

ADT BREACH EXPOSES 5.5M RECORDS IN THIRD 2024 INCIDENT

SECURITY DESK2 MIN READ
WED, APR 29, 2026

■ AI-SUMMARIZED FROM 1 SOURCE ▸ TIMELINE

Security research group ShinyHunters breached ADT systems and exposed personal data for 5.5 million individuals. The incident marks the third major data breach affecting the home security provider in 2024.

The ShinyHunters extortion group accessed ADT customer information through a breach of the company's systems, according to findings posted on Have I Been Pwned. The compromised dataset includes personal details for 5.5 million people. This marks the latest security incident involving ADT, which disclosed separate data breaches in August 2024 and October 2024. The repeated incidents raise questions about the company's security infrastructure and incident response protocols. ShinyHunters is known for conducting extortion campaigns following data theft operations. The group typically demands payment in exchange for not publicly releasing or selling stolen information. Affected individuals face potential risks including identity theft, phishing attacks, and unauthorized account access. ADT customers exposed in previous 2024 breaches have already experienced compromised credentials and personal information. The data exposure comes as home security companies increasingly become targets for cybercriminals. ADT's repeated breaches within a single year suggest systemic vulnerabilities that require immediate remediation. Have I Been Pwned, operated by security researcher Troy Hunt, aggregates breached datasets to help individuals determine if their personal information has been compromised. The service allows users to check if their email addresses appear in known data breaches. ADT has not issued a public statement regarding this specific incident at the time of reporting. Customers concerned about their data should monitor their accounts for suspicious activity and consider credit monitoring services. The pattern of successive breaches highlights the ongoing challenge organizations face in protecting customer data against determined threat actors.

■ SOURCES

Techmeme

■ SUMMARY WRITTEN BY AI FROM THE LINKS ABOVE

■ MORE FROM THE SECURITY DESK

Artificial intelligence discovered a critical security vulnerability in Linux kernel code that human developers overlooked for over a decade. The bug could allow unauthorized root access to systems.

JUST NOWAI Desk

Researchers have demonstrated a new attack called 'Ghostcommit' that hides prompt injections in PNG files to fool AI code reviewers and agents into exposing repository secrets.

2H AGOAI Desk

A 34-year-old Armenian man pleaded guilty to hacking U.S. companies and deploying the Ryuk ransomware. He faces up to 15 years in prison.

4H AGOSecurity Desk

Australia's eSafety watchdog will investigate whether major adult websites are allowing users to bypass age verification requirements using virtual private networks (VPNs). The probe follows new regulations introduced in March requiring age checks on adult content.

6H AGOIndustry Desk

■ SUBSCRIBE TO THE DAILY BRIEF

ONE EMAIL, 5 STORIES, 06:00 UTC. UNSUBSCRIBE ANYTIME.