The ADT data breach exposed names, phone numbers, addresses and partial SSNs
NEWNow you can listen to Fox News articles!
ADT has confirmed a new data breach, and it comes with a familiar twist. A well-known cyber crime group is reportedly demanding money and threatening to leak information if not paid.
The group behind it, ShinyHunters, claims to have stolen more than 10 million records. ADT has not confirmed that number, but says the attackers accessed customer data.
According to the company, “ADT’s cybersecurity systems discovered unauthorized access to a limited set of customer and potential customer data on April 20, and the company’s response protocols were implemented immediately, terminating the intrusion, launching a forensic investigation with leading cybersecurity experts, and notifying law enforcement.”
Sign up for my FREE CyberGuy report
- Get my best tech tips, emergency security alerts and exclusive deals delivered straight to your inbox.
- For simple, real-world ways to spot scams early and stay protected, visit CyberGuy.com – trusted by the millions who watch CyberGuy on TV every day.
- Plus, you’ll get instant access to my Free Scam Survival Guide when you join.
GOOGLE VERIFIES DATA CAMPAIGN BY KNOWN HACKER GROUP
ADT has confirmed a new data breach after hackers said they stole millions of records and threatened to leak information. The company said customer payment information and security systems were not affected. (Kurt “CyberGuy” Knutsson)
What data was exposed in the ADT breach
ADT states, “The investigation confirmed that the information involved was limited to names, phone numbers, and addresses. In a small percentage of cases, dates of birth and the last four digits of Social Security numbers or Tax IDs were included.
Here is the part that may bring some relief. ADT tells CyberGuy, “Importantly, no payment information, including bank accounts or credit cards, was accessed, and customer security systems were not affected or compromised in any way.”
However, this type of personal data holds real value. Even without full Social Security numbers, attackers can use it to create convincing scams that feel impersonal.
How hackers can access ADT systems
This breach may begin with a phone call. ShinyHunters told BleepingComputer that it uses a phishing attack, commonly known as vishingcompromising an employee’s Okta login account. The group says the access allowed them to steal data from ADT’s Salesforce system. ADT has confirmed unauthorized access to customer and prospective buyers’ data, but has not publicly confirmed that specific attack method. This method has become very common. Instead of hacking systems directly, attackers target people. A single successful interaction can activate multiple systems simultaneously.
In a statement to CyberGuy, ADT said its response worked as intended.
“ADT’s systems performed as designed: breaches were detected quickly, the threat was eliminated, and the scope was limited,” the company said. “ADT has directly notified all affected individuals and will provide appropriate identity protection services as appropriate. Protecting customers is not only a priority; it is at the core of what ADT does. The company remains committed to investing in and strengthening the Internet security infrastructure that its customers and their families rely on.”
RANSOMWARE ATTACK BREAKS SOCIAL SECURITY NUMBERS ON MAJOR CHANNEL CAT
A sign in front of a suburban house in San Ramon, Calif., indicates that the house is protected by an ADT alarm to prevent break-ins and burglaries.
Why the ADT data breach matters to you
At first glance, this breach may seem limited. No financial data. There is no system control. That sounds contained. The truth is more complicated.
Names, phone numbers and addresses create a powerful starting point for fraud. Add even a portion of Social Security data, and the risk increases. Criminals can use that information to to make themselves companiesreset accounts or trick victims into providing more sensitive information.
This also raises a bigger issue. Even security-focused companies can become victims. That should change the way you think about your exposure.
ADT’s history of data breaches
This is not the first time ADT has faced a data breach. Company incidents disclosed August and October 2024 disclosed customer and employee information.
If a breach occurs more than once, it raises questions about internal security procedures and how attackers continue to find a way in.
At the same time, it highlights a broader trend. Cybercriminal gangs love it ShinyHunters they focus on identity systems and employee access rather than traditional hacking techniques.
Ways to stay safe after a data breach
After a breach like this, the goal is to limit how much attackers can do with your information and make yourself a harder target going forward.
