What does ADT say about the data breach?

ADT confirmed a data breach after detecting unauthorized access to customer and prospective customer data on April 20. They stated that names, phone numbers, and addresses were accessed, and in some cases, dates of birth and the last four digits of SSNs/Tax IDs. They also emphasized that no payment information or security systems were compromised.

How did ShinyHunters allegedly breach ADT?

ShinyHunters claims they gained access through a voice phishing (vishing) attack that compromised an employee's Okta single sign-on (SSO) account. This allowed them to access data from ADT's Salesforce instance.

Was my ADT account or security system affected?

According to ADT, customer security systems were not affected or compromised in any way during the intrusion. The breach primarily involved personal information and internal corporate data, not access to active security systems.

🔓 Data Breaches

ADT Breach: ShinyHunters Demand Ransom, Data Leaked [Analysis]

ADT is the latest casualty in the relentless wave of data extortion, confirming a breach that saw customer data threatened and potentially leaked. But here's the messy part: it’s the *how* that tells us more about the shifting sands of corporate security.

Threat Digest Apr 25, 2026 5 min read

A blurred image of a server rack with glowing lights, symbolizing data and cybersecurity.

⚡ Key Takeaways

ADT confirmed a data breach due to a vishing attack targeting an employee's Okta SSO account. 𝕏
ShinyHunters claims to have exfiltrated over 10 million records containing PII and corporate data. 𝕏
The breach highlights the growing effectiveness of social engineering tactics against enterprise SSO credentials. 𝕏

Written by

Maya Thompson

Threat intelligence reporter. Tracks CVEs, ransomware groups, and major breach investigations.

#ShinyHunters #adt #data breach #okta #sso #vishing

Worth sharing?

Get the best Cybersecurity stories of the week in your inbox — no noise, no spam.

Originally reported by Bleeping Computer

⚡ Key Takeaways

The 60-Second TL;DR

Maya Thompson

Share this article

Worth sharing?

Related Stories

ShinyHunters Extorts Wynn Resorts: Employee Data Breached, Ops Intact

ShinyHunters' Vishing Rampage Hits 20+ SaaS Firms: Mandiant's No-BS Defense Playbook

Hims & Hers Breach Puts ED and Hair Loss Secrets in Hacker Hands

ShinyHunters' Anodot Heist: Dozens of Snowflake Customers Drained of Data

Stay in the loop