ADT reveals another major network breach, but says no customer data revealed

The subsequent investigation confirmed that a threat actor managed to access the company’s infrastructure using compromised credentials obtained through a third-party business partner. The company did not say which business partner was compromised - TechRadar Pro has reached out to ADT with further questions.

Ransomware or no ransomware

Before being kicked out, the hackers managed to exfiltrate some information from ADT’s servers, the company confirmed. This includes encrypted data associated with employee user accounts. Customer information, including information regarding their security systems, have not been compromised, ADT confirmed.

To contain the incident, ADT ousted the attacker, and brought in a third-party cybersecurity firm to assist with the investigation and forensic analysis. It also notified the third party of the breach at its infrastructure, and called in law enforcement. It confirmed that its containment measures resulted in “some disruptions” to its IT network, but did not specify further.

This is not the first time ADT has had to put out a cybersecurity fire, as it suffered a similar incident in June 2024 that saw threat actors access customer order details, as well as “limited” customer information that included people’s email addresses, phone numbers, and postal addresses.

At the time, the company said there was no evidence any further customer information such as credit card details or banking information was affected, and that the company's home security systems are also safe. The data was later leaked on the notorious Breached forums by a poster named "netnsher", who claimed to have access to a database containing over 30,812 records, including 30,400 unique emails.

Via BleepingComputer

More from TechRadar Pro

• This detailed malware can hack your systems and turn off your antivirus to do more damage
• Here's a list of the best firewalls today
• These are the best endpoint protection tools right now