1) Watch for targeted scams
If someone says they’re from a company like ADT, pause before responding. Scammers often use real information to sound convincing. Hang up and contact the company directly using the verified number.
2) Limit your personal data disclosure
Consider using a personal data removal service. These tools help remove your information from data broker sites, reducing what fraudsters can find about you online. Check out my top picks for data removal services and get a free scan to find out if your personal information is already out there on the web by visiting CyberGuy.com.
3) Add identity theft monitoring
Identity theft monitoring can alert you to suspicious activity related to your name or Social Security number early, giving you a chance to take action before the damage spreads. See my tips and top picks for Best Identity Theft Protection at CyberGuy.com.
4) Strengthen your passwords and account security
Use a password manager to create and store strong, unique passwords. If you’ve reused passwords anywhere, especially for email or bank accounts, update them immediately to prevent account takeover. Check out the best password managers reviewed in 2026 at CyberGuy.com.
HEALTH DATA BREAK HITS PATIENT RECORD SYSTEM
Hackers accessed a limited set of ADT customer and potential customer data, the company said, including names, phone numbers and addresses. In some cases, Social Security or Tax ID information was also revealed. (Matt Cardy/Getty Images)
5) Turn on two-factor authentication
Adding an extra login step, such as two-factor authentication (2FA), makes it more difficult for attackers to get into your account, even if they have your credentials.
6) Keep your devices secure
Make sure your devices are running updated security software. Many modern tools can detect suspicious activity before it turns into a serious problem.
7) Freeze your credit if sensitive data is exposed
If your Social Security number or part of it may be involved, consider contacting the credit bureaus and head offices. This prevents new accounts from being opened in your name without your permission.
8) Review your financial activity and account
Check bank accounts, credit cards and important logins for unusual activity. Even small, unusual expenses or check-in alerts can be an early warning sign.
9) Use strong antivirus protection
Install and maintain strong antivirus software on your devices. It can detect suspicious activity, block malware and help stop threats before they gain access to your data. Find my picks for the best antivirus 2026 winners for your Windows, Mac, Android and iOS devices at CyberGuy.com.
10) Be careful with account recovery attempts
Attackers often try to reset your passwords using information they already have. If you receive password reset emails or unexpected codes, treat them as a warning sign, not a normal message.
11) Choose a reliable home security system
Although ADT is one of the largest home security companies in the United States, the latest breach of customer information highlights the potential risks despite the company’s assurances that home security systems have not been compromised. There are many other options on the market, whether you prefer a professionally installed system or a do-it-yourself system.
For reference, you can check out my guide to the best home security systems CyberGuy.comwhere I listed four of my favorite options. You may also want to find out if your home insurance policy offers you a discount for installing stronger safety protection.
Kurt’s priority is taking
If your data was part of this breach, the risk doesn’t end with the first incident. In many cases, it has just begun. You may start seeing more targeted calls or emails. Messages may include your name or reference your address to appear legitimate. That level of detail can make even the most cautious people skeptical. Even if you’ve never used ADT, this is a reminder of how often personal data circulates behind the scenes. Once it’s out, it can be reused in ways you never expected. The biggest takeaway is simple. Breaches like this are less about one company and more about how personal data is exposed everywhere.
CLICK HERE TO DOWNLOAD THE FOX NEWS PROGRAM
Should companies like ADT be doing a better job protecting your data, especially after repeated breaches? Let us know by writing to us at CyberGuy.com.
Sign up for my FREE CyberGuy report
- Get my best tech tips, emergency security alerts and exclusive deals delivered straight to your inbox.
- For simple, real-world ways to spot scams early and stay protected, visit CyberGuy.com – trusted by the millions who watch CyberGuy on TV every day.
- Plus, you’ll get instant access to my Free Scam Survival Guide when you join.
Copyright 2026 CyberGuy.com. All rights reserved.
