What caused ADT's recent data breach?

The recent ADT data breach occurred when attackers used stolen credentials from a third-party business partner to gain unauthorized access to ADT's internal systems. This is the second breach ADT has experienced in two months.

What data was compromised during the ADT breach?

During the breach, encrypted account data for employee user accounts was exfiltrated. ADT has not disclosed whether any customer data or security systems were compromised in this incident.

Is there any evidence of misuse of the exfiltrated data from ADT's breach?

As of now, ADT has not provided any information about whether the exfiltrated encrypted account data has been misused.

Incident

Home security/alarm company ADT reports second data breach in two months

Q: How did ADT respond to the data breach?

Upon detecting the breach, ADT terminated the unauthorized access, shut down some IT systems to secure and restore them, and notified the third party whose credentials had been compromised. The company also launched an investigation with third-party cybersecurity experts and involved federal law enforcement.

Q: How does this data breach compare to ADT's previous incident in August 2024?

This recent breach follows an earlier incident in August 2024, where 30,800 customer records—including emails, addresses, user IDs, and purchased products—were leaked on a hacking forum. While the August breach involved customer data, it is unclear if customer data was impacted in the latest incident.

published: Oct. 8, 2024

Learn More

ADT, a company in the home and business security industry, has reported its second data breach in just two months, following an attack in which stolen credentials were used to gain access to its systems.

The breach report reveals that the attackers obtained credentials from a third-party business partner, which enabled unauthorized access to ADT's internal systems. ADT detected the breach, terminated the unauthorized access and shut down some IT systems, causing temporary disruptions to business operations as servers and workstations were secured and restored.

The company also notified the third party whose credentials had been compromised and began an investigation with the help of third-party cybersecurity experts. In addition, federal law enforcement was brought in to assist in the investigation.

According to ADT, encrypted account data for employee user accounts was exfiltrated during the intrusion. The company has not informed whether any customer data or security systems were compromised in this incident.

This attack follows an earlier incident in August 2024, when 30,800 customer records—including emails, addresses, user IDs, and purchased products—were leaked on a hacking forum.

Home security/alarm company ADT reports second data breach in two months

Read More
medQ reports data encryption incident and data breach
PowerSchool reports data breach, exposes student, teacher data
Cascading GitHub action supply chain attacks: reviewdog/action-setup leads …
Identity management firm Okta support system hacked, exposing …
Mercor AI Startup Hit by Supply Chain Attack …