If ADT can be breached, so can anyone

ADT, a trusted security brand, recently disclosed a cybersecurity incident where unauthorized access to customer and prospective customer data was detected on April 20, 2026. The company terminated the intrusion, launched a forensic investigation, and notified law enforcement. According to ADT, the affected information included names, phone numbers, and addresses, with some records containing dates of birth and partial Social Security or Tax ID numbers. The hacking group ShinyHunters claimed responsibility and alleged it stole over 10 million records. Breach notification service Have I Been Pwned reported receiving a sample of data suggesting 5.5 million email addresses may have been affected. The incident highlights that even companies with robust cybersecurity measures can be breached, emphasizing the need for ongoing cybersecurity processes beyond technical measures.